jude18

Je te remercie , j'effecturai tout ça ce soir ... au niveau des infections je gere un peux mieux que les processus en surplus... c'est pour ça que c'est clean

Oops désolé, c'est ce que je prends habituellement en plus.... Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:15:55, on 25/05/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Apoint\Apoint.exe C:\WINDOWS\ehome\ehtray.exe C:\WINDOWS\system32\ICO.EXE C:\Program Files\Sony\VAIO Power Management\SPMgr.exe C:\Program Files\Sony\ISB Utility\ISBMgr.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\CyberLink\PowerCinema\PCMService.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\WinTV\Ir.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Program Files\WinTV\WinTV7\WinTVTray.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Program Files\Apoint\Apntex.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe C:\WINDOWS\eHome\ehSched.exe C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\srvany.exe C:\WINDOWS\KMService.exe C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\CyberLink\Shared files\RichVideo.exe C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Sony\VAIO Event Service\VESMgr.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\eHome\ehmsas.exe C:\WINDOWS\system32\dllhost.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Outlook Express\msimn.exe C:\PROGRA~1\IZArc\IZArc.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Program Files\ZebHelpProcess\ZHPDiag.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Documents and Settings\Julien\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bouyguestelecom.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-vaio.com/fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE O4 - HKLM\..\Run: [sonyPowerCfg] "C:\Program Files\Sony\VAIO Power Management\SPMgr.exe" O4 - HKLM\..\Run: [iSBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [PCMService] "C:\Program Files\CyberLink\PowerCinema\PCMService.exe" O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - Global Startup: AutoStart IR.lnk = C:\Program Files\WinTV\Ir.exe O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE O4 - Global Startup: WinTV Recording Status..lnk = C:\Program Files\WinTV\WinTV7\WinTVTray.exe O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Ajouter un site de support RSS à VAIO Information FLOW - C:\Program Files\Sony\VAIO Information FLOW\aiesc.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000 O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/fr/ O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1264006663828 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe O23 - Service: Service de planification Media Center (ehSched) - Unknown owner - C:\WINDOWS\eHome\ehSched.exe O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: HauppaugeTVServer - Hauppauge Computer Works - C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: KMService - Unknown owner - C:\WINDOWS\system32\srvany.exe O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: MSSQL$VAIO_VEDB - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe O23 - Service: VAIO Cooporated Initialisation (VCI) - Sony Corporation - C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update 5\VUAgent.exe O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe -- End of file - 13815 bytes

Bonjour depuis plusieurs semaine mon ordi plante , j'ai trop de processus au demarrage, quelqu'un pourrais me dire ce que je peux enlever et laisser ? Rapport de ZHPDiag v1.25.114 par Nicolas Coolman Run by Julien at 25/05/2010 11:09:47 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.18702 MFIE: Mozilla Firefox (3.6.3) ---\\ System Information Platform : Microsoft Windows XP (5.1.2600) Service Pack 3 Processor: x86 Family 6 Model 15 Stepping 6, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 2046 MB (45% free) System drive C: has 1 GB (1%) free of 50 GB ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 50 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 8 Go of 67 Go) E:\ Floppy drive, Flash card reader, USB Key (Not Inserted) F:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 24 Go) G:\ CD-ROM drive (Not Inserted) H:\ CD-ROM drive (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Processus lancés [MD5.26187C6CE31B7730521936DE2B6F293D] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint\Apoint.exe [MD5.9C69E6A25F5500501B14AF43311F8D8B] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe [MD5.1C3A0ABC807DE79F667EE5C0B9C01D0B] - (.Sony Corporation - SPM Module.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [MD5.93EEFBC237ADFC406F52EE56D97F784B] - (.Sony Corporation - Pas de description.) -- C:\Program Files\Sony\ISB Utility\ISBMgr.exe [MD5.559A716214E376DFA755E7F4605BB627] - (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll [MD5.BC3ED73B1EB55659C629C8C66FA5D491] - (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll [MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [MD5.50B60AF75B750D219A142A6D2BFBAA42] - (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files\CyberLink\PowerCinema\PCMService.exe [MD5.901AA7A38CE13F14B6BBEC38C0595698] - (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe [MD5.59DC5BB82E4C8E0B3EADCFDBC44BA6E4] - (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe [MD5.18B4B12358EFCF68D76812058A26181F] - (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe [MD5.9015BC03F62940527EC92D45EE89E46F] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [MD5.B8720A787C1223492E6F319465E996CE] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [MD5.E4BDF223CD75478BF44567B4D5C2634D] - (.Microsoft Corporation - Generic Host Process for Win32 Services.) -- C:\WINDOWS\System32\svchost.exe [MD5.0EEBAFDE5C31AC8839BE05D62CDD2A8C] - (.Pas de propriétaire - CLCapSvc Module.) -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe [MD5.C5A75EB48E2344ABDC162BDA79E16841] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [MD5.FD27C0F69EC68812992A1B7FA8B06504] - (.Pas de propriétaire - CLSched Module.) -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe [MD5.980EEEA91776357518892C5544768E2B] - (.Microsoft Corporation - Service de planification Media Center.) -- C:\WINDOWS\eHome\ehSched.exe [MD5.C3FB1D70CB88722267949694BA51759E] - (.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\WINDOWS\system32\services.exe [MD5.021E437031FC290CFEABC3BA736B4470] - (.Hauppauge Computer Works - Hauppauge TV Server.) -- C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE [MD5.77AC10DB097DFD0CD3071465B644D0AB] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [MD5.4635935FC972C582632BF45C26BFCB0E] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\srvany.exe [MD5.52404CC76E9D53843BDF97564BB16BED] - (.Microsoft Corporation - MCRD Device Service.) -- C:\WINDOWS\ehome\mcrdsvc.exe [MD5.00E36BEEA22C92D1030C6D8F80BC0F6A] - (.Microsoft Corporation - SQL Server Windows NT.) -- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [MD5.B4139011FADDBDAE615961548E75E5C5] - (.Microsoft Corporation - SQL Server Windows NT.) -- C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe [MD5.6055E612CA4D1D773A6DC42EA1F014E8] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 191.5.) -- C:\WINDOWS\system32\nvsvc32.exe [MD5.91E6024D6D4DCDECDB36C43ECF9BBECB] - (.Microsoft Corporation - LSA Shell (Export Version).) -- C:\WINDOWS\system32\lsass.exe [MD5.C1C132455200AD4704142442C89D0FA4] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files\CyberLink\Shared files\RichVideo.exe [MD5.460E4CE148BD07218DA0B6A3D31885A9] - (.Microsoft Corporation - Spooler SubSystem App.) -- C:\WINDOWS\system32\spoolsv.exe [MD5.B2EC3E1DEAC5F0A764BD3486D213A0AF] - (.Microsoft Corporation - SQL Browser Service EXE.) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [MD5.D2F4F32B59440011174B4F8137AF4E0C] - (.Microsoft Corporation - SQL Server VSS Writer.) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [MD5.1D5425783D92F34C63075FA0C4E2C3D5] - (.Sony Corporation - VAIO Event Service (Service Module).) -- C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [MD5.55A47A048E5FD13977CA47DF39CBA5FF] - (.Sony Corporation - VAIO Task Scheduler Service.) -- C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe [MD5.0BD64CCEA7B4BF25CA2FB9BF1444DFD9] - (.Sony Corporation - VAIO Entertainment Database Service.) -- C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [MD5.E81E8C7DC7EBC6CEDE156EAAD5EF9C8E] - (.Sony Corporation - VAIO Entertainment File Import Service.) -- C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [MD5.D9250B31B353EE3322C1CAD411997E38] - (.Microsoft Corporation - Microsoft® Windows Live ID Service.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE ---\\ Pages de démarrage d'Internet Explorer (R0) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bouyguestelecom.fr R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 ---\\ Pages de recherche d'Internet Explorer (R1) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie ---\\ Internet Explorer URLSearchHook (R3) R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18904 (longhorn_ie8_gdr.100222-1700)) -- C:\WINDOWS\system32\ieframe.dll ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Barre d'outils client IE Google.) -- c:\program files\google\googletoolbar1.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Barre d'outils client IE Google.) -- c:\program files\google\googletoolbar1.dll ---\\ Applications démarrées automatiquement par le registre (O4) O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [ehTray] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [sonyPowerCfg] . (.Sony Corporation - SPM Module.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe O4 - HKLM\..\Run: [iSBMgr.exe] . (.Sony Corporation - Pas de description.) -- C:\Program Files\Sony\ISB Utility\ISBMgr.exe O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [PCMService] . (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files\CyberLink\PowerCinema\PCMService.exe O4 - HKLM\..\Run: [bCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - Global Startup: AutoStart IR.lnk . (.Hauppauge Computer Works - IR.) -- C:\Program Files\WinTV\Ir.exe O4 - Global Startup: Bluetooth Manager.lnk . (.TOSHIBA CORPORATION. - TosBtMng.) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe O4 - Global Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk . (.Microsoft Corporation - Microsoft Office OneNote Quick Launcher.) -- C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE O4 - Global Startup: WinTV Recording Status..lnk . (.Hauppauge Computer Works, Inc. - WinTVTray.) -- C:\Program Files\WinTV\WinTV7\WinTVTray.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: &Envoyer à OneNote - (.not file.) - C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll\105 O8 - Extra context menu item: Ajouter un site de support RSS à VAIO Information FLOW . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Sony\VAIO Information FLOW\aiesc.html O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.not file.) - C:\ O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~4\OFFICE11\REFBARH.ICO O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll ---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14) O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.club-vaio.com/fr/ ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1264006663828 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: dimsntfy . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\C:\WINDOWS\System32\dimsntfy.dll (.not file.) O20 - Winlogon Notify: VESWinlogon . (.Sony Corporation - VAIO Event Service (Winlogon Notification M.) -- C:\WINDOWS\System32\VESWinlogon.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: (CLCapSvc) . (.Pas de propriétaire - CLCapSvc Module.) - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe O23 - Service: (CLSched) . (.Pas de propriétaire - CLSched Module.) - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe O23 - Service: (HauppaugeTVServer) . (.Hauppauge Computer Works - Hauppauge TV Server.) - C:\PROGRA~1\WinTV\TVServer\HAUPPA~1.EXE O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: (KMService) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\srvany.exe O23 - Service: (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 191.5.) - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared files\RichVideo.exe O23 - Service: (VAIO Event Service) . (.Sony Corporation - VAIO Event Service (Service Module).) - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe O23 - Service: (VCI) . (.Sony Corporation - VAIO Task Scheduler Service.) - C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe O23 - Service: (VzCdbSvc) . (.Sony Corporation - VAIO Entertainment Database Service.) - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe O23 - Service: (VzFw) . (.Sony Corporation - VAIO Entertainment File Import Service.) - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GlaryInitialize.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2278988384-656786289-2577159010-1006Core.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2278988384-656786289-2577159010-1006UA.job ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll O40 - ASIC: Media Center - {407408d4-94ed-4d86-ab69-a7f649d112ee} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\inf\mcdftreg.inf O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\WINDOWS\system32\DRIVERS\avipbb.sys O41 - Driver: (DMICall) . (.Sony Corporation - Windows 2000 DMI Call Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\DMICall.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys O41 - Driver: (Tosrfcom) . (.TOSHIBA Corporation - Bluetooth RFCOMM Driver.) - C:\WINDOWS\System32\Drivers\tosrfcom.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) O42 - Logiciel: Adobe Common File Installer - (.Adobe System Incorporated.) O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) O42 - Logiciel: Assistant de connexion Windows Live ID - (.Microsoft Corporation.) O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) O42 - Logiciel: Bluetooth Stack for Windows by Toshiba - (.Pas de propriétaire.) O42 - Logiciel: CCleaner - (.Piriform.) O42 - Logiciel: CPUID CPU-Z 1.54 - (.Pas de propriétaire.) O42 - Logiciel: Cartoonist 1.3 - (.Pas de propriétaire.) O42 - Logiciel: DSD Playback Plug-in 1.0 - (.Pas de propriétaire.) O42 - Logiciel: Duplicate Cleaner 1.4.3 - (.Digital Volcano.) O42 - Logiciel: Désinstaller Bouygues Telecom - CD d'installation Bbox - (.Bouygues Telecom.) O42 - Logiciel: GDR 4053 for SQL Server Database Services 2005 ENU (KB970892) - (.Microsoft Corporation.) O42 - Logiciel: GDR 4053 for SQL Server Tools and Workstation Components 2005 ENU (KB970892) - (.Microsoft Corporation.) O42 - Logiciel: Glary Utilities 2.22.0.896 - (.Glarysoft Ltd.) O42 - Logiciel: Google Toolbar for Internet Explorer - (.Pas de propriétaire.) O42 - Logiciel: HDAUDIO SoftV92 Data Fax Modem with SmartCP - (.Pas de propriétaire.) O42 - Logiciel: Hauppauge MCE XP/Vista Software Encoder (2.0.27022) - (.Hauppauge Computer Works, Inc..) O42 - Logiciel: Hauppauge WinTV 7 - (.Pas de propriétaire.) O42 - Logiciel: Hauppauge WinTV Infrared Remote - (.Hauppauge Computer Works, Inc..) O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) O42 - Logiciel: IZArc 4.1 - (.Ivan Zahariev.) O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) O42 - Logiciel: Intel® Network Connections Drivers - (.Pas de propriétaire.) O42 - Logiciel: J2SE Runtime Environment 5.0 Update 6 - (.Sun Microsystems, Inc..) O42 - Logiciel: Java 6 Update 18 - (.Sun Microsystems, Inc..) O42 - Logiciel: LAN Setting Utility - (.Pas de propriétaire.) O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) O42 - Logiciel: MSVCRT - (.Microsoft.) O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) O42 - Logiciel: MSXML 6.0 Parser - (.Microsoft Corporation.) O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) O42 - Logiciel: Memory Stick Formatter - (.Pas de propriétaire.) O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297) - (.Pas de propriétaire.) O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA - (.Microsoft Corporation.) O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) O42 - Logiciel: Microsoft .NET Framework 4 Extended FRA Language Pack - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office 2003 Web Components - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Access MUI (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office FrontPage 2003 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Groove MUI (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Live Add-in 1.4 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office OneNote 2003 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Professionnel Plus 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (German) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proofing (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Visio Professional 2003 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Word MUI (French) 2010 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft SQL Server 2005 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft SQL Server 2005 Express Edition (SQLEXPRESS) - (.Microsoft Corporation.) O42 - Logiciel: Microsoft SQL Server 2005 Tools Express Edition - (.Microsoft Corporation.) O42 - Logiciel: Microsoft SQL Server Desktop Engine (VAIO_VEDB) - (.Microsoft Corporation.) O42 - Logiciel: Microsoft SQL Server Native Client - (.Microsoft Corporation.) O42 - Logiciel: Microsoft SQL Server Setup Support Files (English) - (.Microsoft Corporation.) O42 - Logiciel: Microsoft SQL Server VSS Writer - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.5 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Extended FRA - (.Microsoft Corporation.) O42 - Logiciel: Mozilla Firefox (3.6.3) - (.Mozilla.) O42 - Logiciel: MyDefrag v4.2.8 - (.J.C. Kessels.) O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) O42 - Logiciel: NVIDIA nView Desktop Manager - (.NVIDIA Corporation.) O42 - Logiciel: Nero 7 Ultra Edition - (.Nero AG.) O42 - Logiciel: OpenMG AAC Add-on Module 1.0.00 - (.Sony Corporation.) O42 - Logiciel: OpenMG Limited Patch 4.5-06-05-12-01 - (.Pas de propriétaire.) O42 - Logiciel: OpenMG Secure Module 4.5.01 - (.Sony Corporation.) O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) O42 - Logiciel: Package de base Microsoft de service de chiffrement pour cartes à puce - (.Microsoft Corporation.) O42 - Logiciel: PowerCinema - (.CyberLink Corp..) O42 - Logiciel: Programme Horaires V4.78, HIVER VH-201009, ETE VE-260809 - (.Pas de propriétaire.) O42 - Logiciel: Roxio DigitalMedia Audio - (.Roxio.) O42 - Logiciel: Roxio DigitalMedia Copy - (.Roxio.) O42 - Logiciel: Roxio DigitalMedia Data - (.Roxio.) O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) O42 - Logiciel: Segoe UI - (.Microsoft Corp.) O42 - Logiciel: Setting Utility Series - (.Pas de propriétaire.) O42 - Logiciel: SigmaTel Audio - (.SigmaTel.) O42 - Logiciel: SonicStage Mastering Studio Audio Filter - (.Pas de propriétaire.) O42 - Logiciel: SonicStage Mastering Studio Audio Filter Custom Preset - (.Pas de propriétaire.) O42 - Logiciel: SonicStage Mastering Studio Plugins - (.Pas de propriétaire.) O42 - Logiciel: Sony MP4 Shared Library - (.Sony Corporation.) O42 - Logiciel: Sony USB Mouse - (.Pas de propriétaire.) O42 - Logiciel: Sony Utilities DLL - (.Pas de propriétaire.) O42 - Logiciel: Sony Video Shared Library - (.Sony Corporation.) O42 - Logiciel: SpeedFan (remove only) - (.Pas de propriétaire.) O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) O42 - Logiciel: VAIO Camera Utility - (.Pas de propriétaire.) O42 - Logiciel: VAIO Control Center - (.Pas de propriétaire.) O42 - Logiciel: VAIO Edit Components 6.0 - (.Sony Corporation.) O42 - Logiciel: VAIO Entertainment Platform - (.Sony Corporation.) O42 - Logiciel: VAIO Event Service - (.Sony Corporation.) O42 - Logiciel: VAIO Hardware Diagnostics - (.Pas de propriétaire.) O42 - Logiciel: VAIO Information FLOW - (.Sony Corporation.) O42 - Logiciel: VAIO Power Management - (.Pas de propriétaire.) O42 - Logiciel: VAIO Update 5 - (.Sony Corporation.) O42 - Logiciel: VLC media player 1.0.3 - (.VideoLAN Team.) O42 - Logiciel: Vuze - (.Vuze Inc..) O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) O42 - Logiciel: Wireless LAN Starter - (.Pas de propriétaire.) O42 - Logiciel: Wireless Switch Setting Utility - (.Pas de propriétaire.) O42 - Logiciel: XML Paper Specification Shared Components Language Pack 1.0 - (.Microsoft Corporation.) O42 - Logiciel: ZebHelpProcess 2.34 - (.Nicolas Coolman.) O42 - Logiciel: eMule - (.Pas de propriétaire.) O42 - Logiciel: mProSafe - (.Intel.) O42 - Logiciel: mWlsSafe - (.Intel.) O42 - Logiciel: neroxml - (.Nero AG.) ---\\ Contenu des dossiers Fichiers Communs (O43) O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\Apoint O43 - CFD:Common File Directory ----D- C:\Program Files\Avira O43 - CFD:Common File Directory ----D- C:\Program Files\AVS4YOU O43 - CFD:Common File Directory ----D- C:\Program Files\Bbox O43 - CFD:Common File Directory ----D- C:\Program Files\BboxUpdate O43 - CFD:Common File Directory ----D- C:\Program Files\Cartoonist O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner O43 - CFD:Common File Directory ----D- C:\Program Files\ComPlus Applications O43 - CFD:Common File Directory ----D- C:\Program Files\Conduit O43 - CFD:Common File Directory ----D- C:\Program Files\CONEXANT O43 - CFD:Common File Directory ----D- C:\Program Files\CPUID O43 - CFD:Common File Directory ----D- C:\Program Files\CyberLink O43 - CFD:Common File Directory ----D- C:\Program Files\DAEMON Tools Lite O43 - CFD:Common File Directory ----D- C:\Program Files\DIFX O43 - CFD:Common File Directory ----D- C:\Program Files\Duplicate Cleaner O43 - CFD:Common File Directory ----D- C:\Program Files\eMule O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers communs O43 - CFD:Common File Directory ----D- C:\Program Files\GDS O43 - CFD:Common File Directory ----D- C:\Program Files\Glary Utilities O43 - CFD:Common File Directory ----D- C:\Program Files\Google O43 - CFD:Common File Directory ----D- C:\Program Files\Google BAE O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD:Common File Directory ----D- C:\Program Files\Intel O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer O43 - CFD:Common File Directory ----D- C:\Program Files\ISP O43 - CFD:Common File Directory ----D- C:\Program Files\IZArc O43 - CFD:Common File Directory ----D- C:\Program Files\Java O43 - CFD:Common File Directory ----D- C:\Program Files\ma-config.com O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger Plus! Live O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Analysis Services O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2 O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft IntelliPoint O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Sync Framework O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Synchronization Services O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio 8 O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft.NET O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild O43 - CFD:Common File Directory ----D- C:\Program Files\MSN O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0 O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 6.0 O43 - CFD:Common File Directory ----D- C:\Program Files\MyDefrag v4.2.8 O43 - CFD:Common File Directory ----D- C:\Program Files\Nero O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting O43 - CFD:Common File Directory ----D- C:\Program Files\Nokia O43 - CFD:Common File Directory ----D- C:\Program Files\NVIDIA Corporation O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express O43 - CFD:Common File Directory ----D- C:\Program Files\PDFCreator O43 - CFD:Common File Directory ----D- C:\Program Files\Raccourcis de programmes O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies O43 - CFD:Common File Directory ----D- C:\Program Files\Roxio O43 - CFD:Common File Directory ----D- C:\Program Files\Services en ligne O43 - CFD:Common File Directory ----D- C:\Program Files\SigmaTel O43 - CFD:Common File Directory ----D- C:\Program Files\Sony O43 - CFD:Common File Directory ----D- C:\Program Files\SpeedFan O43 - CFD:Common File Directory ----D- C:\Program Files\SystemRequirementsLab O43 - CFD:Common File Directory ----D- C:\Program Files\Techcity O43 - CFD:Common File Directory ----D- C:\Program Files\Toshiba O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN O43 - CFD:Common File Directory ----D- C:\Program Files\Vuze O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Desktop Search O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Plus O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR O43 - CFD:Common File Directory ----D- C:\Program Files\WinTV O43 - CFD:Common File Directory ----D- C:\Program Files\xerox O43 - CFD:Common File Directory ----D- C:\Program Files\ZebHelpProcess O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Ahead O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\AVSMedia O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Borland Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DESIGNER O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Hewlett-Packard O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Java O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Microsoft Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ODBC O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Sonic Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Sony Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SpeechEngines O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SWF Studio O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Symantec Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.8A5D342C825F8AC979329FE32E970E99] - 25/05/2010 - 10:10:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\PDOXUSRS.NET O44 - LFC:[MD5.387347B52AFFDA8242DEF44E00133C7B] - 25/05/2010 - 09:19:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupapi.log O44 - LFC:[MD5.00000000000000000000000000000000] - 25/05/2010 - 08:08:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ModemLog_HDAUDIO SoftV92 Data Fax Modem with SmartCP.txt O44 - LFC:[MD5.00000000000000000000000000000000] - 25/05/2010 - 08:08:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 25/05/2010 - 08:07:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\0.log O44 - LFC:[MD5.00000000000000000000000000000000] - 25/05/2010 - 08:07:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiadebug.log O44 - LFC:[MD5.989546C155F01AD731895956FDC3E8DA] - 25/05/2010 - 08:07:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\VCIError.log O44 - LFC:[MD5.00000000000000000000000000000000] - 25/05/2010 - 08:07:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiaservc.log O44 - LFC:[MD5.B101A2111B7291D5EAA2EBC11476925D] - 25/05/2010 - 08:06:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\NvApps.xml O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 25/05/2010 - 08:06:25 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat O44 - LFC:[MD5.00000000000000000000000000000000] - 25/05/2010 - 08:05:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SchedLgU.Txt O44 - LFC:[MD5.1C8BBD724B0393142323F5B366E8803C] - 25/05/2010 - 07:44:14 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WinTVInstall.LOG O44 - LFC:[MD5.45BB9540BC648A64ADD4EBAE4B2389B9] - 21/05/2010 - 22:47:12 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\vbaddin.ini O44 - LFC:[MD5.9948397BD45D555BF350B433B3CB2863] - 20/05/2010 - 10:38:14 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ODBC.INI O44 - LFC:[MD5.827D62F46005573E62E68E57FD3F488F] - 20/05/2010 - 07:21:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\FNTCACHE.DAT O44 - LFC:[MD5.0B16F0A5620AC5620749442EA5AC3FDE] - 20/05/2010 - 06:53:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\win.ini O44 - LFC:[MD5.4CE91CEDF6EC0F5FDFF2B6E2DB4E520A] - 19/05/2010 - 12:49:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\NeroDigital.ini O44 - LFC:[MD5.ED9A9CACC53FC6DCAC7F8A7D38523D49] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\FaxSetup.log O44 - LFC:[MD5.98ADDC46E3F3F3ECA626F8CD16BAFE73] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB980302-IE8.log O44 - LFC:[MD5.B11534790131E273BC801FF6849D7BF7] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\MedCtrOC.log O44 - LFC:[MD5.03AD5FCEE3B7EAFDE345EE728918ABA0] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\comsetup.log O44 - LFC:[MD5.652D729E92CF86F96BF956EE23F7E136] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ehOCGen.log O44 - LFC:[MD5.6766649E713D0D9BB00752719F7F5380] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\iis6.log O44 - LFC:[MD5.C087CD4A29BE4381D60725DFBFBB0B28] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\imsins.log O44 - LFC:[MD5.F7C88C859D9FE931761E0C32ADFF912F] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\msgsocm.log O44 - LFC:[MD5.1573C770BC1C8AF08AF0A994DB13E724] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\netfxocm.log O44 - LFC:[MD5.4AEFE45A3C6E5625083B21BE24969797] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ntdtcsetup.log O44 - LFC:[MD5.C1614921EE88C2ED1809574DEFBE6976] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocgen.log O44 - LFC:[MD5.75E079DE87201B13BE2C320153C9C70E] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocmsn.log O44 - LFC:[MD5.3CF0B2EC1CC9C9EF9618B98502E2E22B] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\plusoc.log O44 - LFC:[MD5.8C62902EEE245B7C0ADAE5983CF985B0] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\tabletoc.log O44 - LFC:[MD5.41BD6D484A94B0BF18EA0FEED3A4C399] - 14/05/2010 - 08:10:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\tsoc.log O44 - LFC:[MD5.6BD7F916DD8031EBD62C0F673843D02B] - 14/05/2010 - 08:10:33 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\msmqinst.log O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/05/2010 - 08:10:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupact.log O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/05/2010 - 08:10:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setuperr.log O44 - LFC:[MD5.1217B5BB7CA663647F03108140E81508] - 14/05/2010 - 08:08:18 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\PerfStringBackup.INI O44 - LFC:[MD5.44029C4C693B79187C82FA15911F1B85] - 14/05/2010 - 08:08:18 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc009.dat O44 - LFC:[MD5.1A8C134EB2F7AA9BA4EC09509877891A] - 14/05/2010 - 08:08:18 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc00C.dat O44 - LFC:[MD5.3F6A7A2AD63F70DC3C49459E2CE937DB] - 14/05/2010 - 08:08:18 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh009.dat O44 - LFC:[MD5.15752C2102AC2A29D748988205DA2DE1] - 14/05/2010 - 08:08:18 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh00C.dat O44 - LFC:[MD5.BFEB96774FDB38C4D983B6D6E7AB2B0E] - 14/05/2010 - 08:02:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\wpa.dbl ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL ---\\ Export de clé d'application autorisée (ECAA) (O47) O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "..." [Disabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) (.not file.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe O47 - AAKE:Key Export SP - "C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe O47 - AAKE:Key Export SP - "..." [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe O47 - AAKE:Key Export SP - "C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VMConsole.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VMConsole.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) (.not file.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) (.not file.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Vuze\Azureus.exe" [Enabled] .(.Vuze Inc. - Pas de description.) (.not file.) -- C:\Program Files\Vuze\Azureus.exe O47 - AAKE:Key Export SP - "C:\Program Files\eMule\emule.exe" [Enabled] .(.http://www.emule-project.net - eMule.) (.not file.) -- C:\Program Files\eMule\emule.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hposid01.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe O47 - AAKE:Key Export SP - "C:\Program Files\HP\HP Software Update\HPWUCli.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\HP Software Update\HPWUCli.exe O47 - AAKE:Key Export SP - "..." [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) (.not file.) -- C:\Program Files\Messenger\msmsgs.exe O47 - AAKE:Key Export SP - "C:\Program Files\Team MediaPortal\MediaPortal TV Server\TvService.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Team MediaPortal\MediaPortal TV Server\TvService.exe O47 - AAKE:Key Export SP - "C:\Program Files\Team MediaPortal\MediaPortal\MediaPortal.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Team MediaPortal\MediaPortal\MediaPortal.exe O47 - AAKE:Key Export SP - "C:\Program Files\Team MediaPortal\MediaPortal\Configuration.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Team MediaPortal\MediaPortal\Configuration.exe O47 - AAKE:Key Export SP - "C:\Program Files\WinTV\WinTV7\WinTV7.exe" [Enabled] .(.Hauppauge Computer Works, Inc. - WinTV7.) (.not file.) -- C:\Program Files\WinTV\WinTV7\WinTV7.exe O47 - AAKE:Key Export SP - "G:\eSKernel.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- G:\eSKernel.exe O47 - AAKE:Key Export SP - "C:\Program Files\Bbox\eSKernel.exe" [Enabled] .(.TechCity Solutions France - eSKernel.) (.not file.) -- C:\Program Files\Bbox\eSKernel.exe O47 - AAKE:Key Export SP - "C:\Program Files\BboxUpdate\BTLiveUpdate.exe" [Enabled] .(.TechCity Solutions France - BTLiveUpdate.) (.not file.) -- C:\Program Files\BboxUpdate\BTLiveUpdate.exe O47 - AAKE:Key Export SP - "C:\Program Files\ma-config.com\maconfservice.exe" [Enabled] .(.CybelSoft - Service de détection matériel.) (.not file.) -- C:\Program Files\ma-config.com\maconfservice.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office14\GROOVE.EXE" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\ O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office14\ONENOTE.EXE" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\ O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\ O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hposid01.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpfcCopy.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe O47 - AAKE:Key Export DP - "C:\Program Files\HP\HP Software Update\HPWUCli.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\HP Software Update\HPWUCli.exe O47 - AAKE:Key Export DP - "..." [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\HP\Digital Imaging\smart web printing\SmartWebPrintExe.exe ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ MountPoints2 Shell Key (MPSK) (O51) O51 - MPSK:{93f99f2f-3227-11df-9c87-0002c7f96cc2}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- RECYCLER\S-1-6-21-2434476501-1644491937-600003330-1213\usb.exe (.not file.) O51 - MPSK:{9dc8731b-0993-11df-9c69-0002c7f96cc2}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- RECYCLER\S-1-6-21-2434476501-1644491937-600003330-1213\usb.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \Drivers32\"VIDC.dvsd"="C:\PROGRA~1\FICHIE~1\SONYSH~1\VideoLib\sonydv.dll" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \Drivers32\"msacm.l3codecp"="" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"l3codecp.acm"="" . (.Pas de propriétaire - Pas de description.) -- (.not file.) ---\\ Microsoft Control Security Providers (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll ---\\ Microsoft Windows Policies System (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles O55 - MWPS:[HKLM\...\Policies\System] - "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme ---\\ Microsoft Windows Policies Explorer (MWPE) (O56) O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveTypeAutoRun"=149 O56 - MWPE:[HKLM\...\Policies\Explorer] - "HonorAutoRunSetting"=1 O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoCDBurning"=0 ---\\ Liste des Drivers Système (SDL) (O58) O58 - SDL:[MD5.B21FCBC58CB13BAC70F74B5AC5DA7409] - 22/11/2004 - 05:31:10 ---A- . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\WINDOWS\system32\drivers\Apfiltr.sys O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 13/02/2009 - 11:17:49 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 25/11/2009 - 11:19:02 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys O58 - SDL:[MD5.2DAA8CC2670720DEDDCC74A20EDE2EE9] - 13/02/2009 - 11:28:39 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys O58 - SDL:[MD5.4454659DD744DBCA88E8760BD458608F] - 09/06/2005 - 20:16:08 ---A- . (.Pas de propriétaire - AVHybrid BDA AVStream Driver.) -- C:\WINDOWS\system32\drivers\AVHybrid.sys O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 30/03/2009 - 09:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\WINDOWS\system32\drivers\avipbb.sys O58 - SDL:[MD5.BF79E659C506674C0497CC9C61F1A165] - 03/11/2005 - 03:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdr4_xp.sys O58 - SDL:[MD5.2C41CD49D82D5FD85C72D57B6CA25471] - 03/11/2005 - 03:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdralw2k.sys O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 10/08/2004 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 10/08/2004 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys O58 - SDL:[MD5.2F8653034A35526DF88EA0C62B035A42] - 10/03/2010 - 16:25:58 ---A- . (.Windows ® Win 7 DDK provider - CPUID Driver.) -- C:\WINDOWS\system32\drivers\cpuz133_x32.sys O58 - SDL:[MD5.526192BF7696F72E29777BF4A180513A] - 05/12/2000 - 15:18:02 ---A- . (.Sony Corporation - Windows 2000 DMI Call Kernel Driver.) -- C:\WINDOWS\system32\drivers\DMICall.sys O58 - SDL:[MD5.6A497E9A56E9CC3EDE0D7374C7B4940E] - 01/08/2008 - 19:53:20 R--A- . (.Windows ® Codename Longhorn DDK provider - NDIS User mode I/O Driver.) -- C:\WINDOWS\system32\drivers\Dsaproto.sys O58 - SDL:[MD5.AC9CF17EE2AE003C98EB4F5336C38058] - 16/11/2007 - 10:55:00 ---A- . (.Intel Corporation - Intel® PRO/100 Adapter NDIS 5.1 driver.) -- C:\WINDOWS\system32\drivers\e100b325.sys O58 - SDL:[MD5.F454484E633CEF3045C38BDA5479A5F7] - 03/06/2009 - 15:38:00 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV HVR-900H-Stick.) -- C:\WINDOWS\system32\drivers\hcw66xxx.sys O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 13/04/2008 - 17:36:05 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys O58 - SDL:[MD5.9131EDE087AF04A7D80F7EBADC164254] - 12/08/2004 - 16:45:52 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Function Driver v1.0.) -- C:\WINDOWS\system32\drivers\Hdaudio.sys O58 - SDL:[MD5.D03D10F7DED688FECF50F8FBF1EA9B8A] - 28/10/2008 - 11:27:07 R--A- . (.HP - IEEE-1284.4-1999 Driver (Windows 2000).) -- C:\WINDOWS\system32\drivers\HPZid412.sys O58 - SDL:[MD5.89F41658929393487B6B7D13C8528CE3] - 28/10/2008 - 11:27:07 R--A- . (.HP - IEEE-1284.4-1999 Print Class Driver.) -- C:\WINDOWS\system32\drivers\HPZipr12.sys O58 - SDL:[MD5.ABCB05CCDBF03000354B9553820E39F8] - 28/10/2008 - 11:27:07 R--A- . (.HP - 1284.4<->Usb Datalink Driver (Windows 2000).) -- C:\WINDOWS\system32\drivers\HPZius12.sys O58 - SDL:[MD5.ACC46DDA7FECE95A253AE88CEA172E12] - 18/10/2005 - 08:52:34 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys O58 - SDL:[MD5.C1D5CBD8AA0D674DA1BA1BB189696396] - 18/10/2005 - 08:52:30 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys O58 - SDL:[MD5.C9F4E7DA78A02623ABF78A4A34CE79B1] - 18/10/2005 - 08:53:24 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\HSF_DPV.sys O58 - SDL:[MD5.552B6B3B889020B8A2D5525068A494B4] - 03/07/2007 - 18:10:10 ---A- . (.Ahead Software AG - NERO IMAGEDRIVE SCSI miniport.) -- C:\WINDOWS\system32\drivers\imagedrv.sys O58 - SDL:[MD5.1BE72919F1B489FB8C06AE7CEF45C659] - 03/07/2007 - 18:10:12 ---A- . (.Ahead Software AG - Nero Image Server.) -- C:\WINDOWS\system32\drivers\imagesrv.sys O58 - SDL:[MD5.654A3F014903DC62CAF5E037F3D316D2] - 07/01/2010 - 16:07:04 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys O58 - SDL:[MD5.C0D40BEAA6DFC05602FC8F484696F7F5] - 07/01/2010 - 16:07:14 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys O58 - SDL:[MD5.E246A32C445056996074A397DA56E815] - 05/10/2005 - 08:57:08 ---A- . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys O58 - SDL:[MD5.3BC15801F7B9DD2D16897A38A962CE56] - 13/01/2010 - 08:24:42 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\system32\drivers\NETw5x32.sys O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 10/08/2004 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys O58 - SDL:[MD5.788F35282F1DDE15C80D74871B247C47] - 21/01/2010 - 01:14:51 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 191.56.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys O58 - SDL:[MD5.59B3101F20056104C011E0C68AEBB840] - 28/06/2002 - 17:21:40 ---A- . (.Primax Electronics Ltd. - Mouse Suite Driver (For Windows 2000 and Whistler Only).) -- C:\WINDOWS\system32\drivers\PELMOUSE.SYS O58 - SDL:[MD5.F1CE775AF376FAF3FFEFB4FF8CBDFBF3] - 24/07/2001 - 09:34:34 ---A- . (.Primax Electronics Ltd. - USB Mouse Low Filter Driver(Win2000 only).) -- C:\WINDOWS\system32\drivers\PELUSBlf.SYS O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 10/08/2004 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys O58 - SDL:[MD5.0C8DA0A8B0D227319C285E0EAE65DEFD] - 03/11/2005 - 03:00:00 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\system32\drivers\pxhelp20.sys O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 10/08/2004 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 10/08/2004 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/04/2008 - 17:39:15 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys O58 - SDL:[MD5.5FE18FFF6FBCF218290042009EAB023D] - 02/12/2005 - 16:38:04 ---A- . (.Sonic Focus, Inc - SFNG32.SYS.) -- C:\WINDOWS\system32\drivers\sfng32.sys O58 - SDL:[MD5.716A724A447C559F122EA140D636FA48] - 21/09/2005 - 01:04:56 ---A- . (.Silicon Image, Inc. - Serial ATA miniport driver.) -- C:\WINDOWS\system32\drivers\SI3132.sys O58 - SDL:[MD5.62FD549ACF2943F89612A8777295FA57] - 20/09/2005 - 07:18:20 ---A- . (.Silicon Image, Inc. - Filter driver for Silicon Image SATALink controllers..) -- C:\WINDOWS\system32\drivers\SiRemFil.sys O58 - SDL:[MD5.72CF151FB410E544904DBC7D7F29B796] - 01/11/2004 - 04:21:32 ---A- . (.Silicon Image, Inc. - Windows Accelerator Driver.) -- C:\WINDOWS\system32\drivers\SiWinAcc.sys O58 - SDL:[MD5.C483FC0ADD8B074286600B9620EF2C16] - 06/03/2006 - 10:39:00 ---A- . (.Sony Corporation - Sony Image Filter Driver.) -- C:\WINDOWS\system32\drivers\SonyImgF.sys O58 - SDL:[MD5.BE6038E0A7D2E2FE69107E41A0265831] - 09/11/2000 - 11:15:08 ---A- . (.Sony Corporation - Sony Notebook Control driver.) -- C:\WINDOWS\system32\drivers\SonyNC.sys O58 - SDL:[MD5.00000000000000000000000000000000] - 07/05/2010 - 02:50:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\drivers\sptd.sys O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 11/05/2009 - 09:11:52 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys O58 - SDL:[MD5.784B73BD9D1C0FBA6CA96E8976F4B0E6] - 26/05/2006 - 23:59:12 ---A- . (.SigmaTel, Inc. - NDRC.) -- C:\WINDOWS\system32\drivers\sthda.sys O58 - SDL:[MD5.3106074A87BD5A16E2A3AF6902BB6D91] - 24/01/2007 - 14:46:00 ---A- . (.Texas Instruments - ti21sony.sys.) -- C:\WINDOWS\system32\drivers\ti21sony.sys O58 - SDL:[MD5.78E9819E076B909541BD4A37F8F0668B] - 07/04/2003 - 21:52:00 ---A- . (.TOSHIBA Corporation - TOSHIBA SD Bluetooth Card #2 Driver.) -- C:\WINDOWS\system32\drivers\tosbtsd2.sys O58 - SDL:[MD5.142B91503C45C1A05A355414E13A51D1] - 30/08/2004 - 16:27:30 ---A- . (.TOSHIBA Corporation - SD Bluetooth Transport Driver.) -- C:\WINDOWS\system32\drivers\tosdbt.sys O58 - SDL:[MD5.E362D54FD394999C4178936396664E57] - 11/07/2005 - 18:58:56 ---A- . (.TOSHIBA Corporation. - Toshiba Bluetooth HID mini port driver.) -- C:\WINDOWS\system32\drivers\toshidpt.sys O58 - SDL:[MD5.D626E0AF9232D8799D3A449530F3C220] - 24/11/2005 - 13:37:36 ---A- . (.TOSHIBA Corporation - TOSHIBA Bluetooth Port Emulation Driver.) -- C:\WINDOWS\system32\drivers\tosporte.sys O58 - SDL:[MD5.0EC5206059D97A8DC785BE73FB457EC7] - 03/02/2006 - 23:16:08 ---A- . (.TOSHIBA CORPORATION - Bluetooth RF Bus Driver.) -- C:\WINDOWS\system32\drivers\tosrfbd.sys O58 - SDL:[MD5.33498B8F0B2CA549C2B7FFC1B3C0F1BC] - 14/12/2005 - 17:07:24 ---A- . (.TOSHIBA Corporation - Bluetooth RFBNEP Driver.) -- C:\WINDOWS\system32\drivers\tosrfbnp.sys O58 - SDL:[MD5.5BA1CA3B3CDDB1DDC67DF473F05D1EC2] - 01/08/2005 - 16:45:08 ---A- . (.TOSHIBA Corporation - Bluetooth RFCOMM Driver.) -- C:\WINDOWS\system32\drivers\tosrfcom.sys O58 - SDL:[MD5.CC069342EE0EAE55B32A0AE99CF6185C] - 09/09/2005 - 14:47:10 ---A- . (.TOSHIBA Corporation - TOSHIBA Bluetooth EC Driver.) -- C:\WINDOWS\system32\drivers\tosrfec.sys O58 - SDL:[MD5.5DBF390AAB62DD0D4D43A9278614E001] - 08/02/2006 - 17:33:34 ---A- . (.TOSHIBA Corporation. - Bluetooth HID Driver from TOSHIBA.) -- C:\WINDOWS\system32\drivers\tosrfhid.sys O58 - SDL:[MD5.AE5B75C86574A1BD0A093A9159F829F9] - 07/02/2002 - 16:24:20 ---A- . (.TOSHIBA Corporation. - Bluetooth LAN Emulation Driver.) -- C:\WINDOWS\system32\drivers\tosrflan.sys O58 - SDL:[MD5.C52FD27B9ADF3A1F22CB90E6BCF9B0CB] - 06/01/2005 - 13:42:42 ---A- . (.TOSHIBA Corporation. - Bluetooth BNEP Driver.) -- C:\WINDOWS\system32\drivers\tosrfnds.sys O58 - SDL:[MD5.87031831486F7ED4EAFEF27125BB56C8] - 01/08/2002 - 21:53:22 ---A- . (.TOSHIBA Corporation - Bluetooth TOSHIBA PC-Card Driver.) -- C:\WINDOWS\system32\drivers\tosrfpcc.sys O58 - SDL:[MD5.0D86D15CAFF2B3203C785D604EC7C942] - 11/11/2005 - 15:09:52 ---A- . (.TOSHIBA Corporation - Bluetooth Audio Driver (WDM).) -- C:\WINDOWS\system32\drivers\tosrfsnd.sys O58 - SDL:[MD5.C582B7716F0BE7E65505365F4F941587] - 31/01/2006 - 18:35:28 ---A- . (.TOSHIBA CORPORATION - Bluetooth USB Miniport Driver.) -- C:\WINDOWS\system32\drivers\tosrfusb.sys O58 - SDL:[MD5.306E19413EADB0CA8842D5381A0354FC] - 01/07/2003 - 12:52:30 ---A- . (.TOSHIBA Corporation - Toshiba SD-IO Transport Driver.) -- C:\WINDOWS\system32\drivers\tostrans.sys O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 10/08/2004 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys O58 - SDL:[MD5.C7F4158EA3915F4194AEE233FF8D4728] - 29/12/2005 - 10:42:00 ---A- . (.Vimicro Corporation - VM321 Video Driver.) -- C:\WINDOWS\system32\drivers\usbvm321.sys O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 10/08/2004 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys O58 - SDL:[MD5.B1F126E7E28877106D60E6FF3998D033] - 05/12/2005 - 23:55:30 ---A- . (.Intel® Corporation - Intel® Wireless LAN Driver.) -- C:\WINDOWS\system32\drivers\w39n51.sys O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ansi.sys O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\country.sys O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 03/04/1996 - 20:33:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\giveio.sys O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\himem.sys O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\key01.sys O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\keyboard.sys O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos.sys O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos404.sys O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos411.sys O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos412.sys O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos804.sys O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio.sys O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio404.sys O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio411.sys O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio412.sys O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio804.sys O58 - SDL:[MD5.5D6401DB90EC81B71F8E2C5C8F0FEF23] - 24/09/2006 - 14:28:46 ---A- . (.Windows ® 2000 DDK provider - SpeedFan Device Driver.) -- C:\WINDOWS\system32\speedfan.sys ---\\ Alternate Data Stream File (ADS) (O62) O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nv4_disp.dll:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvapi.dll:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvcod.dll:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvcodins.dll:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvcuda.dll:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvcuvenc.dll:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvcuvid.dll:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvdata.bin:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvdisp.nvu:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvoglnt.dll:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvudisp.exe:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\nvuninst.exe:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\WINDOWS\System32\Drivers\nv4_mini.sys:Zone.Identifier End of the scan (722 lines)

Merci beaucoup Angélique... et bon courage à l'équipe...

Et pour plop.bat : Le volume dans le lecteur H s'appelle WD PASSPORT Le num‚ro de s‚rie du volume est A4BB-72B1 R‚pertoire de H:\ 02/12/2007 18:24 <REP> $RECYCLE.BIN 02/05/2008 11:47 15ÿ628 AR-1209721631106.pdf 03/10/2007 17:43 <REP> autorun 15/06/2008 11:11 93ÿ224 Bookmarks 2008-06-15.html 14/12/2007 06:05 11ÿ434 compte.slk 17/06/2008 12:58 21ÿ200 Configurer le pr‚lŠvement b...pdf 20/05/2008 11:54 <REP> Diskeeper 23/04/2008 19:18 <REP> donn‚es 30/04/2008 23:18 <REP> données 15/06/2008 11:09 2ÿ856 impots.p12 19/05/2008 13:13 78ÿ113 PDFDocument.pdf 12/06/2008 22:10 199ÿ903ÿ776 race_driver_grid_patch_v1.1_multi-langues_245914.exe 23/01/2007 18:27 <REP> Recycled 03/06/2008 02:12 <REP> RECYCLER 07/05/2008 08:50 <REP> steph 26/06/2008 18:52 <REP> System Volume Information 08/12/2007 16:40 28ÿ160 Thumbs.db 16/06/2008 10:59 <REP> TrackMania 28/06/2007 02:13 <REP> WD Sync Data 04/09/2006 18:11 4ÿ347ÿ904 WDSync.exe 23/01/2007 18:40 3ÿ405ÿ572 WDSync.zip 28/06/2007 02:13 4ÿ907ÿ520 WDSync_v6_3_130.exe 28/03/2008 12:02 <REP> WD_Windows_tools 12 fichier(s) 7ÿ115ÿ197ÿ979 octets 12 R‚p(s) 51ÿ127ÿ853ÿ056 octets libres C'est très sympas ; Merci

ça y est MBAM à fonctionné : Malwarebytes' Anti-Malware 1.18 Version de la base de données: 887 20:27:15 26/06/2008 mbam-log-6-26-2008 (20-27-07).txt Type de recherche: Examen complet (H:\|) Eléments examinés: 37120 Temps écoulé: 24 minute(s), 54 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 1 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> No action taken. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)

excuse je l'ai oublié ... pour Antivir: Avira AntiVir Personal Report file date: jeudi 26 juin 2008 17:47 Scanning for 1360080 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (Service Pack 3) [5.1.2600] Boot mode: Normally booted Username: Julien Computer name: NOM-F002A4FFBF1 Version information: BUILD.DAT : 8.1.00.295 16479 Bytes 09/04/2008 16:24:00 AVSCAN.EXE : 8.1.2.12 311553 Bytes 18/03/2008 09:02:56 AVSCAN.DLL : 8.1.1.0 53505 Bytes 07/02/2008 08:43:37 LUKE.DLL : 8.1.2.9 151809 Bytes 28/02/2008 08:41:23 LUKERES.DLL : 8.1.2.1 12033 Bytes 21/02/2008 08:28:40 ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34 ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 23:50:10 ANTIVIR2.VDF : 7.0.5.2 2048 Bytes 24/06/2008 23:50:11 ANTIVIR3.VDF : 7.0.5.7 28672 Bytes 25/06/2008 23:50:12 Engineversion : 8.1.0.59 AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 09:58:21 AESCRIPT.DLL : 8.1.0.44 278907 Bytes 25/06/2008 23:50:58 AESCN.DLL : 8.1.0.22 119157 Bytes 25/06/2008 23:50:54 AERDL.DLL : 8.1.0.20 418165 Bytes 25/06/2008 23:50:52 AEPACK.DLL : 8.1.1.6 364918 Bytes 25/06/2008 23:50:47 AEOFFICE.DLL : 8.1.0.20 192891 Bytes 25/06/2008 23:50:36 AEHEUR.DLL : 8.1.0.32 1274231 Bytes 25/06/2008 23:50:33 AEHELP.DLL : 8.1.0.15 115063 Bytes 25/06/2008 23:50:23 AEGEN.DLL : 8.1.0.29 307573 Bytes 25/06/2008 23:50:22 AEEMU.DLL : 8.1.0.6 430451 Bytes 25/06/2008 23:50:19 AECORE.DLL : 8.1.0.31 168310 Bytes 25/06/2008 23:50:15 AVWINLL.DLL : 1.0.0.7 14593 Bytes 23/01/2008 17:07:53 AVPREF.DLL : 8.0.0.1 25857 Bytes 18/02/2008 10:37:50 AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:26:47 AVREG.DLL : 8.0.0.0 30977 Bytes 23/01/2008 17:07:49 AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23 AVEVTLOG.DLL : 8.0.0.11 114945 Bytes 28/02/2008 08:31:31 SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02 SMTPLIB.DLL : 1.2.0.19 28929 Bytes 23/01/2008 17:08:39 NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10 RCIMAGE.DLL : 8.0.0.35 2371841 Bytes 10/03/2008 14:37:25 RCTEXT.DLL : 8.0.32.0 86273 Bytes 06/03/2008 12:02:11 Configuration settings for the scan: Jobname..........................: ShlExt Configuration file...............: C:\DOCUME~1\Julien\LOCALS~1\Temp\9ddd2052.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: on Scan boot sector.................: on Boot sectors.....................: H:, Scan memory......................: on Process scan.....................: off Scan registry....................: off Search for rootkits..............: off Scan all files...................: All files Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox, Macro heuristic..................: on File heuristic...................: high Start of the scan: jeudi 26 juin 2008 17:47 Starting the file scan: Begin scan in 'H:\' <WD PASSPORT> End of the scan: jeudi 26 juin 2008 18:19 Used time: 32:10 min The scan has been done completely. 556 Scanning directories 10230 Files were scanned 0 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 0 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 0 Files cannot be scanned 10230 Files not concerned 258 Archives were scanned 0 Warnings 0 Notes et malwarebytes que j'utilise depuis lgtps (régulièrement mis à jour ) plante à chaque scan sur H seulement...

Merci Angélique, j'ai refais un scan Antivir: Dès que j'ai rebranché mon disque H mon portable à ralentit et tourne sur trois pattes... Voici le rapport: Avira AntiVir Personal Report file date: jeudi 26 juin 2008 17:34 Scanning for 1360080 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (Service Pack 3) [5.1.2600] Boot mode: Normally booted Username: SYSTEM Computer name: NOM-F002A4FFBF1 Version information: BUILD.DAT : 8.1.00.295 16479 Bytes 09/04/2008 16:24:00 AVSCAN.EXE : 8.1.2.12 311553 Bytes 18/03/2008 09:02:56 AVSCAN.DLL : 8.1.1.0 53505 Bytes 07/02/2008 08:43:37 LUKE.DLL : 8.1.2.9 151809 Bytes 28/02/2008 08:41:23 LUKERES.DLL : 8.1.2.1 12033 Bytes 21/02/2008 08:28:40 ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34 ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 23:50:10 ANTIVIR2.VDF : 7.0.5.2 2048 Bytes 24/06/2008 23:50:11 ANTIVIR3.VDF : 7.0.5.7 28672 Bytes 25/06/2008 23:50:12 Engineversion : 8.1.0.59 AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 09:58:21 AESCRIPT.DLL : 8.1.0.44 278907 Bytes 25/06/2008 23:50:58 AESCN.DLL : 8.1.0.22 119157 Bytes 25/06/2008 23:50:54 AERDL.DLL : 8.1.0.20 418165 Bytes 25/06/2008 23:50:52 AEPACK.DLL : 8.1.1.6 364918 Bytes 25/06/2008 23:50:47 AEOFFICE.DLL : 8.1.0.20 192891 Bytes 25/06/2008 23:50:36 AEHEUR.DLL : 8.1.0.32 1274231 Bytes 25/06/2008 23:50:33 AEHELP.DLL : 8.1.0.15 115063 Bytes 25/06/2008 23:50:23 AEGEN.DLL : 8.1.0.29 307573 Bytes 25/06/2008 23:50:22 AEEMU.DLL : 8.1.0.6 430451 Bytes 25/06/2008 23:50:19 AECORE.DLL : 8.1.0.31 168310 Bytes 25/06/2008 23:50:15 AVWINLL.DLL : 1.0.0.7 14593 Bytes 23/01/2008 17:07:53 AVPREF.DLL : 8.0.0.1 25857 Bytes 18/02/2008 10:37:50 AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:26:47 AVREG.DLL : 8.0.0.0 30977 Bytes 23/01/2008 17:07:49 AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23 AVEVTLOG.DLL : 8.0.0.11 114945 Bytes 28/02/2008 08:31:31 SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02 SMTPLIB.DLL : 1.2.0.19 28929 Bytes 23/01/2008 17:08:39 NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10 RCIMAGE.DLL : 8.0.0.35 2371841 Bytes 10/03/2008 14:37:25 RCTEXT.DLL : 8.0.32.0 86273 Bytes 06/03/2008 12:02:11 Configuration settings for the scan: Jobname..........................: Complete system scan Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: on Scan boot sector.................: on Boot sectors.....................: C:, D:, Scan memory......................: on Process scan.....................: on Scan registry....................: on Search for rootkits..............: off Scan all files...................: All files Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox, Macro heuristic..................: on File heuristic...................: high Start of the scan: jeudi 26 juin 2008 17:34 The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'msimn.exe' - '1' Module(s) have been scanned Scan process 'firefox.exe' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'notepad.exe' - '1' Module(s) have been scanned Scan process 'usnsvc.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'wmiapsrv.exe' - '1' Module(s) have been scanned Scan process 'ApntEx.exe' - '1' Module(s) have been scanned Scan process 'alg.exe' - '1' Module(s) have been scanned Scan process 'ehmsas.exe' - '1' Module(s) have been scanned Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned Scan process 'dllhost.exe' - '1' Module(s) have been scanned Scan process 'ctfmon.exe' - '1' Module(s) have been scanned Scan process 'avgnt.exe' - '1' Module(s) have been scanned Scan process 'ehtray.exe' - '1' Module(s) have been scanned Scan process 'Apoint.exe' - '1' Module(s) have been scanned Scan process 'mcrdsvc.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'RegSrvc.exe' - '1' Module(s) have been scanned Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned Scan process 'nTuneService.exe' - '1' Module(s) have been scanned Scan process 'MDM.EXE' - '1' Module(s) have been scanned Scan process 'EvtEng.exe' - '1' Module(s) have been scanned Scan process 'ehSched.exe' - '1' Module(s) have been scanned Scan process 'ehrecvr.exe' - '1' Module(s) have been scanned Scan process 'avguard.exe' - '1' Module(s) have been scanned Scan process 'sched.exe' - '1' Module(s) have been scanned Scan process 'spoolsv.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'S24EvMon.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 42 processes with 42 modules were scanned Starting master boot sector scan: Master boot sector HD0 [iNFO] No virus was found! Master boot sector HD1 [iNFO] No virus was found! [WARNING] Le périphérique n'est pas prêt. Start scanning boot sectors: Boot sector 'C:\' [iNFO] No virus was found! Boot sector 'D:\' [iNFO] No virus was found! Starting to scan the registry. The registry was scanned ( '20' files ). Starting the file scan: Begin scan in 'C:\' <VAIO> C:\hiberfil.sys [WARNING] The file could not be opened! C:\pagefile.sys [WARNING] The file could not be opened! C:\WINDOWS\system32\drivers\sptd.sys [WARNING] The file could not be opened! Begin scan in 'D:\' <VAIO> End of the scan: jeudi 26 juin 2008 18:27 Used time: 53:04 min The scan has been done completely. 7120 Scanning directories 322032 Files were scanned 0 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 0 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 3 Files cannot be scanned 322032 Files not concerned 7738 Archives were scanned 4 Warnings 0 Notes

Bonjour Angélique et merci , Voici le rapport : ComboFix 08-06-20.4 - Julien 2008-06-26 17:06:59.6 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.673 [GMT 2:00] Endroit: C:\Documents and Settings\Julien\Bureau\ComboFix.exe Command switches used :: C:\Documents and Settings\Julien\Bureau\CFScript.txt * Création d'un nouveau point de restauration AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! FILE :: C:\WINDOWS\system32\bagruyex.dll C:\WINDOWS\system32\gfbeqorl.dll C:\WINDOWS\system32\hejeitgg.dll C:\WINDOWS\system32\jjhdlyoc.dll C:\WINDOWS\system32\ntthbtyx.dll C:\WINDOWS\system32\ohexgyqu.dll . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\system32\bagruyex.dll C:\WINDOWS\system32\gfbeqorl.dll C:\WINDOWS\system32\hejeitgg.dll C:\WINDOWS\system32\jjhdlyoc.dll C:\WINDOWS\system32\ntthbtyx.dll C:\WINDOWS\system32\ohexgyqu.dll H:\Autorun.inf . ((((((((((((((((((((((((((((( Fichiers créés 2008-05-26 to 2008-06-26 )))))))))))))))))))))))))))))))))))) . 2008-06-25 18:00 . 2008-06-25 18:00 <REP> d-------- C:\Program Files\Avira 2008-06-25 18:00 . 2008-06-25 18:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira 2008-06-25 17:31 . 2008-06-25 17:31 <REP> d-------- C:\Program Files\MSXML 4.0 2008-06-25 17:01 . 2008-06-25 21:15 <REP> d-------- C:\HJT 2008-06-25 15:14 . 2008-06-25 16:44 <REP> d-------- C:\WINDOWS\BDOSCAN8 2008-06-24 12:26 . 2008-06-24 12:26 <REP> d-------- C:\Program Files\ZebHelpProcess 2 2008-06-24 12:26 . 2008-06-24 12:26 <REP> d-------- C:\Program Files\Fichiers communs\Borland Shared 2008-06-24 12:26 . 1999-01-20 05:01 210,032 --a------ C:\WINDOWS\system32\DBCLIENT.DLL 2008-06-24 12:26 . 1999-11-12 05:11 183,808 --a------ C:\WINDOWS\system32\BDEADMIN.CPL 2008-06-24 12:26 . 2008-06-25 02:22 13,030 --a------ C:\PDOXUSRS.NET 2008-06-24 12:19 . 2008-06-25 13:38 1,834 --a------ C:\WINDOWS\system32\tmp.reg 2008-06-24 11:32 . 2008-06-25 18:08 <REP> d-------- C:\Program Files\Spybot - Search & Destroy 2008-06-24 11:32 . 2008-06-25 18:07 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-06-24 10:52 . 2008-06-24 10:52 98 --a------ C:\WINDOWS\WirelessFTP.INI 2008-06-20 00:04 . 2008-06-23 14:02 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Azureus 2008-06-20 00:04 . 2008-06-20 00:04 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Azureus 2008-06-20 00:02 . 2008-06-23 13:29 <REP> d-------- C:\Program Files\Azureus 2008-06-19 17:53 . 2008-06-19 17:53 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Toshiba 2008-06-18 20:41 . 2008-06-18 20:41 <REP> d-------- C:\Program Files\VideoLAN 2008-06-17 03:19 . 2008-06-17 03:19 <REP> d-------- C:\Program Files\Windows Media Connect 2 2008-06-17 03:16 . 2008-06-17 03:17 <REP> d-------- C:\WINDOWS\system32\drivers\UMDF 2008-06-16 14:00 . 2008-06-19 00:51 <REP> d-------- C:\Documents and Settings\Julien\Application Data\vlc 2008-06-12 23:10 . 2008-06-12 23:10 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll 2008-06-12 23:06 . 2006-10-18 21:47 2,450,944 -----c--- C:\WINDOWS\system32\dllcache\wmvcore.dll 2008-06-12 23:06 . 2008-06-14 19:33 272,768 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys 2008-06-12 23:06 . 2008-05-08 16:02 203,136 -----c--- C:\WINDOWS\system32\dllcache\rmcast.sys 2008-06-08 00:51 . 2008-06-08 00:51 <REP> d-------- C:\Program Files\NVIDIA Corporation 2008-06-08 00:50 . 2008-06-08 00:50 <REP> d-------- C:\Program Files\NVIDIA nTune Performance Application 2008-06-08 00:41 . 2007-12-05 07:41 1,703,936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll 2008-06-08 00:40 . 2008-06-08 00:40 <REP> d-------- C:\Program Files\Nvidia Omega Drivers 2008-06-08 00:40 . 2008-06-08 00:40 472,576 --a------ C:\WINDOWS\Nvidia Omega Drivers v2.169.21 Uninstall.exe 2008-06-08 00:25 . 2008-04-28 20:25 4,224 --a------ C:\WINDOWS\system32\drivers\NVStrap.sys 2008-06-08 00:23 . 2008-06-08 00:30 <REP> d-------- C:\Program Files\RivaTuner v2.09 2008-06-07 23:40 . 2008-05-30 14:11 3,850,760 --a------ C:\WINDOWS\system32\D3DX9_38.dll 2008-06-07 23:40 . 2008-05-30 14:11 1,491,992 --a------ C:\WINDOWS\system32\D3DCompiler_38.dll 2008-06-07 23:40 . 2008-05-30 14:19 507,400 --a------ C:\WINDOWS\system32\XAudio2_1.dll 2008-06-07 23:40 . 2008-05-30 14:11 467,984 --a------ C:\WINDOWS\system32\d3dx10_38.dll 2008-06-07 23:40 . 2008-05-30 14:18 238,088 --a------ C:\WINDOWS\system32\xactengine3_1.dll 2008-06-07 23:40 . 2008-05-30 14:17 65,032 --a------ C:\WINDOWS\system32\XAPOFX1_0.dll 2008-06-07 23:40 . 2008-05-30 14:17 25,608 --a------ C:\WINDOWS\system32\X3DAudio1_4.dll 2008-06-07 23:39 . 2008-06-07 23:39 <REP> d--h----- C:\WINDOWS\msdownld.tmp 2008-06-07 23:38 . 2008-06-07 23:38 <REP> d-------- C:\WINDOWS\Logs 2008-06-07 03:34 . 2008-04-10 17:07 442,368 --a------ C:\WINDOWS\system32\NVUNINST.EXE 2008-06-07 03:31 . 2008-04-14 01:20 442,368 --a------ C:\WINDOWS\system32\nvudisp.exe 2008-06-07 03:31 . 2008-06-08 19:04 160,371 --a------ C:\WINDOWS\system32\nvapps.xml 2008-06-07 03:31 . 2007-12-05 07:41 17,737 --a------ C:\WINDOWS\system32\nvdisp.nvu 2008-06-07 03:18 . 2008-04-14 04:03 5,504 --a------ C:\WINDOWS\system32\drivers\intelide.sys 2008-06-07 03:18 . 2008-04-14 04:03 5,504 --a--c--- C:\WINDOWS\system32\dllcache\intelide.sys 2008-06-07 02:52 . 2008-05-01 16:35 53,248 --a------ C:\WINDOWS\system32\CSVer.dll 2008-06-07 02:38 . 2008-06-07 02:37 737,280 --a------ C:\WINDOWS\iun6002.exe 2008-06-07 02:25 . 2008-06-07 02:25 1,169 --a------ C:\WINDOWS\mozver.dat 2008-06-06 23:49 . 2008-06-06 23:49 <REP> d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles 2008-06-06 23:47 . 2008-06-08 00:43 <REP> d-------- C:\WINDOWS\nview 2008-06-06 22:30 . 2008-06-06 22:30 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Codemasters 2008-06-06 22:29 . 2008-06-06 22:29 <REP> d-------- C:\Program Files\OpenAL 2008-06-05 10:33 . 2008-06-05 10:33 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Talkback 2008-06-05 10:33 . 2008-06-05 10:33 0 --a------ C:\WINDOWS\nsreg.dat 2008-06-05 10:28 . 2008-06-24 22:45 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-06-05 10:28 . 2008-06-05 10:28 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Malwarebytes 2008-06-05 10:28 . 2008-06-05 10:28 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-06-05 10:28 . 2008-06-19 17:48 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-06-05 10:28 . 2008-06-19 17:47 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-06-03 17:27 . 2008-06-03 17:27 <REP> d--hs---- C:\Diskeeper 2008-06-03 17:09 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll 2008-06-03 17:09 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui 2008-06-03 14:02 . 2008-06-03 14:02 0 --a------ C:\Documents and Settings\Julien\Application Data\wklnhst.dat 2008-06-03 13:59 . 2008-06-03 13:59 <REP> d-------- C:\Program Files\Fichiers communs\SWF Studio 2008-06-03 13:59 . 2008-06-03 13:59 <REP> d-------- C:\Documents and Settings\Julien\Application Data\sony 2008-06-03 13:50 . 2007-12-05 07:41 1,089,536 --a------ C:\WINDOWS\system32\nvcuda.dll 2008-06-03 13:41 . 2008-06-03 13:41 <REP> d-------- C:\Documents and Settings\Julien\Application Data\InterVideo 2008-06-03 04:20 . 2008-06-25 21:51 <REP> d-------- C:\WINDOWS\system32\LogFiles 2008-06-03 03:18 . 2007-04-04 18:53 81,768 --a------ C:\WINDOWS\system32\xinput1_3.dll 2008-06-03 02:51 . 2008-06-03 02:51 <REP> d-------- C:\Program Files\Microsoft Silverlight 2008-06-03 02:49 . 2008-06-03 02:49 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Sonic 2008-06-03 02:48 . 2008-06-03 02:48 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Leadertech 2008-06-03 02:36 . 2008-06-25 14:31 <REP> d-------- C:\Program Files\Codemasters 2008-06-03 02:35 . 2008-06-03 02:35 <REP> d-------- C:\Program Files\DAEMON Tools Lite 2008-06-03 02:30 . 2008-06-03 02:30 <REP> d-------- C:\Program Files\Lavalys 2008-06-03 02:09 . 2008-06-03 02:09 <REP> d-------- C:\Program Files\Diskeeper Corporation 2008-06-03 02:09 . 2008-06-03 02:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Diskeeper Corporation 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\NetworkService\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\LocalService\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 376,832 --a------ C:\WINDOWS\system32\AegisI5Installer.exe 2008-06-03 02:08 . 2008-06-03 02:08 21,361 --a------ C:\WINDOWS\system32\drivers\AegisP.sys 2008-06-03 02:08 . 2008-06-03 02:08 21,361 --a------ C:\WINDOWS\AegisP.sys 2008-06-03 02:08 . 2008-06-03 02:08 13,984 --a------ C:\WINDOWS\AegisP.inf 2008-06-03 02:08 . 2008-06-03 02:08 10,640 --a------ C:\WINDOWS\AegisP.cat 2008-06-03 02:07 . 2008-06-03 02:07 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Intel 2008-06-03 02:07 . 2007-08-08 15:29 2,772,992 --a------ C:\WINDOWS\system32\NETw4r32.dll 2008-06-03 02:07 . 2008-03-13 03:25 2,530,176 --a------ C:\WINDOWS\system32\drivers\NETw4x32.sys 2008-06-03 02:07 . 2007-08-08 15:28 684,032 --a------ C:\WINDOWS\system32\NETw4c32.dll 2008-06-03 02:07 . 2008-04-13 20:45 26,368 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys 2008-06-03 01:30 . 2008-06-03 01:30 <REP> d-------- C:\Program Files\SystemRequirementsLab 2008-06-03 01:22 . 2008-06-03 01:22 <REP> d-------- C:\Program Files\IZArc 2008-06-03 01:20 . 2008-04-23 06:16 6,066,176 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll 2008-06-03 01:20 . 2007-04-17 11:32 2,455,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dat 2008-06-03 01:20 . 2007-03-08 07:10 1,048,576 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll.mui 2008-06-03 01:20 . 2008-04-23 06:16 459,264 -----c--- C:\WINDOWS\system32\dllcache\msfeeds.dll 2008-06-03 01:20 . 2008-04-23 06:16 383,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dll 2008-06-03 01:20 . 2008-04-23 06:16 267,776 -----c--- C:\WINDOWS\system32\dllcache\iertutil.dll 2008-06-03 01:20 . 2008-04-23 06:16 63,488 -----c--- C:\WINDOWS\system32\dllcache\icardie.dll 2008-06-03 01:20 . 2008-04-23 06:16 52,224 -----c--- C:\WINDOWS\system32\dllcache\msfeedsbs.dll 2008-06-03 01:20 . 2008-04-22 09:39 13,824 -----c--- C:\WINDOWS\system32\dllcache\ieudinit.exe 2008-06-03 01:17 . 2008-06-03 01:17 <REP> d-------- C:\Documents and Settings\Julien\Application Data\DAEMON Tools 2008-06-03 01:17 . 2008-06-03 01:17 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys 2008-06-03 00:56 . 2008-06-03 00:56 <REP> d-------- C:\Intel 2008-06-03 00:55 . 2008-06-03 00:55 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2 2008-06-03 00:35 . 2008-06-20 12:42 <REP> d-------- C:\Program Files\ma-config.com 2008-06-03 00:35 . 2008-06-20 12:33 <REP> d-------- C:\Documents and Settings\All Users\Application Data\ma-config.com 2008-06-02 22:03 . 2008-06-03 01:21 <REP> d-------- C:\WINDOWS\system32\fr-fr 2008-06-02 22:03 . 2008-06-02 22:03 <REP> d-------- C:\WINDOWS\system32\fr 2008-06-02 22:03 . 2008-06-02 22:03 <REP> d-------- C:\WINDOWS\system32\bits 2008-06-02 22:03 . 2008-06-02 22:03 <REP> d-------- C:\WINDOWS\l2schemas 2008-06-02 22:00 . 2008-06-02 22:03 <REP> d-------- C:\WINDOWS\ServicePackFiles 2008-06-02 22:00 . 2008-06-02 22:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\NVIDIA 2008-06-02 21:45 . 2006-10-18 16:30 129,784 --------- C:\WINDOWS\system32\pxafs.dll 2008-06-02 21:09 . 2008-04-14 04:33 412,160 --------- C:\WINDOWS\system32\photometadatahandler.dll 2008-06-02 21:08 . 2008-06-02 21:08 <REP> d-------- C:\Documents and Settings\Julien\Contacts 2008-06-02 21:08 . 2008-04-14 04:33 1,737,856 --------- C:\WINDOWS\system32\mtxparhd.dll 2008-06-02 21:07 . 2008-04-14 04:33 1,888,992 --------- C:\WINDOWS\system32\ati3duag.dll 2008-06-02 20:56 . 2008-06-02 21:06 <REP> d-------- C:\Program Files\Windows Live 2008-06-02 20:56 . 2008-06-02 21:01 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller 2008-06-02 20:55 . 2008-06-02 20:55 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-25 15:14 --------- d-----w C:\Program Files\Google 2008-06-20 10:39 180 ----a-w C:\WINDOWS\system32\drivers\sthdae.log 2008-06-14 17:33 272,768 ------w C:\WINDOWS\system32\drivers\bthport.sys 2008-06-08 16:54 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-06-08 16:54 --------- d-----w C:\Program Files\Sony 2008-06-08 16:41 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sony Corporation 2008-06-07 21:56 --------- d-----w C:\Program Files\Fichiers communs\Adobe 2008-06-07 21:40 --------- d-----w C:\Program Files\Fichiers communs\Sony Shared 2008-06-06 20:29 444,952 ----a-w C:\WINDOWS\system32\wrap_oal.dll 2008-06-06 20:29 109,080 ----a-w C:\WINDOWS\system32\OpenAL32.dll 2008-06-03 11:40 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\Sony Corporation 2008-06-02 18:41 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec 2008-05-08 14:02 203,136 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys 2008-05-07 05:11 1,294,336 ----a-w C:\WINDOWS\system32\quartz.dll 2008-04-23 04:16 826,368 ----a-w C:\WINDOWS\system32\wininet.dll 2008-04-14 02:50 1,804 ----a-w C:\WINDOWS\system32\dcache.bin 2008-04-14 02:37 332,800 ----a-w C:\WINDOWS\system32\netsetup.exe 2008-04-14 02:33 98,816 ----a-w C:\WINDOWS\system32\psbase.dll 2008-04-14 02:32 764,416 ----a-w C:\WINDOWS\system32\winntbbu.dll 2008-04-14 02:32 61,471 ----a-w C:\WINDOWS\system32\odbcji32.dll 2008-04-14 02:32 5,632 ----a-w C:\WINDOWS\system32\wmi.dll 2008-04-14 02:32 24,064 ----a-w C:\WINDOWS\system32\pidgen.dll 2008-04-14 02:07 2,147,328 ----a-w C:\WINDOWS\system32\ntoskrnl.exe 2008-04-14 02:07 2,025,984 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe 2008-04-14 02:06 4,096 ----a-w C:\WINDOWS\system32\dsprpres.dll 2008-04-14 02:04 93,184 ------w C:\WINDOWS\system32\msxml6r.dll 2008-04-14 02:03 81,920 ------w C:\WINDOWS\system32\msshavmsg.dll 2008-04-14 02:02 50,688 ----a-w C:\WINDOWS\system32\inetres.dll 2008-04-14 02:00 572,416 ----a-w C:\WINDOWS\system32\shdoclc.dll 2008-04-14 01:59 10,240 ----a-w C:\WINDOWS\system32\gpkrsrc.dll 2008-04-14 01:58 1,845,760 ----a-w C:\WINDOWS\system32\win32k.sys 2008-04-14 01:58 1,647,616 ----a-w C:\WINDOWS\system32\winbrand.dll 2008-04-14 01:57 70,144 ----a-w C:\WINDOWS\system32\browselc.dll 2008-04-13 18:44 17,664 ----a-w C:\WINDOWS\system32\watchdog.sys 2008-04-13 18:43 9,728 ------w C:\WINDOWS\system32\comsdupd.exe 2008-04-13 18:43 12,800 ----a-w C:\WINDOWS\system32\spiisupd.exe 2008-04-13 18:40 445,440 ----a-w C:\WINDOWS\system32\xpob2res.dll 2008-04-13 18:36 2,986,496 ----a-w C:\WINDOWS\system32\xpsp2res.dll 2008-04-13 18:35 197,632 ----a-w C:\WINDOWS\system32\xpsp1res.dll 2008-04-13 18:31 7,424 ----a-w C:\WINDOWS\system32\kd1394.dll 2008-04-13 18:30 61,440 ----a-w C:\WINDOWS\system32\msvcrt40.dll 2008-04-13 17:37 208,384 ----a-w C:\WINDOWS\system32\rsaenh.dll 2008-04-13 17:37 138,752 ----a-w C:\WINDOWS\system32\dssenh.dll 2008-04-13 17:34 11,264 ----a-w C:\WINDOWS\system32\spnpinst.exe 2008-04-13 17:33 424,960 ----a-w C:\WINDOWS\system32\licdll.dll 2008-04-13 17:33 1,005,056 ----a-w C:\WINDOWS\system32\setupapi.dll 2008-04-13 17:26 12,288 ----a-w C:\WINDOWS\system32\odbcp32r.dll 2008-04-13 17:26 12,288 ----a-w C:\WINDOWS\system32\mscpx32r.dll 2008-04-13 17:21 733,696 ----a-w C:\WINDOWS\system32\qedwipes.dll 2008-04-13 16:45 216,064 ----a-w C:\WINDOWS\system32\moricons.dll 2008-04-13 16:23 48,128 ----a-w C:\WINDOWS\system32\msprivs.dll 2008-04-13 15:39 884,736 ----a-w C:\WINDOWS\system32\msimsg.dll . ((((((((((((((((((((((((((((( snapshot_2008-06-25_21.05.27.10 ))))))))))))))))))))))))))))))))))))))))) . - 2008-06-25 19:00:46 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2008-06-26 10:11:17 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2008-06-26 10:11:32 16,384 ----atw C:\WINDOWS\TEMP\Perflib_Perfdata_1ec.dat . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 04:33 15360] "NVIDIA nTune"="C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2007-09-04 19:25 81920] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Apoint"="C:\Program Files\Apoint\Apoint.exe" [2004-11-17 13:47 118784] "ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:34 64512] "nwiz"="nwiz.exe" [2007-12-05 07:41 1626112 C:\WINDOWS\system32\nwiz.exe] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 07:41 8523776] "MSConfig"="C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE" [2008-04-14 04:34 172544] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.dvsd"= C:\PROGRA~1\FICHIE~1\SONYSH~1\VideoLib\sonydv.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt] --a------ 2008-02-12 10:06 262401 C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a------ 2007-10-18 11:34 5724184 C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "C:\\Program Files\\Codemasters\\GRID\\GRID.exe"= R3 SonyImgF;Sony Image Conversion Filter Driver;C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2006-03-06 11:39] R3 ti21sony;ti21sony;C:\WINDOWS\system32\drivers\ti21sony.sys [2007-01-24 14:46] S0 NVStrap;NVStrap;C:\WINDOWS\system32\drivers\NVStrap.sys [2008-04-28 20:25] S3 EverestDriver;Lavalys EVEREST Kernel Driver;C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt [2005-08-18 00:00] S3 Image Converter video recording monitor for VAIO Entertainment;Image Converter video recording monitor for VAIO Entertainment;C:\Program Files\Sony\Image Converter 2\IcVzMon.exe [2005-07-14 19:10] S3 maconfservice;Ma-Config Service;"C:\Program Files\ma-config.com\maconfservice.exe" [2008-06-14 10:13] *Newly Created Service* - CATCHME . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-06-26 17:08:45 Windows 5.1.2600 Service Pack 3 NTFS Balayage processus cachés ... Balayage caché autostart entries ... Balayage des fichiers cachés ... Scan terminé avec succès Les fichiers cachés: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\EverestDriver] "ImagePath"="\??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt" . Temps d'accomplissement: 2008-06-26 17:09:55 ComboFix-quarantined-files.txt 2008-06-26 15:09:49 ComboFix2.txt 2008-06-25 19:05:43 ComboFix3.txt 2008-06-25 15:20:29 ComboFix4.txt 2008-06-25 12:01:34 ComboFix5.txt 2008-06-25 00:17:52 Pre-Run: 46,252,314,624 octets libres Post-Run: 46,260,264,960 octets libres 272 --- E O F --- 2008-06-25 15:31:14 Un grand Merci pour vos réponses...

voici le rapport: ComboFix 08-06-20.4 - Julien 2008-06-25 20:56:41.4 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.622 [GMT 2:00] Endroit: C:\Documents and Settings\Julien\Bureau\ComboFix.exe Command switches used :: C:\Documents and Settings\Julien\Bureau\CFScript.txt * Création d'un nouveau point de restauration AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! FILE :: C:\WINDOWS\BM5796bdc3.xml C:\WINDOWS\pskt.ini C:\WINDOWS\system32\404Fix.exe C:\WINDOWS\system32\dumphive.exe C:\WINDOWS\system32\IEDFix.C.exe C:\WINDOWS\system32\IEDFix.exe C:\WINDOWS\system32\Process.exe C:\WINDOWS\system32\SrchSTS.exe C:\WINDOWS\system32\urqNHWpo.dll_old C:\WINDOWS\system32\VACFix.exe C:\WINDOWS\system32\VCCLSID.exe C:\WINDOWS\system32\WS2Fix.exe C:\WINDOWS\system32\xmklqjvf.ini . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Bases C:\Documents and Settings\Julien\Bureau\mwav C:\Documents and Settings\Julien\Bureau\mwav\0004960D.key C:\Documents and Settings\Julien\Bureau\mwav\0005DA77.key C:\Documents and Settings\Julien\Bureau\mwav\0006C9D5.key C:\Documents and Settings\Julien\Bureau\mwav\00184596.key C:\Documents and Settings\Julien\Bureau\mwav\00184597.key C:\Documents and Settings\Julien\Bureau\mwav\01FA0F93.key C:\Documents and Settings\Julien\Bureau\mwav\101_45095.klc C:\Documents and Settings\Julien\Bureau\mwav\102_4060.klc C:\Documents and Settings\Julien\Bureau\mwav\102_45097.klc C:\Documents and Settings\Julien\Bureau\mwav\125_45027.klc C:\Documents and Settings\Julien\Bureau\mwav\7_45097.klc C:\Documents and Settings\Julien\Bureau\mwav\advware.avc C:\Documents and Settings\Julien\Bureau\mwav\avcmhk5.mhk C:\Documents and Settings\Julien\Bureau\mwav\avp.klb C:\Documents and Settings\Julien\Bureau\mwav\avp.set C:\Documents and Settings\Julien\Bureau\mwav\avp.vnd C:\Documents and Settings\Julien\Bureau\mwav\avp0406.avc C:\Documents and Settings\Julien\Bureau\mwav\backdoor.avc C:\Documents and Settings\Julien\Bureau\mwav\base001.avc C:\Documents and Settings\Julien\Bureau\mwav\base001c.avc C:\Documents and Settings\Julien\Bureau\mwav\base002.avc C:\Documents and Settings\Julien\Bureau\mwav\base002c.avc C:\Documents and Settings\Julien\Bureau\mwav\base003.avc C:\Documents and Settings\Julien\Bureau\mwav\base003c.avc C:\Documents and Settings\Julien\Bureau\mwav\base004.avc C:\Documents and Settings\Julien\Bureau\mwav\base004c.avc C:\Documents and Settings\Julien\Bureau\mwav\base005.avc C:\Documents and Settings\Julien\Bureau\mwav\base005c.avc C:\Documents and Settings\Julien\Bureau\mwav\base006.avc C:\Documents and Settings\Julien\Bureau\mwav\base006c.avc C:\Documents and Settings\Julien\Bureau\mwav\base007.avc C:\Documents and Settings\Julien\Bureau\mwav\base007c.avc C:\Documents and Settings\Julien\Bureau\mwav\base008.avc C:\Documents and Settings\Julien\Bureau\mwav\base008c.avc C:\Documents and Settings\Julien\Bureau\mwav\base009.avc C:\Documents and Settings\Julien\Bureau\mwav\base009c.avc C:\Documents and Settings\Julien\Bureau\mwav\base010.avc C:\Documents and Settings\Julien\Bureau\mwav\base010c.avc C:\Documents and Settings\Julien\Bureau\mwav\base011.avc C:\Documents and Settings\Julien\Bureau\mwav\base011c.avc C:\Documents and Settings\Julien\Bureau\mwav\base012.avc C:\Documents and Settings\Julien\Bureau\mwav\base012c.avc C:\Documents and Settings\Julien\Bureau\mwav\base013.avc C:\Documents and Settings\Julien\Bureau\mwav\base013c.avc C:\Documents and Settings\Julien\Bureau\mwav\base014.avc C:\Documents and Settings\Julien\Bureau\mwav\base014c.avc C:\Documents and Settings\Julien\Bureau\mwav\base015.avc C:\Documents and Settings\Julien\Bureau\mwav\base015c.avc C:\Documents and Settings\Julien\Bureau\mwav\base016.avc C:\Documents and Settings\Julien\Bureau\mwav\base016c.avc C:\Documents and Settings\Julien\Bureau\mwav\base017.avc C:\Documents and Settings\Julien\Bureau\mwav\base017c.avc C:\Documents and Settings\Julien\Bureau\mwav\base018.avc C:\Documents and Settings\Julien\Bureau\mwav\base018c.avc C:\Documents and Settings\Julien\Bureau\mwav\base019.avc C:\Documents and Settings\Julien\Bureau\mwav\base019c.avc C:\Documents and Settings\Julien\Bureau\mwav\base020.avc C:\Documents and Settings\Julien\Bureau\mwav\base020c.avc C:\Documents and Settings\Julien\Bureau\mwav\base021.avc C:\Documents and Settings\Julien\Bureau\mwav\base021c.avc C:\Documents and Settings\Julien\Bureau\mwav\base022.avc C:\Documents and Settings\Julien\Bureau\mwav\base022c.avc C:\Documents and Settings\Julien\Bureau\mwav\base023.avc C:\Documents and Settings\Julien\Bureau\mwav\base023c.avc C:\Documents and Settings\Julien\Bureau\mwav\base024.avc C:\Documents and Settings\Julien\Bureau\mwav\base024c.avc C:\Documents and Settings\Julien\Bureau\mwav\base025.avc C:\Documents and Settings\Julien\Bureau\mwav\base025c.avc C:\Documents and Settings\Julien\Bureau\mwav\base026.avc C:\Documents and Settings\Julien\Bureau\mwav\base026c.avc C:\Documents and Settings\Julien\Bureau\mwav\base027.avc C:\Documents and Settings\Julien\Bureau\mwav\base027c.avc C:\Documents and Settings\Julien\Bureau\mwav\base028.avc C:\Documents and Settings\Julien\Bureau\mwav\base028c.avc C:\Documents and Settings\Julien\Bureau\mwav\base029.avc C:\Documents and Settings\Julien\Bureau\mwav\base029c.avc C:\Documents and Settings\Julien\Bureau\mwav\base030.avc C:\Documents and Settings\Julien\Bureau\mwav\base030c.avc C:\Documents and Settings\Julien\Bureau\mwav\base031.avc C:\Documents and Settings\Julien\Bureau\mwav\base031c.avc C:\Documents and Settings\Julien\Bureau\mwav\base032.avc C:\Documents and Settings\Julien\Bureau\mwav\base032c.avc C:\Documents and Settings\Julien\Bureau\mwav\base033.avc C:\Documents and Settings\Julien\Bureau\mwav\base033c.avc C:\Documents and Settings\Julien\Bureau\mwav\base034.avc C:\Documents and Settings\Julien\Bureau\mwav\base034c.avc C:\Documents and Settings\Julien\Bureau\mwav\base035.avc C:\Documents and Settings\Julien\Bureau\mwav\base035c.avc C:\Documents and Settings\Julien\Bureau\mwav\base036.avc C:\Documents and Settings\Julien\Bureau\mwav\base036c.avc C:\Documents and Settings\Julien\Bureau\mwav\base037.avc C:\Documents and Settings\Julien\Bureau\mwav\base037c.avc C:\Documents and Settings\Julien\Bureau\mwav\base038.avc C:\Documents and Settings\Julien\Bureau\mwav\base038c.avc C:\Documents and Settings\Julien\Bureau\mwav\base039.avc C:\Documents and Settings\Julien\Bureau\mwav\base039c.avc C:\Documents and Settings\Julien\Bureau\mwav\base040.avc C:\Documents and Settings\Julien\Bureau\mwav\base040c.avc C:\Documents and Settings\Julien\Bureau\mwav\base041.avc C:\Documents and Settings\Julien\Bureau\mwav\base041c.avc C:\Documents and Settings\Julien\Bureau\mwav\base042.avc C:\Documents and Settings\Julien\Bureau\mwav\base042c.avc C:\Documents and Settings\Julien\Bureau\mwav\base043.avc C:\Documents and Settings\Julien\Bureau\mwav\base043c.avc C:\Documents and Settings\Julien\Bureau\mwav\base044.avc C:\Documents and Settings\Julien\Bureau\mwav\base044c.avc C:\Documents and Settings\Julien\Bureau\mwav\base045.avc C:\Documents and Settings\Julien\Bureau\mwav\base045c.avc C:\Documents and Settings\Julien\Bureau\mwav\base046.avc C:\Documents and Settings\Julien\Bureau\mwav\base046c.avc C:\Documents and Settings\Julien\Bureau\mwav\base047.avc C:\Documents and Settings\Julien\Bureau\mwav\base047c.avc C:\Documents and Settings\Julien\Bureau\mwav\base048.avc C:\Documents and Settings\Julien\Bureau\mwav\base048c.avc C:\Documents and Settings\Julien\Bureau\mwav\base049.avc C:\Documents and Settings\Julien\Bureau\mwav\base049c.avc C:\Documents and Settings\Julien\Bureau\mwav\base050.avc C:\Documents and Settings\Julien\Bureau\mwav\base050c.avc C:\Documents and Settings\Julien\Bureau\mwav\base051.avc C:\Documents and Settings\Julien\Bureau\mwav\base051c.avc C:\Documents and Settings\Julien\Bureau\mwav\base052.avc C:\Documents and Settings\Julien\Bureau\mwav\base052c.avc C:\Documents and Settings\Julien\Bureau\mwav\base053.avc C:\Documents and Settings\Julien\Bureau\mwav\base053c.avc C:\Documents and Settings\Julien\Bureau\mwav\base054.avc C:\Documents and Settings\Julien\Bureau\mwav\base054c.avc C:\Documents and Settings\Julien\Bureau\mwav\base055.avc C:\Documents and Settings\Julien\Bureau\mwav\base055c.avc C:\Documents and Settings\Julien\Bureau\mwav\base056.avc C:\Documents and Settings\Julien\Bureau\mwav\base056c.avc C:\Documents and Settings\Julien\Bureau\mwav\base057.avc C:\Documents and Settings\Julien\Bureau\mwav\base057c.avc C:\Documents and Settings\Julien\Bureau\mwav\base058.avc C:\Documents and Settings\Julien\Bureau\mwav\base058c.avc C:\Documents and Settings\Julien\Bureau\mwav\base059.avc C:\Documents and Settings\Julien\Bureau\mwav\base059c.avc C:\Documents and Settings\Julien\Bureau\mwav\base060.avc C:\Documents and Settings\Julien\Bureau\mwav\base060c.avc C:\Documents and Settings\Julien\Bureau\mwav\base061.avc C:\Documents and Settings\Julien\Bureau\mwav\base061c.avc C:\Documents and Settings\Julien\Bureau\mwav\base062.avc C:\Documents and Settings\Julien\Bureau\mwav\base062c.avc C:\Documents and Settings\Julien\Bureau\mwav\base063.avc C:\Documents and Settings\Julien\Bureau\mwav\base063c.avc C:\Documents and Settings\Julien\Bureau\mwav\base064.avc C:\Documents and Settings\Julien\Bureau\mwav\base064c.avc C:\Documents and Settings\Julien\Bureau\mwav\base065.avc C:\Documents and Settings\Julien\Bureau\mwav\base065c.avc C:\Documents and Settings\Julien\Bureau\mwav\base066.avc C:\Documents and Settings\Julien\Bureau\mwav\base066c.avc C:\Documents and Settings\Julien\Bureau\mwav\base067.avc C:\Documents and Settings\Julien\Bureau\mwav\base067c.avc C:\Documents and Settings\Julien\Bureau\mwav\base068.avc C:\Documents and Settings\Julien\Bureau\mwav\base068c.avc C:\Documents and Settings\Julien\Bureau\mwav\base069.avc C:\Documents and Settings\Julien\Bureau\mwav\base069c.avc C:\Documents and Settings\Julien\Bureau\mwav\base070.avc C:\Documents and Settings\Julien\Bureau\mwav\base070c.avc C:\Documents and Settings\Julien\Bureau\mwav\base071.avc C:\Documents and Settings\Julien\Bureau\mwav\base071c.avc C:\Documents and Settings\Julien\Bureau\mwav\base072.avc C:\Documents and Settings\Julien\Bureau\mwav\base072c.avc C:\Documents and Settings\Julien\Bureau\mwav\base073.avc C:\Documents and Settings\Julien\Bureau\mwav\base073c.avc C:\Documents and Settings\Julien\Bureau\mwav\base074.avc C:\Documents and Settings\Julien\Bureau\mwav\base074c.avc C:\Documents and Settings\Julien\Bureau\mwav\base075.avc C:\Documents and Settings\Julien\Bureau\mwav\base075c.avc C:\Documents and Settings\Julien\Bureau\mwav\base076.avc C:\Documents and Settings\Julien\Bureau\mwav\base076c.avc C:\Documents and Settings\Julien\Bureau\mwav\base077.avc C:\Documents and Settings\Julien\Bureau\mwav\base077c.avc C:\Documents and Settings\Julien\Bureau\mwav\base078.avc C:\Documents and Settings\Julien\Bureau\mwav\base078c.avc C:\Documents and Settings\Julien\Bureau\mwav\base079.avc C:\Documents and Settings\Julien\Bureau\mwav\base079c.avc C:\Documents and Settings\Julien\Bureau\mwav\base080.avc C:\Documents and Settings\Julien\Bureau\mwav\base080c.avc C:\Documents and Settings\Julien\Bureau\mwav\base081.avc C:\Documents and Settings\Julien\Bureau\mwav\base081c.avc C:\Documents and Settings\Julien\Bureau\mwav\base082.avc C:\Documents and Settings\Julien\Bureau\mwav\base082c.avc C:\Documents and Settings\Julien\Bureau\mwav\base083.avc C:\Documents and Settings\Julien\Bureau\mwav\base083c.avc C:\Documents and Settings\Julien\Bureau\mwav\base084.avc C:\Documents and Settings\Julien\Bureau\mwav\base084c.avc C:\Documents and Settings\Julien\Bureau\mwav\base085.avc C:\Documents and Settings\Julien\Bureau\mwav\base085c.avc C:\Documents and Settings\Julien\Bureau\mwav\base086.avc C:\Documents and Settings\Julien\Bureau\mwav\base086c.avc C:\Documents and Settings\Julien\Bureau\mwav\base087.avc C:\Documents and Settings\Julien\Bureau\mwav\base087c.avc C:\Documents and Settings\Julien\Bureau\mwav\base088.avc C:\Documents and Settings\Julien\Bureau\mwav\base088c.avc C:\Documents and Settings\Julien\Bureau\mwav\base089.avc C:\Documents and Settings\Julien\Bureau\mwav\base089c.avc C:\Documents and Settings\Julien\Bureau\mwav\base090.avc C:\Documents and Settings\Julien\Bureau\mwav\base090c.avc C:\Documents and Settings\Julien\Bureau\mwav\base091.avc C:\Documents and Settings\Julien\Bureau\mwav\base091c.avc C:\Documents and Settings\Julien\Bureau\mwav\base092.avc C:\Documents and Settings\Julien\Bureau\mwav\base092c.avc C:\Documents and Settings\Julien\Bureau\mwav\base093.avc C:\Documents and Settings\Julien\Bureau\mwav\base093c.avc C:\Documents and Settings\Julien\Bureau\mwav\base094.avc C:\Documents and Settings\Julien\Bureau\mwav\base094c.avc C:\Documents and Settings\Julien\Bureau\mwav\base095.avc C:\Documents and Settings\Julien\Bureau\mwav\base095c.avc C:\Documents and Settings\Julien\Bureau\mwav\base096.avc C:\Documents and Settings\Julien\Bureau\mwav\base096c.avc C:\Documents and Settings\Julien\Bureau\mwav\base097.avc C:\Documents and Settings\Julien\Bureau\mwav\base097c.avc C:\Documents and Settings\Julien\Bureau\mwav\base098.avc C:\Documents and Settings\Julien\Bureau\mwav\base098c.avc C:\Documents and Settings\Julien\Bureau\mwav\base099.avc C:\Documents and Settings\Julien\Bureau\mwav\base099c.avc C:\Documents and Settings\Julien\Bureau\mwav\base100.avc C:\Documents and Settings\Julien\Bureau\mwav\base100c.avc C:\Documents and Settings\Julien\Bureau\mwav\base101.avc C:\Documents and Settings\Julien\Bureau\mwav\base101c.avc C:\Documents and Settings\Julien\Bureau\mwav\base102.avc C:\Documents and Settings\Julien\Bureau\mwav\base102c.avc C:\Documents and Settings\Julien\Bureau\mwav\base103.avc C:\Documents and Settings\Julien\Bureau\mwav\base103c.avc C:\Documents and Settings\Julien\Bureau\mwav\base104.avc C:\Documents and Settings\Julien\Bureau\mwav\base104c.avc C:\Documents and Settings\Julien\Bureau\mwav\base105.avc C:\Documents and Settings\Julien\Bureau\mwav\base105c.avc C:\Documents and Settings\Julien\Bureau\mwav\base106.avc C:\Documents and Settings\Julien\Bureau\mwav\base106c.avc C:\Documents and Settings\Julien\Bureau\mwav\base107.avc C:\Documents and Settings\Julien\Bureau\mwav\base107c.avc C:\Documents and Settings\Julien\Bureau\mwav\base108.avc C:\Documents and Settings\Julien\Bureau\mwav\base108c.avc C:\Documents and Settings\Julien\Bureau\mwav\base109.avc C:\Documents and Settings\Julien\Bureau\mwav\base109c.avc C:\Documents and Settings\Julien\Bureau\mwav\base110.avc C:\Documents and Settings\Julien\Bureau\mwav\base110c.avc C:\Documents and Settings\Julien\Bureau\mwav\base111.avc C:\Documents and Settings\Julien\Bureau\mwav\base111c.avc C:\Documents and Settings\Julien\Bureau\mwav\base112.avc C:\Documents and Settings\Julien\Bureau\mwav\base112c.avc C:\Documents and Settings\Julien\Bureau\mwav\base113.avc C:\Documents and Settings\Julien\Bureau\mwav\base113c.avc C:\Documents and Settings\Julien\Bureau\mwav\base114.avc C:\Documents and Settings\Julien\Bureau\mwav\base114c.avc C:\Documents and Settings\Julien\Bureau\mwav\base115.avc C:\Documents and Settings\Julien\Bureau\mwav\base115c.avc C:\Documents and Settings\Julien\Bureau\mwav\base116.avc C:\Documents and Settings\Julien\Bureau\mwav\base116c.avc C:\Documents and Settings\Julien\Bureau\mwav\base117.avc C:\Documents and Settings\Julien\Bureau\mwav\base117c.avc C:\Documents and Settings\Julien\Bureau\mwav\base118.avc C:\Documents and Settings\Julien\Bureau\mwav\base118c.avc C:\Documents and Settings\Julien\Bureau\mwav\base119.avc C:\Documents and Settings\Julien\Bureau\mwav\base119c.avc C:\Documents and Settings\Julien\Bureau\mwav\base120.avc C:\Documents and Settings\Julien\Bureau\mwav\base120c.avc C:\Documents and Settings\Julien\Bureau\mwav\base121.avc C:\Documents and Settings\Julien\Bureau\mwav\base121c.avc C:\Documents and Settings\Julien\Bureau\mwav\base122.avc C:\Documents and Settings\Julien\Bureau\mwav\base122c.avc C:\Documents and Settings\Julien\Bureau\mwav\base123.avc C:\Documents and Settings\Julien\Bureau\mwav\base123c.avc C:\Documents and Settings\Julien\Bureau\mwav\base124.avc C:\Documents and Settings\Julien\Bureau\mwav\base124c.avc C:\Documents and Settings\Julien\Bureau\mwav\base125.avc C:\Documents and Settings\Julien\Bureau\mwav\base125c.avc C:\Documents and Settings\Julien\Bureau\mwav\base126.avc C:\Documents and Settings\Julien\Bureau\mwav\base126c.avc C:\Documents and Settings\Julien\Bureau\mwav\base127.avc C:\Documents and Settings\Julien\Bureau\mwav\base127c.avc C:\Documents and Settings\Julien\Bureau\mwav\base128.avc C:\Documents and Settings\Julien\Bureau\mwav\base128c.avc C:\Documents and Settings\Julien\Bureau\mwav\base129.avc C:\Documents and Settings\Julien\Bureau\mwav\base129c.avc C:\Documents and Settings\Julien\Bureau\mwav\base130.avc C:\Documents and Settings\Julien\Bureau\mwav\base130c.avc C:\Documents and Settings\Julien\Bureau\mwav\base131.avc C:\Documents and Settings\Julien\Bureau\mwav\base131c.avc C:\Documents and Settings\Julien\Bureau\mwav\base132.avc C:\Documents and Settings\Julien\Bureau\mwav\base132c.avc C:\Documents and Settings\Julien\Bureau\mwav\base133.avc C:\Documents and Settings\Julien\Bureau\mwav\base133c.avc C:\Documents and Settings\Julien\Bureau\mwav\base134.avc C:\Documents and Settings\Julien\Bureau\mwav\base134c.avc C:\Documents and Settings\Julien\Bureau\mwav\base135.avc C:\Documents and Settings\Julien\Bureau\mwav\base135c.avc C:\Documents and Settings\Julien\Bureau\mwav\base136.avc C:\Documents and Settings\Julien\Bureau\mwav\base136c.avc C:\Documents and Settings\Julien\Bureau\mwav\base137.avc C:\Documents and Settings\Julien\Bureau\mwav\base137c.avc C:\Documents and Settings\Julien\Bureau\mwav\base138.avc C:\Documents and Settings\Julien\Bureau\mwav\base138c.avc C:\Documents and Settings\Julien\Bureau\mwav\base139.avc C:\Documents and Settings\Julien\Bureau\mwav\base139c.avc C:\Documents and Settings\Julien\Bureau\mwav\base140.avc C:\Documents and Settings\Julien\Bureau\mwav\base140c.avc C:\Documents and Settings\Julien\Bureau\mwav\base141.avc C:\Documents and Settings\Julien\Bureau\mwav\base141c.avc C:\Documents and Settings\Julien\Bureau\mwav\base142.avc C:\Documents and Settings\Julien\Bureau\mwav\base142c.avc C:\Documents and Settings\Julien\Bureau\mwav\base143.avc C:\Documents and Settings\Julien\Bureau\mwav\base143c.avc C:\Documents and Settings\Julien\Bureau\mwav\base144.avc C:\Documents and Settings\Julien\Bureau\mwav\base144c.avc C:\Documents and Settings\Julien\Bureau\mwav\base145.avc C:\Documents and Settings\Julien\Bureau\mwav\base145c.avc C:\Documents and Settings\Julien\Bureau\mwav\base146.avc C:\Documents and Settings\Julien\Bureau\mwav\base146c.avc C:\Documents and Settings\Julien\Bureau\mwav\base147.avc C:\Documents and Settings\Julien\Bureau\mwav\base147c.avc C:\Documents and Settings\Julien\Bureau\mwav\base148.avc C:\Documents and Settings\Julien\Bureau\mwav\base148c.avc C:\Documents and Settings\Julien\Bureau\mwav\base149.avc C:\Documents and Settings\Julien\Bureau\mwav\base149c.avc C:\Documents and Settings\Julien\Bureau\mwav\base150.avc C:\Documents and Settings\Julien\Bureau\mwav\base150c.avc C:\Documents and Settings\Julien\Bureau\mwav\base151.avc C:\Documents and Settings\Julien\Bureau\mwav\base151c.avc C:\Documents and Settings\Julien\Bureau\mwav\base152.avc C:\Documents and Settings\Julien\Bureau\mwav\base152c.avc C:\Documents and Settings\Julien\Bureau\mwav\base153.avc C:\Documents and Settings\Julien\Bureau\mwav\base153c.avc C:\Documents and Settings\Julien\Bureau\mwav\base154.avc C:\Documents and Settings\Julien\Bureau\mwav\base154c.avc C:\Documents and Settings\Julien\Bureau\mwav\base155.avc C:\Documents and Settings\Julien\Bureau\mwav\base155c.avc C:\Documents and Settings\Julien\Bureau\mwav\base156.avc C:\Documents and Settings\Julien\Bureau\mwav\base156c.avc C:\Documents and Settings\Julien\Bureau\mwav\base157.avc C:\Documents and Settings\Julien\Bureau\mwav\base157c.avc C:\Documents and Settings\Julien\Bureau\mwav\base158.avc C:\Documents and Settings\Julien\Bureau\mwav\base158c.avc C:\Documents and Settings\Julien\Bureau\mwav\base159.avc C:\Documents and Settings\Julien\Bureau\mwav\base159c.avc C:\Documents and Settings\Julien\Bureau\mwav\base160.avc C:\Documents and Settings\Julien\Bureau\mwav\base160c.avc C:\Documents and Settings\Julien\Bureau\mwav\base161.avc C:\Documents and Settings\Julien\Bureau\mwav\base161c.avc C:\Documents and Settings\Julien\Bureau\mwav\base162.avc C:\Documents and Settings\Julien\Bureau\mwav\base162c.avc C:\Documents and Settings\Julien\Bureau\mwav\base163.avc C:\Documents and Settings\Julien\Bureau\mwav\base163c.avc C:\Documents and Settings\Julien\Bureau\mwav\base164.avc C:\Documents and Settings\Julien\Bureau\mwav\base164c.avc C:\Documents and Settings\Julien\Bureau\mwav\base165c.avc C:\Documents and Settings\Julien\Bureau\mwav\base166c.avc C:\Documents and Settings\Julien\Bureau\mwav\base167c.avc C:\Documents and Settings\Julien\Bureau\mwav\base168c.avc C:\Documents and Settings\Julien\Bureau\mwav\base169c.avc C:\Documents and Settings\Julien\Bureau\mwav\base170c.avc C:\Documents and Settings\Julien\Bureau\mwav\base171c.avc C:\Documents and Settings\Julien\Bureau\mwav\base172c.avc C:\Documents and Settings\Julien\Bureau\mwav\base173c.avc C:\Documents and Settings\Julien\Bureau\mwav\base174c.avc C:\Documents and Settings\Julien\Bureau\mwav\base175c.avc C:\Documents and Settings\Julien\Bureau\mwav\base176c.avc C:\Documents and Settings\Julien\Bureau\mwav\base177c.avc C:\Documents and Settings\Julien\Bureau\mwav\base178c.avc C:\Documents and Settings\Julien\Bureau\mwav\base179c.avc C:\Documents and Settings\Julien\Bureau\mwav\base180c.avc C:\Documents and Settings\Julien\Bureau\mwav\base181c.avc C:\Documents and Settings\Julien\Bureau\mwav\base182c.avc C:\Documents and Settings\Julien\Bureau\mwav\base183c.avc C:\Documents and Settings\Julien\Bureau\mwav\base999.avc C:\Documents and Settings\Julien\Bureau\mwav\bitmap1.bmp C:\Documents and Settings\Julien\Bureau\mwav\ca.avc C:\Documents and Settings\Julien\Bureau\mwav\chuka.avc C:\Documents and Settings\Julien\Bureau\mwav\config.lan C:\Documents and Settings\Julien\Bureau\mwav\config.old C:\Documents and Settings\Julien\Bureau\mwav\daily-ec.avc C:\Documents and Settings\Julien\Bureau\mwav\daily-ex.avc C:\Documents and Settings\Julien\Bureau\mwav\daily.avc C:\Documents and Settings\Julien\Bureau\mwav\dailyc.avc C:\Documents and Settings\Julien\Bureau\mwav\eicar.avc C:\Documents and Settings\Julien\Bureau\mwav\engine.cfg C:\Documents and Settings\Julien\Bureau\mwav\engine.dt C:\Documents and Settings\Julien\Bureau\mwav\ext001.avc C:\Documents and Settings\Julien\Bureau\mwav\ext001c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext002.avc C:\Documents and Settings\Julien\Bureau\mwav\ext002c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext003.avc C:\Documents and Settings\Julien\Bureau\mwav\ext003c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext004.avc C:\Documents and Settings\Julien\Bureau\mwav\ext004c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext005.avc C:\Documents and Settings\Julien\Bureau\mwav\ext005c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext006.avc C:\Documents and Settings\Julien\Bureau\mwav\ext006c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext007.avc C:\Documents and Settings\Julien\Bureau\mwav\ext007c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext008.avc C:\Documents and Settings\Julien\Bureau\mwav\ext008c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext009.avc C:\Documents and Settings\Julien\Bureau\mwav\ext009c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext010c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext011c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext012c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext013c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext014c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext015c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext016c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext017c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext018c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext019c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext020c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext021c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext022c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext023c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext024c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext025c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext026c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext027c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext028c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext029c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext030c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext031c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext032c.avc C:\Documents and Settings\Julien\Bureau\mwav\ext999.avc C:\Documents and Settings\Julien\Bureau\mwav\extr-cab.avc C:\Documents and Settings\Julien\Bureau\mwav\extract.avc C:\Documents and Settings\Julien\Bureau\mwav\fa.avc C:\Documents and Settings\Julien\Bureau\mwav\fa001.avc C:\Documents and Settings\Julien\Bureau\mwav\gen001.avc C:\Documents and Settings\Julien\Bureau\mwav\gen002.avc C:\Documents and Settings\Julien\Bureau\mwav\gen003.avc C:\Documents and Settings\Julien\Bureau\mwav\gen004.avc C:\Documents and Settings\Julien\Bureau\mwav\gen005.avc C:\Documents and Settings\Julien\Bureau\mwav\gen999.avc C:\Documents and Settings\Julien\Bureau\mwav\generic.avc C:\Documents and Settings\Julien\Bureau\mwav\Getvlist.exe C:\Documents and Settings\Julien\Bureau\mwav\ipc.dll C:\Documents and Settings\Julien\Bureau\mwav\kavss.dll C:\Documents and Settings\Julien\Bureau\mwav\kavss.exe C:\Documents and Settings\Julien\Bureau\mwav\kavssd.dll C:\Documents and Settings\Julien\Bureau\mwav\kavssdi.dll C:\Documents and Settings\Julien\Bureau\mwav\kavssi.dll C:\Documents and Settings\Julien\Bureau\mwav\KAVUpd.dll C:\Documents and Settings\Julien\Bureau\mwav\kavupd.exe C:\Documents and Settings\Julien\Bureau\mwav\kavvlg.dll C:\Documents and Settings\Julien\Bureau\mwav\kernel.avc C:\Documents and Settings\Julien\Bureau\mwav\keyid.dat C:\Documents and Settings\Julien\Bureau\mwav\krn001.avc C:\Documents and Settings\Julien\Bureau\mwav\krn002.avc C:\Documents and Settings\Julien\Bureau\mwav\krn003.avc C:\Documents and Settings\Julien\Bureau\mwav\krn004.avc C:\Documents and Settings\Julien\Bureau\mwav\krn005.avc C:\Documents and Settings\Julien\Bureau\mwav\krndos.avc C:\Documents and Settings\Julien\Bureau\mwav\krnengn.avc C:\Documents and Settings\Julien\Bureau\mwav\krnexe.avc C:\Documents and Settings\Julien\Bureau\mwav\krnexe32.avc C:\Documents and Settings\Julien\Bureau\mwav\krngen.avc C:\Documents and Settings\Julien\Bureau\mwav\krnjava.avc C:\Documents and Settings\Julien\Bureau\mwav\krnmacro.avc C:\Documents and Settings\Julien\Bureau\mwav\krnun001.avc C:\Documents and Settings\Julien\Bureau\mwav\krnun002.avc C:\Documents and Settings\Julien\Bureau\mwav\krnun003.avc C:\Documents and Settings\Julien\Bureau\mwav\krnun004.avc C:\Documents and Settings\Julien\Bureau\mwav\krnunp.avc C:\Documents and Settings\Julien\Bureau\mwav\macro.avc C:\Documents and Settings\Julien\Bureau\mwav\mail.avc C:\Documents and Settings\Julien\Bureau\mwav\main.avi C:\Documents and Settings\Julien\Bureau\mwav\malware.avc C:\Documents and Settings\Julien\Bureau\mwav\MicroWorld Toolkit Utility.txt C:\Documents and Settings\Julien\Bureau\mwav\msvlclnt.dll C:\Documents and Settings\Julien\Bureau\mwav\mwav.ini C:\Documents and Settings\Julien\Bureau\mwav\mwav.log C:\Documents and Settings\Julien\Bureau\mwav\mwavscan.com C:\Documents and Settings\Julien\Bureau\mwav\mwXface.log C:\Documents and Settings\Julien\Bureau\mwav\newexe.avc C:\Documents and Settings\Julien\Bureau\mwav\newexeg.avc C:\Documents and Settings\Julien\Bureau\mwav\ocr.avc C:\Documents and Settings\Julien\Bureau\mwav\pornware.avc C:\Documents and Settings\Julien\Bureau\mwav\product.bmp C:\Documents and Settings\Julien\Bureau\mwav\psapi.dll C:\Documents and Settings\Julien\Bureau\mwav\riched32.dll C:\Documents and Settings\Julien\Bureau\mwav\riskware.avc C:\Documents and Settings\Julien\Bureau\mwav\script.avc C:\Documents and Settings\Julien\Bureau\mwav\smart.avc C:\Documents and Settings\Julien\Bureau\mwav\trojan.avc C:\Documents and Settings\Julien\Bureau\mwav\unp000.avc C:\Documents and Settings\Julien\Bureau\mwav\unp001.avc C:\Documents and Settings\Julien\Bureau\mwav\unp002.avc C:\Documents and Settings\Julien\Bureau\mwav\unp003.avc C:\Documents and Settings\Julien\Bureau\mwav\unp004.avc C:\Documents and Settings\Julien\Bureau\mwav\unp005.avc C:\Documents and Settings\Julien\Bureau\mwav\unp006.avc C:\Documents and Settings\Julien\Bureau\mwav\unp007.avc C:\Documents and Settings\Julien\Bureau\mwav\unp008.avc C:\Documents and Settings\Julien\Bureau\mwav\unp009.avc C:\Documents and Settings\Julien\Bureau\mwav\unp010.avc C:\Documents and Settings\Julien\Bureau\mwav\unp011.avc C:\Documents and Settings\Julien\Bureau\mwav\unp012.avc C:\Documents and Settings\Julien\Bureau\mwav\unp013.avc C:\Documents and Settings\Julien\Bureau\mwav\unp014.avc C:\Documents and Settings\Julien\Bureau\mwav\unp015.avc C:\Documents and Settings\Julien\Bureau\mwav\unp016.avc C:\Documents and Settings\Julien\Bureau\mwav\unp017.avc C:\Documents and Settings\Julien\Bureau\mwav\unp018.avc C:\Documents and Settings\Julien\Bureau\mwav\unp019.avc C:\Documents and Settings\Julien\Bureau\mwav\unp020.avc C:\Documents and Settings\Julien\Bureau\mwav\unp021.avc C:\Documents and Settings\Julien\Bureau\mwav\unp022.avc C:\Documents and Settings\Julien\Bureau\mwav\unp023.avc C:\Documents and Settings\Julien\Bureau\mwav\unp024.avc C:\Documents and Settings\Julien\Bureau\mwav\unp025.avc C:\Documents and Settings\Julien\Bureau\mwav\unp026.avc C:\Documents and Settings\Julien\Bureau\mwav\unp027.avc C:\Documents and Settings\Julien\Bureau\mwav\unp028.avc C:\Documents and Settings\Julien\Bureau\mwav\unp029.avc C:\Documents and Settings\Julien\Bureau\mwav\unp030.avc C:\Documents and Settings\Julien\Bureau\mwav\unp031.avc C:\Documents and Settings\Julien\Bureau\mwav\unp032.avc C:\Documents and Settings\Julien\Bureau\mwav\unp033.avc C:\Documents and Settings\Julien\Bureau\mwav\unp034.avc C:\Documents and Settings\Julien\Bureau\mwav\unp035.avc C:\Documents and Settings\Julien\Bureau\mwav\unp036.avc C:\Documents and Settings\Julien\Bureau\mwav\unp037.avc C:\Documents and Settings\Julien\Bureau\mwav\unp038.avc C:\Documents and Settings\Julien\Bureau\mwav\unp039.avc C:\Documents and Settings\Julien\Bureau\mwav\unpack.avc C:\Documents and Settings\Julien\Bureau\mwav\up040702.avc C:\Documents and Settings\Julien\Bureau\mwav\up040709.avc C:\Documents and Settings\Julien\Bureau\mwav\up040716.avc C:\Documents and Settings\Julien\Bureau\mwav\up040723.avc C:\Documents and Settings\Julien\Bureau\mwav\up040730.avc C:\Documents and Settings\Julien\Bureau\mwav\up040806.avc C:\Documents and Settings\Julien\Bureau\mwav\up040813.avc C:\Documents and Settings\Julien\Bureau\mwav\up040820.avc C:\Documents and Settings\Julien\Bureau\mwav\up040827.avc C:\Documents and Settings\Julien\Bureau\mwav\up040903.avc C:\Documents and Settings\Julien\Bureau\mwav\virus.avi C:\Documents and Settings\Julien\Bureau\mwav\worm.avc C:\Documents and Settings\Julien\Bureau\mwav\x-files.avc C:\SDFix C:\SDFix\apps\assosfix.reg C:\SDFix\apps\cliptext.exe C:\SDFix\apps\download.exe C:\SDFix\apps\dummy.sys C:\SDFix\apps\Enable_Command_Prompt.reg C:\SDFix\apps\ERDNT.E_E C:\SDFix\apps\ERDNTDOS.LOC C:\SDFix\apps\ERDNTWIN.LOC C:\SDFix\apps\ERUNT.EXE C:\SDFix\apps\ERUNT.LOC C:\SDFix\apps\fix.reg C:\SDFix\apps\FixBH.reg C:\SDFix\apps\FixComponents.reg C:\SDFix\apps\FIXCU.reg C:\SDFix\apps\FIXLM.reg C:\SDFix\apps\FixPath.exe C:\SDFix\apps\FixRedir.reg C:\SDFix\apps\FixSchedule.reg C:\SDFix\apps\FixWebCheck.reg C:\SDFix\apps\fixXP.reg C:\SDFix\apps\FixXPsp2.reg C:\SDFix\apps\grep.exe C:\SDFix\apps\HPFix.reg C:\SDFix\apps\HPFix2.reg C:\SDFix\apps\HPFix3.reg C:\SDFix\apps\HPFix4.reg C:\SDFix\apps\HPFix5.reg C:\SDFix\apps\HPFix6.reg C:\SDFix\apps\HPFix7.reg C:\SDFix\apps\HPFix8.reg C:\SDFix\apps\HPFix9.reg C:\SDFix\apps\isadmin.exe C:\SDFix\apps\leg2.txt C:\SDFix\apps\legacy.txt C:\SDFix\apps\legacybk.txt C:\SDFix\apps\locate.com C:\SDFix\apps\LS.exe C:\SDFix\apps\MD5File.exe C:\SDFix\apps\MyGcpvFix.reg C:\SDFix\apps\MyGkFix2.reg C:\SDFix\apps\Process.exe C:\SDFix\apps\procs.exe C:\SDFix\apps\psservice.exe C:\SDFix\apps\Rem.txt C:\SDFix\apps\Rem2.txt C:\SDFix\apps\Replace\regedit.exe C:\SDFix\apps\Replace\W2K.exe C:\SDFix\apps\Replace\w2k\beep.sys C:\SDFix\apps\Replace\w2k\null.sys C:\SDFix\apps\Replace\XP.exe C:\SDFix\apps\Replace\xp\beep.sys C:\SDFix\apps\Replace\xp\null.sys C:\SDFix\apps\Reset_AppInit_DLLs.reg C:\SDFix\apps\RestartIt!.exe C:\SDFix\apps\Restore_SecurityCenter.reg C:\SDFix\apps\Restore_SharedAccess.reg C:\SDFix\apps\sc.exe C:\SDFix\apps\sed.exe C:\SDFix\apps\SF.exe C:\SDFix\apps\shutdown.exe C:\SDFix\apps\srv2.txt C:\SDFix\apps\srv2bk.txt C:\SDFix\apps\svc.txt C:\SDFix\apps\svcbk.txt C:\SDFix\apps\swreg.exe C:\SDFix\apps\swsc.exe C:\SDFix\apps\unzip.exe C:\SDFix\apps\vfind.exe C:\SDFix\apps\WINMSG.EXE C:\SDFix\apps\winsec.reg C:\SDFix\apps\zip.exe C:\SDFix\catchme.exe C:\SDFix\dummy.sys C:\SDFix\RunThis.bat C:\SDFix\SDFIX_ReadMe_Online.url C:\SDFix\W2K_CodecRepair.inf C:\SDFix\XP_CodecRepair.inf C:\VundoFix Backups C:\WINDOWS\BM5796bdc3.xml C:\WINDOWS\cookies.ini C:\WINDOWS\pskt.ini C:\WINDOWS\system32\404Fix.exe C:\WINDOWS\system32\dumphive.exe C:\WINDOWS\system32\IEDFix.C.exe C:\WINDOWS\system32\IEDFix.exe C:\WINDOWS\system32\IOnoWvut.ini C:\WINDOWS\system32\IOnoWvut.ini2 C:\WINDOWS\system32\iveqtfvb.dll C:\WINDOWS\system32\jqvnqvum.dll C:\WINDOWS\system32\pelltkfe.dll C:\WINDOWS\system32\Process.exe C:\WINDOWS\system32\SrchSTS.exe C:\WINDOWS\system32\tmp57.tmp C:\WINDOWS\system32\tmp58.tmp C:\WINDOWS\system32\tuvUMdDU.dll C:\WINDOWS\system32\UDdMUvut.ini C:\WINDOWS\system32\UDdMUvut.ini2 C:\WINDOWS\system32\urqNHWpo.dll_old C:\WINDOWS\system32\VACFix.exe C:\WINDOWS\system32\VCCLSID.exe C:\WINDOWS\system32\WS2Fix.exe C:\WINDOWS\system32\xeyurgab.ini C:\WINDOWS\system32\xmklqjvf.ini C:\WINDOWS\system32\xytbhttn.ini . ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-05-25 to 2008-06-25 )))))))))))))))))))))))))))))))))))) . 2008-06-25 19:38 . 2008-06-25 19:38 106,496 --a------ C:\WINDOWS\system32\gfbeqorl.dll 2008-06-25 19:36 . 2008-06-25 20:42 91,136 --------- C:\WINDOWS\system32\hejeitgg.dll 2008-06-25 19:36 . 2008-06-25 20:42 81,920 --------- C:\WINDOWS\system32\bagruyex.dll 2008-06-25 18:29 . 2008-06-25 18:29 <REP> d-------- C:\Documents and Settings\joss 2008-06-25 18:00 . 2008-06-25 18:00 <REP> d-------- C:\Program Files\Avira 2008-06-25 18:00 . 2008-06-25 18:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira 2008-06-25 17:48 . 2008-06-25 20:42 81,920 --------- C:\WINDOWS\system32\ntthbtyx.dll 2008-06-25 17:47 . 2008-06-25 17:47 106,496 --a------ C:\WINDOWS\system32\jjhdlyoc.dll 2008-06-25 17:47 . 2008-06-25 17:47 91,136 --a------ C:\WINDOWS\system32\ohexgyqu.dll 2008-06-25 17:31 . 2008-06-25 17:31 <REP> d-------- C:\Program Files\MSXML 4.0 2008-06-25 17:01 . 2008-06-25 17:04 <REP> d-------- C:\HJT 2008-06-25 15:14 . 2008-06-25 16:44 <REP> d-------- C:\WINDOWS\BDOSCAN8 2008-06-24 12:26 . 2008-06-24 12:26 <REP> d-------- C:\Program Files\ZebHelpProcess 2 2008-06-24 12:26 . 2008-06-24 12:26 <REP> d-------- C:\Program Files\Fichiers communs\Borland Shared 2008-06-24 12:26 . 1999-01-20 05:01 210,032 --a------ C:\WINDOWS\system32\DBCLIENT.DLL 2008-06-24 12:26 . 1999-11-12 05:11 183,808 --a------ C:\WINDOWS\system32\BDEADMIN.CPL 2008-06-24 12:26 . 2008-06-25 02:22 13,030 --a------ C:\PDOXUSRS.NET 2008-06-24 12:19 . 2008-06-25 13:38 1,834 --a------ C:\WINDOWS\system32\tmp.reg 2008-06-24 11:32 . 2008-06-25 18:08 <REP> d-------- C:\Program Files\Spybot - Search & Destroy 2008-06-24 11:32 . 2008-06-25 18:07 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-06-24 10:52 . 2008-06-24 10:52 98 --a------ C:\WINDOWS\WirelessFTP.INI 2008-06-20 00:04 . 2008-06-23 14:02 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Azureus 2008-06-20 00:04 . 2008-06-20 00:04 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Azureus 2008-06-20 00:02 . 2008-06-23 13:29 <REP> d-------- C:\Program Files\Azureus 2008-06-19 17:53 . 2008-06-19 17:53 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Toshiba 2008-06-18 20:41 . 2008-06-18 20:41 <REP> d-------- C:\Program Files\VideoLAN 2008-06-17 03:19 . 2008-06-17 03:19 <REP> d-------- C:\Program Files\Windows Media Connect 2 2008-06-17 03:16 . 2008-06-17 03:17 <REP> d-------- C:\WINDOWS\system32\drivers\UMDF 2008-06-16 14:00 . 2008-06-19 00:51 <REP> d-------- C:\Documents and Settings\Julien\Application Data\vlc 2008-06-12 23:10 . 2008-06-12 23:10 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll 2008-06-12 23:06 . 2006-10-18 21:47 2,450,944 -----c--- C:\WINDOWS\system32\dllcache\wmvcore.dll 2008-06-12 23:06 . 2008-06-14 19:33 272,768 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys 2008-06-12 23:06 . 2008-05-08 16:02 203,136 -----c--- C:\WINDOWS\system32\dllcache\rmcast.sys 2008-06-08 00:51 . 2008-06-08 00:51 <REP> d-------- C:\Program Files\NVIDIA Corporation 2008-06-08 00:50 . 2008-06-08 00:50 <REP> d-------- C:\Program Files\NVIDIA nTune Performance Application 2008-06-08 00:41 . 2007-12-05 07:41 1,703,936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll 2008-06-08 00:40 . 2008-06-08 00:40 <REP> d-------- C:\Program Files\Nvidia Omega Drivers 2008-06-08 00:40 . 2008-06-08 00:40 472,576 --a------ C:\WINDOWS\Nvidia Omega Drivers v2.169.21 Uninstall.exe 2008-06-08 00:25 . 2008-04-28 20:25 4,224 --a------ C:\WINDOWS\system32\drivers\NVStrap.sys 2008-06-08 00:23 . 2008-06-08 00:30 <REP> d-------- C:\Program Files\RivaTuner v2.09 2008-06-07 23:40 . 2008-05-30 14:11 3,850,760 --a------ C:\WINDOWS\system32\D3DX9_38.dll 2008-06-07 23:40 . 2008-05-30 14:11 1,491,992 --a------ C:\WINDOWS\system32\D3DCompiler_38.dll 2008-06-07 23:40 . 2008-05-30 14:19 507,400 --a------ C:\WINDOWS\system32\XAudio2_1.dll 2008-06-07 23:40 . 2008-05-30 14:11 467,984 --a------ C:\WINDOWS\system32\d3dx10_38.dll 2008-06-07 23:40 . 2008-05-30 14:18 238,088 --a------ C:\WINDOWS\system32\xactengine3_1.dll 2008-06-07 23:40 . 2008-05-30 14:17 65,032 --a------ C:\WINDOWS\system32\XAPOFX1_0.dll 2008-06-07 23:40 . 2008-05-30 14:17 25,608 --a------ C:\WINDOWS\system32\X3DAudio1_4.dll 2008-06-07 23:39 . 2008-06-07 23:39 <REP> d--h----- C:\WINDOWS\msdownld.tmp 2008-06-07 23:38 . 2008-06-07 23:38 <REP> d-------- C:\WINDOWS\Logs 2008-06-07 03:34 . 2008-04-10 17:07 442,368 --a------ C:\WINDOWS\system32\NVUNINST.EXE 2008-06-07 03:31 . 2008-04-14 01:20 442,368 --a------ C:\WINDOWS\system32\nvudisp.exe 2008-06-07 03:31 . 2008-06-08 19:04 160,371 --a------ C:\WINDOWS\system32\nvapps.xml 2008-06-07 03:31 . 2007-12-05 07:41 17,737 --a------ C:\WINDOWS\system32\nvdisp.nvu 2008-06-07 03:18 . 2008-04-14 04:03 5,504 --a------ C:\WINDOWS\system32\drivers\intelide.sys 2008-06-07 03:18 . 2008-04-14 04:03 5,504 --a--c--- C:\WINDOWS\system32\dllcache\intelide.sys 2008-06-07 02:52 . 2008-05-01 16:35 53,248 --a------ C:\WINDOWS\system32\CSVer.dll 2008-06-07 02:38 . 2008-06-07 02:37 737,280 --a------ C:\WINDOWS\iun6002.exe 2008-06-07 02:25 . 2008-06-07 02:25 1,169 --a------ C:\WINDOWS\mozver.dat 2008-06-06 23:49 . 2008-06-06 23:49 <REP> d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles 2008-06-06 23:47 . 2008-06-08 00:43 <REP> d-------- C:\WINDOWS\nview 2008-06-06 22:30 . 2008-06-06 22:30 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Codemasters 2008-06-06 22:29 . 2008-06-06 22:29 <REP> d-------- C:\Program Files\OpenAL 2008-06-05 10:33 . 2008-06-05 10:33 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Talkback 2008-06-05 10:33 . 2008-06-05 10:33 0 --a------ C:\WINDOWS\nsreg.dat 2008-06-05 10:28 . 2008-06-24 22:45 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-06-05 10:28 . 2008-06-05 10:28 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Malwarebytes 2008-06-05 10:28 . 2008-06-05 10:28 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-06-05 10:28 . 2008-06-19 17:48 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-06-05 10:28 . 2008-06-19 17:47 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-06-03 17:27 . 2008-06-03 17:27 <REP> d--hs---- C:\Diskeeper 2008-06-03 17:09 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll 2008-06-03 17:09 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui 2008-06-03 14:02 . 2008-06-03 14:02 0 --a------ C:\Documents and Settings\Julien\Application Data\wklnhst.dat 2008-06-03 13:59 . 2008-06-03 13:59 <REP> d-------- C:\Program Files\Fichiers communs\SWF Studio 2008-06-03 13:59 . 2008-06-03 13:59 <REP> d-------- C:\Documents and Settings\Julien\Application Data\sony 2008-06-03 13:50 . 2007-12-05 07:41 1,089,536 --a------ C:\WINDOWS\system32\nvcuda.dll 2008-06-03 13:41 . 2008-06-03 13:41 <REP> d-------- C:\Documents and Settings\Julien\Application Data\InterVideo 2008-06-03 04:20 . 2008-06-17 03:16 <REP> d-------- C:\WINDOWS\system32\LogFiles 2008-06-03 04:14 . 2008-06-03 04:14 <REP> d-------- C:\Program Files\Alwil Software 2008-06-03 03:18 . 2007-04-04 18:53 81,768 --a------ C:\WINDOWS\system32\xinput1_3.dll 2008-06-03 02:51 . 2008-06-03 02:51 <REP> d-------- C:\Program Files\Microsoft Silverlight 2008-06-03 02:49 . 2008-06-03 02:49 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Sonic 2008-06-03 02:48 . 2008-06-03 02:48 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Leadertech 2008-06-03 02:36 . 2008-06-25 14:31 <REP> d-------- C:\Program Files\Codemasters 2008-06-03 02:35 . 2008-06-03 02:35 <REP> d-------- C:\Program Files\DAEMON Tools Lite 2008-06-03 02:30 . 2008-06-03 02:30 <REP> d-------- C:\Program Files\Lavalys 2008-06-03 02:09 . 2008-06-03 02:09 <REP> d-------- C:\Program Files\Diskeeper Corporation 2008-06-03 02:09 . 2008-06-03 02:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Diskeeper Corporation 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\NetworkService\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\LocalService\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 376,832 --a------ C:\WINDOWS\system32\AegisI5Installer.exe 2008-06-03 02:08 . 2008-06-03 02:08 21,361 --a------ C:\WINDOWS\system32\drivers\AegisP.sys 2008-06-03 02:08 . 2008-06-03 02:08 21,361 --a------ C:\WINDOWS\AegisP.sys 2008-06-03 02:08 . 2008-06-03 02:08 13,984 --a------ C:\WINDOWS\AegisP.inf 2008-06-03 02:08 . 2008-06-03 02:08 10,640 --a------ C:\WINDOWS\AegisP.cat 2008-06-03 02:07 . 2008-06-03 02:07 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Intel 2008-06-03 02:07 . 2007-08-08 15:29 2,772,992 --a------ C:\WINDOWS\system32\NETw4r32.dll 2008-06-03 02:07 . 2008-03-13 03:25 2,530,176 --a------ C:\WINDOWS\system32\drivers\NETw4x32.sys 2008-06-03 02:07 . 2007-08-08 15:28 684,032 --a------ C:\WINDOWS\system32\NETw4c32.dll 2008-06-03 02:07 . 2008-04-13 20:45 26,368 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys 2008-06-03 01:30 . 2008-06-03 01:30 <REP> d-------- C:\Program Files\SystemRequirementsLab 2008-06-03 01:22 . 2008-06-03 01:22 <REP> d-------- C:\Program Files\IZArc 2008-06-03 01:20 . 2008-04-23 06:16 6,066,176 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll 2008-06-03 01:20 . 2007-04-17 11:32 2,455,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dat 2008-06-03 01:20 . 2007-03-08 07:10 1,048,576 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll.mui 2008-06-03 01:20 . 2008-04-23 06:16 459,264 -----c--- C:\WINDOWS\system32\dllcache\msfeeds.dll 2008-06-03 01:20 . 2008-04-23 06:16 383,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dll 2008-06-03 01:20 . 2008-04-23 06:16 267,776 -----c--- C:\WINDOWS\system32\dllcache\iertutil.dll 2008-06-03 01:20 . 2008-04-23 06:16 63,488 -----c--- C:\WINDOWS\system32\dllcache\icardie.dll 2008-06-03 01:20 . 2008-04-23 06:16 52,224 -----c--- C:\WINDOWS\system32\dllcache\msfeedsbs.dll 2008-06-03 01:20 . 2008-04-22 09:39 13,824 -----c--- C:\WINDOWS\system32\dllcache\ieudinit.exe 2008-06-03 01:17 . 2008-06-03 01:17 <REP> d-------- C:\Documents and Settings\Julien\Application Data\DAEMON Tools 2008-06-03 01:17 . 2008-06-03 01:17 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys 2008-06-03 00:56 . 2008-06-03 00:56 <REP> d-------- C:\Intel 2008-06-03 00:55 . 2008-06-03 00:55 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2 2008-06-03 00:35 . 2008-06-20 12:42 <REP> d-------- C:\Program Files\ma-config.com 2008-06-03 00:35 . 2008-06-20 12:33 <REP> d-------- C:\Documents and Settings\All Users\Application Data\ma-config.com 2008-06-02 22:03 . 2008-06-03 01:21 <REP> d-------- C:\WINDOWS\system32\fr-fr 2008-06-02 22:03 . 2008-06-02 22:03 <REP> d-------- C:\WINDOWS\system32\fr 2008-06-02 22:03 . 2008-06-02 22:03 <REP> d-------- C:\WINDOWS\system32\bits 2008-06-02 22:03 . 2008-06-02 22:03 <REP> d-------- C:\WINDOWS\l2schemas 2008-06-02 22:00 . 2008-06-02 22:03 <REP> d-------- C:\WINDOWS\ServicePackFiles 2008-06-02 22:00 . 2008-06-02 22:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\NVIDIA . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-25 15:14 --------- d-----w C:\Program Files\Google 2008-06-20 10:39 180 ----a-w C:\WINDOWS\system32\drivers\sthdae.log 2008-06-14 17:33 272,768 ------w C:\WINDOWS\system32\drivers\bthport.sys 2008-06-08 16:54 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-06-08 16:54 --------- d-----w C:\Program Files\Sony 2008-06-08 16:41 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sony Corporation 2008-06-07 21:56 --------- d-----w C:\Program Files\Fichiers communs\Adobe 2008-06-07 21:40 --------- d-----w C:\Program Files\Fichiers communs\Sony Shared 2008-06-03 11:40 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\Sony Corporation 2008-06-02 18:41 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec 2008-05-08 14:02 203,136 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys 2008-04-14 02:34 70,656 ----a-w C:\WINDOWS\notepad.exe 2008-04-14 02:34 32,866 ------w C:\WINDOWS\slrundll.exe 2008-04-14 02:34 288,256 ----a-w C:\WINDOWS\winhlp32.exe 2008-04-14 02:34 153,088 ----a-w C:\WINDOWS\regedit.exe 2008-04-14 02:34 10,752 ----a-w C:\WINDOWS\hh.exe 2008-04-14 02:34 1,037,824 ----a-w C:\WINDOWS\explorer.exe 2008-04-14 02:33 50,688 ----a-w C:\WINDOWS\twain_32.dll 2008-04-14 02:33 451,072 ----a-w C:\WINDOWS\AppPatch\aclayers.dll 2008-04-14 02:33 39,424 ------w C:\WINDOWS\AppPatch\acadproc.dll 2008-04-14 02:33 245,248 ----a-w C:\WINDOWS\AppPatch\acspecfc.dll 2008-04-14 02:33 141,312 ----a-w C:\WINDOWS\AppPatch\aclua.dll 2008-04-14 02:33 116,224 ----a-w C:\WINDOWS\AppPatch\acxtrnal.dll 2008-04-14 02:33 1,852,928 ----a-w C:\WINDOWS\AppPatch\acgenral.dll . ((((((((((((((((((((((((((((( snapshot@2008-06-25_ 2.17.04.75 ))))))))))))))))))))))))))))))))))))))))) . + 2008-06-25 13:15:13 45,056 ----a-w C:\WINDOWS\BDOSCAN8\avxdisk.dll + 2008-06-25 13:15:13 10,240 ----a-w C:\WINDOWS\BDOSCAN8\avxs.dll + 2008-06-25 13:15:13 27,136 ----a-w C:\WINDOWS\BDOSCAN8\avxt.dll + 2008-06-25 13:15:16 181,760 ----a-w C:\WINDOWS\BDOSCAN8\bdcore.dll + 2006-05-24 23:21:00 118,784 ----a-w C:\WINDOWS\BDOSCAN8\bdupd.dll + 2006-05-24 23:21:14 53,248 ----a-w C:\WINDOWS\BDOSCAN8\ipsupd.dll + 2008-06-25 13:15:16 142,848 ----a-w C:\WINDOWS\BDOSCAN8\libfn.dll + 2008-06-25 13:15:14 86,016 ----a-w C:\WINDOWS\BDOSCAN8\librtvr.dll + 2006-05-24 23:22:06 53,248 ----a-w C:\WINDOWS\bdoscandel.exe - 2008-06-25 00:11:13 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2008-06-25 19:00:46 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2006-05-24 23:21:00 118,784 ----a-w C:\WINDOWS\Downloaded Program Files\bdupd.dll + 2006-05-24 23:21:14 53,248 ----a-w C:\WINDOWS\Downloaded Program Files\ipsupd.dll + 2008-06-25 15:31:13 32,768 ----a-r C:\WINDOWS\Installer\{C04E32E0-0416-434D-AFB9-6969D703A9EF}\icon.exe + 2008-01-21 16:12:56 41,792 ----a-w C:\WINDOWS\system32\drivers\avgntdd.sys + 2008-01-21 16:11:28 22,336 ----a-w C:\WINDOWS\system32\drivers\avgntmgr.sys + 2008-03-04 11:28:53 79,424 ----a-w C:\WINDOWS\system32\drivers\avipbb.sys + 2007-03-01 08:34:22 28,352 ----a-w C:\WINDOWS\system32\drivers\ssmdrv.sys - 2008-06-19 09:47:15 287,704 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT + 2008-06-25 15:14:13 286,904 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT - 2003-04-18 14:46:22 1,233,920 ----a-w C:\WINDOWS\system32\msxml4.dll + 2007-05-08 13:03:04 1,275,392 ----a-w C:\WINDOWS\system32\msxml4.dll - 2008-06-24 09:11:31 70,226 ----a-w C:\WINDOWS\system32\perfc009.dat + 2008-06-25 11:59:20 70,226 ----a-w C:\WINDOWS\system32\perfc009.dat - 2008-06-24 09:11:31 86,282 ----a-w C:\WINDOWS\system32\perfc00C.dat + 2008-06-25 11:59:21 86,282 ----a-w C:\WINDOWS\system32\perfc00C.dat - 2008-06-24 09:11:31 419,228 ----a-w C:\WINDOWS\system32\perfh009.dat + 2008-06-25 11:59:20 419,228 ----a-w C:\WINDOWS\system32\perfh009.dat - 2008-06-24 09:11:31 490,030 ----a-w C:\WINDOWS\system32\perfh00C.dat + 2008-06-25 11:59:21 490,030 ----a-w C:\WINDOWS\system32\perfh00C.dat + 2008-06-25 19:00:56 16,384 ----atw C:\WINDOWS\TEMP\Perflib_Perfdata_15c.dat + 2007-05-08 13:06:44 1,275,392 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9848.0_x-ww_1b897e9a\msxml4.dll . -- Snapshot reset to current date -- . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{d6e80b13-709e-4488-a82c-fae7b8caccbe}] 2008-06-25 19:38 106496 --a------ C:\WINDOWS\system32\gfbeqorl.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 04:33 15360] "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 11:34 5724184] "NVIDIA nTune"="C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2007-09-04 19:25 81920] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Apoint"="C:\Program Files\Apoint\Apoint.exe" [2004-11-17 13:47 118784] "ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:34 64512] "nwiz"="nwiz.exe" [2007-12-05 07:41 1626112 C:\WINDOWS\system32\nwiz.exe] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 07:41 8523776] "avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-02-12 10:06 262401] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.dvsd"= C:\PROGRA~1\FICHIE~1\SONYSH~1\VideoLib\sonydv.dll [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= R3 SonyImgF;Sony Image Conversion Filter Driver;C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2006-03-06 11:39] R3 ti21sony;ti21sony;C:\WINDOWS\system32\drivers\ti21sony.sys [2007-01-24 14:46] S0 NVStrap;NVStrap;C:\WINDOWS\system32\drivers\NVStrap.sys [2008-04-28 20:25] S3 EverestDriver;Lavalys EVEREST Kernel Driver;C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt [2005-08-18 00:00] S3 Image Converter video recording monitor for VAIO Entertainment;Image Converter video recording monitor for VAIO Entertainment;C:\Program Files\Sony\Image Converter 2\IcVzMon.exe [2005-07-14 19:10] S3 maconfservice;Ma-Config Service;"C:\Program Files\ma-config.com\maconfservice.exe" [2008-06-14 10:13] . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-06-25 21:01:40 Windows 5.1.2600 Service Pack 3 NTFS Balayage processus cach‚s ... Balayage cach‚ autostart entries ... Balayage des fichiers cach‚s ... Scan termin‚ avec succŠs Les fichiers cach‚s: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\EverestDriver] "ImagePath"="\??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt" . ------------------------ Other Running Processes ------------------------ . C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\ehome\ehrecvr.exe C:\WINDOWS\ehome\ehSched.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\ehome\mcrdsvc.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\ehome\ehmsas.exe C:\Program Files\Apoint\ApntEx.exe C:\WINDOWS\system32\wscntfy.exe . ************************************************************************** . Temps d'accomplissement: 2008-06-25 21:05:42 - machine was rebooted ComboFix-quarantined-files.txt 2008-06-25 19:05:39 ComboFix2.txt 2008-06-25 15:20:29 ComboFix3.txt 2008-06-25 12:01:34 ComboFix4.txt 2008-06-25 00:17:52 Pre-Run: 46,294,847,488 octets libres Post-Run: 46,288,199,680 octets libres 935 --- E O F --- 2008-06-25 15:31:14

je te remercie, j'ai bien envoyé le rapport comme indiqué

voilà c'est effectué: ComboFix 08-06-20.4 - Julien 2008-06-25 17:08:52.3 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.510 [GMT 2:00] Endroit: C:\Documents and Settings\Julien\Bureau\ComboFix.exe Command switches used :: C:\Documents and Settings\Julien\Bureau\CFScript.txt * Création d'un nouveau point de restauration AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\BM5796bdc3.xml C:\WINDOWS\cookies.ini C:\WINDOWS\pskt.ini C:\WINDOWS\system32\mcrh.tmp C:\WINDOWS\system32\opWHNqru.ini C:\WINDOWS\system32\opWHNqru.ini2 C:\WINDOWS\system32\xmklqjvf.ini . ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-05-25 to 2008-06-25 )))))))))))))))))))))))))))))))))))) . 2008-06-25 17:16 . 2008-06-25 17:16 294 ---hs---- C:\WINDOWS\system32\xmklqjvf.ini 2008-06-25 17:15 . 2008-06-25 17:16 122,276 --a------ C:\WINDOWS\BM5796bdc3.xml 2008-06-25 17:15 . 2008-06-25 17:15 22 --a------ C:\WINDOWS\pskt.ini 2008-06-25 17:01 . 2008-06-25 17:04 <REP> d-------- C:\HJT 2008-06-25 15:14 . 2008-06-25 16:44 <REP> d-------- C:\WINDOWS\BDOSCAN8 2008-06-25 14:04 . 2008-06-25 14:04 99,840 --a------ C:\WINDOWS\system32\jqvnqvum.dll 2008-06-25 14:01 . 2008-06-25 14:01 99,840 --a------ C:\WINDOWS\system32\iveqtfvb.dll 2008-06-25 14:01 . 2008-06-25 14:01 91,136 --a------ C:\WINDOWS\system32\pelltkfe.dll 2008-06-25 14:01 . 2008-06-25 14:01 81,920 --a------ C:\WINDOWS\system32\fvjqlkmx.dll 2008-06-25 14:00 . 2008-06-25 14:00 323,072 --------- C:\WINDOWS\system32\urqNHWpo.dll_old 2008-06-25 13:59 . 2008-06-25 13:59 <REP> d-------- C:\Bases 2008-06-25 02:25 . 2008-06-24 01:11 <REP> d-------- C:\SDFix 2008-06-25 01:54 . 2008-06-25 01:54 <REP> d-------- C:\VundoFix Backups 2008-06-24 12:26 . 2008-06-24 12:26 <REP> d-------- C:\Program Files\ZebHelpProcess 2 2008-06-24 12:26 . 2008-06-24 12:26 <REP> d-------- C:\Program Files\Fichiers communs\Borland Shared 2008-06-24 12:26 . 1999-01-20 05:01 210,032 --a------ C:\WINDOWS\system32\DBCLIENT.DLL 2008-06-24 12:26 . 1999-11-12 05:11 183,808 --a------ C:\WINDOWS\system32\BDEADMIN.CPL 2008-06-24 12:26 . 2008-06-25 02:22 13,030 --a------ C:\PDOXUSRS.NET 2008-06-24 12:19 . 2008-06-25 13:38 1,834 --a------ C:\WINDOWS\system32\tmp.reg 2008-06-24 12:18 . 2007-09-06 00:22 289,144 --a------ C:\WINDOWS\system32\VCCLSID.exe 2008-06-24 12:18 . 2006-04-27 17:49 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe 2008-06-24 12:18 . 2008-05-29 09:35 86,528 --a------ C:\WINDOWS\system32\VACFix.exe 2008-06-24 12:18 . 2008-05-18 21:40 82,944 --a------ C:\WINDOWS\system32\IEDFix.exe 2008-06-24 12:18 . 2008-06-23 23:34 82,432 --a------ C:\WINDOWS\system32\IEDFix.C.exe 2008-06-24 12:18 . 2008-05-23 18:21 81,920 --a------ C:\WINDOWS\system32\404Fix.exe 2008-06-24 12:18 . 2003-06-05 21:13 53,248 --a------ C:\WINDOWS\system32\Process.exe 2008-06-24 12:18 . 2004-07-31 18:50 51,200 --a------ C:\WINDOWS\system32\dumphive.exe 2008-06-24 12:18 . 2007-10-04 00:36 25,600 --a------ C:\WINDOWS\system32\WS2Fix.exe 2008-06-24 11:32 . 2008-06-24 11:32 <REP> d-------- C:\Program Files\Spybot - Search & Destroy 2008-06-24 11:32 . 2008-06-25 14:36 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-06-24 10:52 . 2008-06-24 10:52 98 --a------ C:\WINDOWS\WirelessFTP.INI 2008-06-23 14:02 . 2008-06-23 14:02 25,600 --a------ C:\WINDOWS\system32\ssQJDSii.dll 2008-06-20 00:04 . 2008-06-23 14:02 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Azureus 2008-06-20 00:04 . 2008-06-20 00:04 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Azureus 2008-06-20 00:02 . 2008-06-23 13:29 <REP> d-------- C:\Program Files\Azureus 2008-06-19 17:53 . 2008-06-19 17:53 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Toshiba 2008-06-18 20:41 . 2008-06-18 20:41 <REP> d-------- C:\Program Files\VideoLAN 2008-06-18 18:56 . 2008-06-18 19:00 <REP> d-------- C:\Documents and Settings\Julien\MUTE 2008-06-17 03:19 . 2008-06-17 03:19 <REP> d-------- C:\Program Files\Windows Media Connect 2 2008-06-17 03:16 . 2008-06-17 03:17 <REP> d-------- C:\WINDOWS\system32\drivers\UMDF 2008-06-16 14:00 . 2008-06-19 00:51 <REP> d-------- C:\Documents and Settings\Julien\Application Data\vlc 2008-06-12 23:10 . 2008-06-12 23:10 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll 2008-06-12 23:06 . 2006-10-18 21:47 2,450,944 -----c--- C:\WINDOWS\system32\dllcache\wmvcore.dll 2008-06-12 23:06 . 2008-06-14 19:33 272,768 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys 2008-06-12 23:06 . 2008-05-08 16:02 203,136 -----c--- C:\WINDOWS\system32\dllcache\rmcast.sys 2008-06-08 00:51 . 2008-06-08 00:51 <REP> d-------- C:\Program Files\NVIDIA Corporation 2008-06-08 00:50 . 2008-06-08 00:50 <REP> d-------- C:\Program Files\NVIDIA nTune Performance Application 2008-06-08 00:41 . 2007-12-05 07:41 1,703,936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll 2008-06-08 00:40 . 2008-06-08 00:40 <REP> d-------- C:\Program Files\Nvidia Omega Drivers 2008-06-08 00:40 . 2008-06-08 00:40 472,576 --a------ C:\WINDOWS\Nvidia Omega Drivers v2.169.21 Uninstall.exe 2008-06-08 00:25 . 2008-04-28 20:25 4,224 --a------ C:\WINDOWS\system32\drivers\NVStrap.sys 2008-06-08 00:23 . 2008-06-08 00:30 <REP> d-------- C:\Program Files\RivaTuner v2.09 2008-06-07 23:40 . 2008-05-30 14:11 3,850,760 --a------ C:\WINDOWS\system32\D3DX9_38.dll 2008-06-07 23:40 . 2008-05-30 14:11 1,491,992 --a------ C:\WINDOWS\system32\D3DCompiler_38.dll 2008-06-07 23:40 . 2008-05-30 14:19 507,400 --a------ C:\WINDOWS\system32\XAudio2_1.dll 2008-06-07 23:40 . 2008-05-30 14:11 467,984 --a------ C:\WINDOWS\system32\d3dx10_38.dll 2008-06-07 23:40 . 2008-05-30 14:18 238,088 --a------ C:\WINDOWS\system32\xactengine3_1.dll 2008-06-07 23:40 . 2008-05-30 14:17 65,032 --a------ C:\WINDOWS\system32\XAPOFX1_0.dll 2008-06-07 23:40 . 2008-05-30 14:17 25,608 --a------ C:\WINDOWS\system32\X3DAudio1_4.dll 2008-06-07 23:39 . 2008-06-07 23:39 <REP> d--h----- C:\WINDOWS\msdownld.tmp 2008-06-07 23:38 . 2008-06-07 23:38 <REP> d-------- C:\WINDOWS\Logs 2008-06-07 03:34 . 2008-04-10 17:07 442,368 --a------ C:\WINDOWS\system32\NVUNINST.EXE 2008-06-07 03:31 . 2008-04-14 01:20 442,368 --a------ C:\WINDOWS\system32\nvudisp.exe 2008-06-07 03:31 . 2008-06-08 19:04 160,371 --a------ C:\WINDOWS\system32\nvapps.xml 2008-06-07 03:31 . 2007-12-05 07:41 17,737 --a------ C:\WINDOWS\system32\nvdisp.nvu 2008-06-07 03:18 . 2008-04-14 04:03 5,504 --a------ C:\WINDOWS\system32\drivers\intelide.sys 2008-06-07 03:18 . 2008-04-14 04:03 5,504 --a--c--- C:\WINDOWS\system32\dllcache\intelide.sys 2008-06-07 02:52 . 2008-05-01 16:35 53,248 --a------ C:\WINDOWS\system32\CSVer.dll 2008-06-07 02:38 . 2008-06-07 02:37 737,280 --a------ C:\WINDOWS\iun6002.exe 2008-06-07 02:25 . 2008-06-07 02:25 1,169 --a------ C:\WINDOWS\mozver.dat 2008-06-06 23:49 . 2008-06-06 23:49 <REP> d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles 2008-06-06 23:47 . 2008-06-08 00:43 <REP> d-------- C:\WINDOWS\nview 2008-06-06 22:30 . 2008-06-06 22:30 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Codemasters 2008-06-06 22:29 . 2008-06-06 22:29 <REP> d-------- C:\Program Files\OpenAL 2008-06-05 10:33 . 2008-06-05 10:33 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Talkback 2008-06-05 10:33 . 2008-06-05 10:33 0 --a------ C:\WINDOWS\nsreg.dat 2008-06-05 10:28 . 2008-06-24 22:45 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-06-05 10:28 . 2008-06-05 10:28 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Malwarebytes 2008-06-05 10:28 . 2008-06-05 10:28 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-06-05 10:28 . 2008-06-19 17:48 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-06-05 10:28 . 2008-06-19 17:47 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-06-03 17:27 . 2008-06-03 17:27 <REP> d--hs---- C:\Diskeeper 2008-06-03 17:09 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll 2008-06-03 17:09 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui 2008-06-03 14:02 . 2008-06-03 14:02 0 --a------ C:\Documents and Settings\Julien\Application Data\wklnhst.dat 2008-06-03 13:59 . 2008-06-03 13:59 <REP> d-------- C:\Program Files\Fichiers communs\SWF Studio 2008-06-03 13:59 . 2008-06-03 13:59 <REP> d-------- C:\Documents and Settings\Julien\Application Data\sony 2008-06-03 13:50 . 2007-12-05 07:41 1,089,536 --a------ C:\WINDOWS\system32\nvcuda.dll 2008-06-03 13:41 . 2008-06-03 13:41 <REP> d-------- C:\Documents and Settings\Julien\Application Data\InterVideo 2008-06-03 04:20 . 2008-06-17 03:16 <REP> d-------- C:\WINDOWS\system32\LogFiles 2008-06-03 04:14 . 2008-06-03 04:14 <REP> d-------- C:\Program Files\Alwil Software 2008-06-03 03:18 . 2007-04-04 18:53 81,768 --a------ C:\WINDOWS\system32\xinput1_3.dll 2008-06-03 02:51 . 2008-06-03 02:51 <REP> d-------- C:\Program Files\Microsoft Silverlight 2008-06-03 02:49 . 2008-06-03 02:49 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Sonic 2008-06-03 02:48 . 2008-06-03 02:48 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Leadertech 2008-06-03 02:36 . 2008-06-25 14:31 <REP> d-------- C:\Program Files\Codemasters 2008-06-03 02:35 . 2008-06-03 02:35 <REP> d-------- C:\Program Files\DAEMON Tools Lite 2008-06-03 02:30 . 2008-06-03 02:30 <REP> d-------- C:\Program Files\Lavalys 2008-06-03 02:09 . 2008-06-03 02:09 <REP> d-------- C:\Program Files\Diskeeper Corporation 2008-06-03 02:09 . 2008-06-03 02:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Diskeeper Corporation 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\NetworkService\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\LocalService\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\Intel 2008-06-03 02:08 . 2008-06-03 02:08 376,832 --a------ C:\WINDOWS\system32\AegisI5Installer.exe 2008-06-03 02:08 . 2008-06-03 02:08 21,361 --a------ C:\WINDOWS\system32\drivers\AegisP.sys 2008-06-03 02:08 . 2008-06-03 02:08 21,361 --a------ C:\WINDOWS\AegisP.sys 2008-06-03 02:08 . 2008-06-03 02:08 13,984 --a------ C:\WINDOWS\AegisP.inf 2008-06-03 02:08 . 2008-06-03 02:08 10,640 --a------ C:\WINDOWS\AegisP.cat 2008-06-03 02:07 . 2008-06-03 02:07 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Intel 2008-06-03 02:07 . 2007-08-08 15:29 2,772,992 --a------ C:\WINDOWS\system32\NETw4r32.dll 2008-06-03 02:07 . 2008-03-13 03:25 2,530,176 --a------ C:\WINDOWS\system32\drivers\NETw4x32.sys 2008-06-03 02:07 . 2007-08-08 15:28 684,032 --a------ C:\WINDOWS\system32\NETw4c32.dll 2008-06-03 02:07 . 2008-04-13 20:45 26,368 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys 2008-06-03 01:30 . 2008-06-03 01:30 <REP> d-------- C:\Program Files\SystemRequirementsLab 2008-06-03 01:22 . 2008-06-03 01:22 <REP> d-------- C:\Program Files\IZArc 2008-06-03 01:20 . 2008-04-23 06:16 6,066,176 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll 2008-06-03 01:20 . 2007-04-17 11:32 2,455,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dat 2008-06-03 01:20 . 2007-03-08 07:10 1,048,576 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll.mui 2008-06-03 01:20 . 2008-04-23 06:16 459,264 -----c--- C:\WINDOWS\system32\dllcache\msfeeds.dll 2008-06-03 01:20 . 2008-04-23 06:16 383,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dll 2008-06-03 01:20 . 2008-04-23 06:16 267,776 -----c--- C:\WINDOWS\system32\dllcache\iertutil.dll 2008-06-03 01:20 . 2008-04-23 06:16 63,488 -----c--- C:\WINDOWS\system32\dllcache\icardie.dll 2008-06-03 01:20 . 2008-04-23 06:16 52,224 -----c--- C:\WINDOWS\system32\dllcache\msfeedsbs.dll 2008-06-03 01:20 . 2008-04-22 09:39 13,824 -----c--- C:\WINDOWS\system32\dllcache\ieudinit.exe . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-25 15:14 --------- d-----w C:\Program Files\Google 2008-06-20 10:39 180 ----a-w C:\WINDOWS\system32\drivers\sthdae.log 2008-06-14 17:33 272,768 ------w C:\WINDOWS\system32\drivers\bthport.sys 2008-06-08 16:54 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-06-08 16:54 --------- d-----w C:\Program Files\Sony 2008-06-08 16:41 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sony Corporation 2008-06-07 21:56 --------- d-----w C:\Program Files\Fichiers communs\Adobe 2008-06-07 21:40 --------- d-----w C:\Program Files\Fichiers communs\Sony Shared 2008-06-03 11:40 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\Sony Corporation 2008-06-02 18:41 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec 2008-05-08 14:02 203,136 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys 2008-04-14 02:34 769,024 ----a-w C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe 2008-04-14 02:34 744,448 ----a-w C:\WINDOWS\pchealth\helpctr\binaries\helpsvc.exe 2008-04-14 02:34 70,656 ----a-w C:\WINDOWS\notepad.exe 2008-04-14 02:34 32,866 ------w C:\WINDOWS\slrundll.exe 2008-04-14 02:34 288,256 ----a-w C:\WINDOWS\winhlp32.exe 2008-04-14 02:34 18,432 ----a-w C:\WINDOWS\pchealth\helpctr\binaries\hscupd.exe 2008-04-14 02:34 172,544 ----a-w C:\WINDOWS\pchealth\helpctr\binaries\msconfig.exe 2008-04-14 02:34 153,088 ----a-w C:\WINDOWS\regedit.exe 2008-04-14 02:34 151,040 ----a-w C:\WINDOWS\pchealth\UploadLB\Binaries\uploadm.exe 2008-04-14 02:34 10,752 ----a-w C:\WINDOWS\hh.exe 2008-04-14 02:34 1,037,824 ----a-w C:\WINDOWS\explorer.exe . ((((((((((((((((((((((((((((( snapshot@2008-06-25_ 2.17.04.75 ))))))))))))))))))))))))))))))))))))))))) . + 2008-06-25 13:15:13 45,056 ----a-w C:\WINDOWS\BDOSCAN8\avxdisk.dll + 2008-06-25 13:15:13 10,240 ----a-w C:\WINDOWS\BDOSCAN8\avxs.dll + 2008-06-25 13:15:13 27,136 ----a-w C:\WINDOWS\BDOSCAN8\avxt.dll + 2008-06-25 13:15:16 181,760 ----a-w C:\WINDOWS\BDOSCAN8\bdcore.dll + 2006-05-24 23:21:00 118,784 ----a-w C:\WINDOWS\BDOSCAN8\bdupd.dll + 2006-05-24 23:21:14 53,248 ----a-w C:\WINDOWS\BDOSCAN8\ipsupd.dll + 2008-06-25 13:15:16 142,848 ----a-w C:\WINDOWS\BDOSCAN8\libfn.dll + 2008-06-25 13:15:14 86,016 ----a-w C:\WINDOWS\BDOSCAN8\librtvr.dll + 2006-05-24 23:22:06 53,248 ----a-w C:\WINDOWS\bdoscandel.exe - 2008-06-25 00:11:13 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2008-06-25 15:14:19 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2006-05-24 23:21:00 118,784 ----a-w C:\WINDOWS\Downloaded Program Files\bdupd.dll + 2006-05-24 23:21:14 53,248 ----a-w C:\WINDOWS\Downloaded Program Files\ipsupd.dll - 2008-06-19 09:47:15 287,704 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT + 2008-06-25 15:14:13 286,904 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT - 2008-06-24 09:11:31 70,226 ----a-w C:\WINDOWS\system32\perfc009.dat + 2008-06-25 11:59:20 70,226 ----a-w C:\WINDOWS\system32\perfc009.dat - 2008-06-24 09:11:31 86,282 ----a-w C:\WINDOWS\system32\perfc00C.dat + 2008-06-25 11:59:21 86,282 ----a-w C:\WINDOWS\system32\perfc00C.dat - 2008-06-24 09:11:31 419,228 ----a-w C:\WINDOWS\system32\perfh009.dat + 2008-06-25 11:59:20 419,228 ----a-w C:\WINDOWS\system32\perfh009.dat - 2008-06-24 09:11:31 490,030 ----a-w C:\WINDOWS\system32\perfh00C.dat + 2008-06-25 11:59:21 490,030 ----a-w C:\WINDOWS\system32\perfh00C.dat + 2008-06-25 15:14:42 16,384 ----atw C:\WINDOWS\TEMP\Perflib_Perfdata_1d4.dat . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7D3C7FA8-2270-4E6E-8758-87F33B8B3721}] 2008-06-23 14:02 25600 --a------ C:\WINDOWS\system32\ssQJDSii.dll [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AE1C822A-E94D-44C4-9AA4-6A94AD699212}] C:\WINDOWS\system32\urqNHWpo.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 04:33 15360] "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 11:34 5724184] "NVIDIA nTune"="C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2007-09-04 19:25 81920] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Apoint"="C:\Program Files\Apoint\Apoint.exe" [2004-11-17 13:47 118784] "ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 13:34 64512] "nwiz"="nwiz.exe" [2007-12-05 07:41 1626112 C:\WINDOWS\system32\nwiz.exe] "54a58e5f"="C:\WINDOWS\system32\fvjqlkmx.dll" [2008-06-25 14:01 81920] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 07:41 8523776] "BM5796bdc3"="C:\WINDOWS\system32\pelltkfe.dll" [2008-06-25 14:01 91136] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{7D3C7FA8-2270-4E6E-8758-87F33B8B3721}"= C:\WINDOWS\system32\ssQJDSii.dll [2008-06-23 14:02 25600] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ssQJDSii] ssQJDSii.dll 2008-06-23 14:02 25600 C:\WINDOWS\system32\ssQJDSii.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.dvsd"= C:\PROGRA~1\FICHIE~1\SONYSH~1\VideoLib\sonydv.dll [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "C:\\Documents and Settings\\Julien\\Bureau\\mwav\\kavupd.exe"= R3 SonyImgF;Sony Image Conversion Filter Driver;C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2006-03-06 11:39] R3 ti21sony;ti21sony;C:\WINDOWS\system32\drivers\ti21sony.sys [2007-01-24 14:46] R4 ps6ah4nc;DiRT Synchronization Driver (ps6ah4nc);C:\WINDOWS\system32\drivers\ps6ah4nc.sys [] S0 NVStrap;NVStrap;C:\WINDOWS\system32\drivers\NVStrap.sys [2008-04-28 20:25] S3 EverestDriver;Lavalys EVEREST Kernel Driver;C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt [2005-08-18 00:00] S3 Image Converter video recording monitor for VAIO Entertainment;Image Converter video recording monitor for VAIO Entertainment;C:\Program Files\Sony\Image Converter 2\IcVzMon.exe [2005-07-14 19:10] S3 maconfservice;Ma-Config Service;"C:\Program Files\ma-config.com\maconfservice.exe" [2008-06-14 10:13] . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-06-25 17:15:50 Windows 5.1.2600 Service Pack 3 NTFS Balayage processus cach‚s ... Balayage cach‚ autostart entries ... Balayage des fichiers cach‚s ... C:\WINDOWS\system32\xmklqjvf.ini 294 bytes Scan termin‚ avec succŠs Les fichiers cach‚s: 1 ************************************************************************** [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\EverestDriver] "ImagePath"="\??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt" . --------------------- DLLs a charg‚ sous des processus courants --------------------- PROCESS: C:\WINDOWS\system32\winlogon.exe -> C:\WINDOWS\system32\ssQJDSii.dll PROCESS: C:\WINDOWS\explorer.exe -> C:\WINDOWS\system32\nview.dll -> C:\WINDOWS\system32\fvjqlkmx.dll -> C:\WINDOWS\system32\pelltkfe.dll . ------------------------ Other Running Processes ------------------------ . C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\WINDOWS\ehome\ehrecvr.exe C:\WINDOWS\ehome\ehSched.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\ehome\mcrdsvc.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\ehome\ehmsas.exe C:\Program Files\Apoint\ApntEx.exe . ************************************************************************** . Temps d'accomplissement: 2008-06-25 17:20:28 - machine was rebooted ComboFix-quarantined-files.txt 2008-06-25 15:20:21 ComboFix2.txt 2008-06-25 12:01:34 ComboFix3.txt 2008-06-25 00:17:52 Pre-Run: 46,350,761,984 octets libres Post-Run: 46,397,603,840 octets libres 291 --- E O F --- 2008-06-20 07:23:54

Bonjour je suis infecté par virtumonde depuis 2 jours... Habituellement j'arrive à me débrouiller mais là c'est dur.. entre ralentissemet et mozilla qui ne réponds plus, le clavier qui répond une fois sur deux... voici mon rapport Hijackthis: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:45:29, on 25/06/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\dllhost.exe C:\Program Files\Apoint\Apoint.exe C:\WINDOWS\ehome\ehtray.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\eHome\ehmsas.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Apoint\Apntex.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\rundll32.exe C:\Documents and Settings\Julien\Bureau\mwav\mwavscan.com C:\Documents and Settings\Julien\Bureau\mwav\kavss.exe C:\Program Files\Outlook Express\msimn.exe C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Program Files\Alwil Software\Avast4\ashSimpl.exe C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe C:\WINDOWS\explorer.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\PROGRA~1\IZArc\IZArc.exe C:\DOCUME~1\Julien\LOCALS~1\Temp\ARC94D\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {7D3C7FA8-2270-4E6E-8758-87F33B8B3721} - C:\WINDOWS\system32\ssQJDSii.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: (no name) - {AE1C822A-E94D-44C4-9AA4-6A94AD699212} - C:\WINDOWS\system32\urqNHWpo.dll (file missing) O2 - BHO: {d7b4498e-2785-b928-fb54-e765f63e70fe} - {ef07e36f-567e-45bf-829b-5872e8944b7d} - C:\WINDOWS\system32\jqvnqvum.dll O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto O4 - HKLM\..\Run: [bM5796bdc3] Rundll32.exe "C:\WINDOWS\system32\pelltkfe.dll",s O4 - HKLM\..\RunOnce: [spybot - Search & Destroy] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Transfert par Image Converter 2 Plus - C:\Program Files\Sony\Image Converter 2\menu.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/fr/ O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://dev.srtest.com/srl_bin/sysreqlab3.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1212431502580 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1212431638690 O17 - HKLM\System\CCS\Services\Tcpip\..\{DAFEAABE-27B1-44C1-90DA-686FAFC4121D}: NameServer = 80.10.246.2,80.10.246.129 O20 - Winlogon Notify: ssQJDSii - C:\WINDOWS\SYSTEM32\ssQJDSii.dll O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\Image Converter 2\IcVzMon.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe O23 - Service: NVIDIA-OMEGA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: DiRT Drivers Auto Removal (pr2ah4nc) (pr2ah4nc) - CODEMASTERS - C:\WINDOWS\system32\pr2ah4nc.exe O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SsBeSvc.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe -- End of file - 8634 bytes merci our vos réponse

Bonjour pourriez vous me conseiller entre deux cartes graphiques s'il vous plait. J'hésite entre deux cartes sapphire et je na sais laquelles prendre : Sapphire HD3870 512 mo ventilé: http://prix.matbe.com/prix/acheter/118831/...n-HD3870-512Mo/ Ou Sapphire HD3870 512 mo Ultimate: http://prix.matbe.com/prix/acheter/203031/...512Mo-Ultimate/ Merci pour vos réponses et conseils si possible.

essais le frigo, sinon la clim...

Bonjour, J'aimerais me lancer dans Linux ,mais je ne sais pas quelle version utiliser ,et j'ai donc besoin de vos conseils, sachant que j'utilise le wifi, le bluetooth, une carte tv ( asus ), disque dur S-ata ,etc... Merci,

bonsoir Windows Mediaplayer le fait très bien

merci beaucoup, c'est interressant ce site, ou on relate tout

il me dit d'appuyer sur une touche pour continuer et là j'ai un genre de log: C:\WINDOWS\System32\pavas.ico -->07/08/2006 12:51:52 C:\WINDOWS\System32\Help.ico -->07/08/2006 12:51:52 C:\WINDOWS\System32\wpa.dbl -->07/08/2006 11:36:40 C:\WINDOWS\System32\zllictbl.dat -->31/07/2006 23:25:22 C:\WINDOWS\System32\brsvc01a.bsi -->31/07/2006 17:58:29 C:\WINDOWS\System32\brss01a.ini -->31/07/2006 17:58:29 C:\WINDOWS\System32\BRIDF04A.dat -->31/07/2006 17:57:04 C:\WINDOWS\System32\GDIPFONTCACHEV1.DAT -->31/07/2006 17:45:18 C:\WINDOWS\System32\FNTCACHE.DAT -->31/07/2006 17:44:17 C:\WINDOWS\System32\lvcoinst.log -->29/07/2006 01:36:59 C:\WINDOWS\System32\Installer.log -->29/07/2006 01:33:40 C:\WINDOWS\System32\winrknj -->28/07/2006 22:07:38 C:\WINDOWS\System32\perfh00C.dat -->27/07/2006 03:45:05 C:\WINDOWS\System32\perfc00C.dat -->27/07/2006 03:45:05 C:\WINDOWS\System32\PerfStringBackup.INI -->27/07/2006 03:45:04 C:\WINDOWS\System32\perfh009.dat -->27/07/2006 03:45:04 C:\WINDOWS\System32\perfc009.dat -->27/07/2006 03:45:04 C:\WINDOWS\System32\ML.DLL -->18/07/2006 02:03:45 C:\WINDOWS\System32\CompiledAdapter -->17/07/2006 19:49:04 C:\WINDOWS\System32\spupdwxp.log -->16/07/2006 18:54:15 C:\WINDOWS\System32\ifo.htm -->16/07/2006 04:29:03 C:\WINDOWS\System32\jupdate-1.5.0_06-b05.log -->15/07/2006 14:04:58 C:\WINDOWS\System32\jupdate-1.4.2_12-b03.log -->15/07/2006 13:06:16 C:\WINDOWS\System32\matos9x.vxd -->10/07/2006 20:58:22 C:\WINDOWS\System32\MRT.exe -->07/07/2006 03:21:46 C:\WINDOWS\setupapi.log -->07/08/2006 12:42:05 C:\WINDOWS\WindowsUpdate.log -->07/08/2006 12:40:59 C:\WINDOWS\wiadebug.log -->07/08/2006 10:56:56 C:\WINDOWS\0.log -->07/08/2006 10:56:51 C:\WINDOWS\wiaservc.log -->07/08/2006 10:56:48 C:\WINDOWS\bootstat.dat -->07/08/2006 10:56:38 C:\WINDOWS\ntbtlog.txt -->07/08/2006 10:54:29 C:\WINDOWS\setupact.log -->07/08/2006 02:49:44 C:\WINDOWS\setuperr.log -->07/08/2006 02:03:31 C:\WINDOWS\SchedLgU.Txt -->07/08/2006 02:00:15 C:\WINDOWS\win.ini -->07/08/2006 01:31:21 C:\WINDOWS\system.ini -->07/08/2006 01:31:21 C:\WINDOWS\NeroDigital.ini -->31/07/2006 19:49:31 C:\WINDOWS\BRWMARK.INI -->31/07/2006 19:23:31 C:\WINDOWS\Brownie.ini -->31/07/2006 18:01:50 Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 80A1-4352 Répertoire de C:\WINDOWS\system32 19/08/2004 16:09 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 14 030 798 848 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 80A1-4352 Répertoire de C:\Program Files 07/08/2006 11:11 <REP> . 07/08/2006 11:11 <REP> .. 29/06/2006 12:56 <REP> Adobe 16/07/2006 16:44 <REP> Ahead 11/07/2006 04:04 <REP> Alcohol Soft 04/06/2006 01:35 <REP> Alwil Software 01/06/2006 08:55 <REP> Analog Devices 01/06/2006 09:03 <REP> ASUS 15/07/2006 03:22 <REP> ATI Technologies 12/07/2006 01:50 <REP> ATITool 31/07/2006 18:28 <REP> Brother 04/06/2006 02:33 <REP> CCleaner 31/07/2006 17:41 <REP> Common Files 11/07/2006 04:09 <REP> DAEMON Tools 17/07/2006 15:57 <REP> DivX 17/07/2006 19:26 <REP> DScaler5 11/07/2006 04:30 <REP> EA GAMES 28/07/2006 21:13 <REP> EBP 02/07/2006 15:11 <REP> Elaborate Bytes 07/08/2006 11:26 <REP> eMule 31/07/2006 12:16 <REP> ewido anti-malware 04/06/2006 01:30 <REP> Executive Software 31/07/2006 17:26 <REP> Fichiers communs 10/07/2006 20:58 <REP> HardwareDetection 18/07/2006 01:12 <REP> HD Tune 07/08/2006 11:34 <REP> HijackThis 01/06/2006 08:54 <REP> Intel 17/07/2006 15:52 <REP> Internet Explorer 10/07/2006 21:02 <REP> IZArc 15/07/2006 14:04 <REP> Java 16/07/2006 15:41 <REP> jv16 PowerTools 01/06/2006 08:58 <REP> Lavalys 06/07/2006 03:53 <REP> Lavasoft 29/07/2006 01:32 <REP> Logitech 04/06/2006 02:05 <REP> Messenger 01/01/2002 00:06 <REP> Messenger Plus! Live 21/02/2006 13:56 <REP> microsoft frontpage 04/06/2006 01:08 <REP> Microsoft Office 14/07/2006 13:55 <REP> Microsoft SQL Server 04/06/2006 01:07 <REP> Microsoft Visual Studio 04/06/2006 01:08 <REP> Microsoft Works 04/06/2006 01:10 <REP> Microsoft.NET 20/06/2006 10:35 <REP> Movie Maker 07/08/2006 11:24 <REP> Mozilla Firefox 21/02/2006 13:54 <REP> MSN 21/02/2006 13:54 <REP> MSN Gaming Zone 01/01/2002 00:06 <REP> MSN Messenger 27/07/2006 15:53 <REP> MSXML 4.0 20/06/2006 10:34 <REP> NetMeeting 16/07/2006 16:02 <REP> NT Registry Optimizer 23/06/2006 23:55 <REP> Outlook Express 07/08/2006 01:24 <REP> PestPatrol 14/07/2006 14:27 <REP> RegCleaner 24/07/2006 15:03 <REP> Samsung 31/07/2006 17:26 <REP> ScanSoft 21/02/2006 13:54 <REP> Services en ligne 02/07/2006 15:13 <REP> SlySoft 06/07/2006 03:56 <REP> Spybot - Search & Destroy 16/07/2006 19:27 <REP> Team MediaPortal 16/07/2006 04:05 <REP> ToniArts 01/06/2006 08:52 <REP> VIA 26/07/2006 01:31 <REP> VideoLAN 19/07/2006 03:26 <REP> Windows Media Connect 2 29/06/2006 14:45 <REP> Windows Media Player 20/06/2006 10:34 <REP> Windows NT 16/07/2006 16:10 <REP> X-Setup Pro 21/02/2006 13:56 <REP> xerox 26/07/2006 11:09 <REP> Yahoo! 18/07/2006 02:28 <REP> Zeb-Utility 0 fichier(s) 0 octets 69 Rép(s) 14 030 794 752 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 80A1-4352 Répertoire de C:\Program Files\fichiers communs 31/07/2006 17:26 <REP> . 31/07/2006 17:26 <REP> .. 29/06/2006 13:09 <REP> Adobe 16/07/2006 16:40 <REP> Ahead 04/06/2006 01:08 <REP> DESIGNER 21/06/2006 22:14 <REP> GTK 31/07/2006 17:39 <REP> InstallShield 15/07/2006 13:05 <REP> Java 29/07/2006 01:32 <REP> Logitech 28/06/2006 02:01 <REP> Microsoft Shared 21/02/2006 13:55 <REP> MSSoap 21/02/2006 13:45 <REP> ODBC 31/07/2006 17:26 <REP> ScanSoft Shared 21/02/2006 13:55 <REP> Services 21/02/2006 13:45 <REP> SpeechEngines 23/06/2006 23:55 <REP> System 0 fichier(s) 0 octets 16 Rép(s) 14 030 794 752 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 80A1-4352 Répertoire de C:\Program Files\common files 31/07/2006 17:41 <REP> . 31/07/2006 17:41 <REP> .. 31/07/2006 17:41 <REP> InstallShield 0 fichier(s) 0 octets 3 Rép(s) 14 030 794 752 octets libres c:\Documents and Settings\All Users\Application Data\Exetender\Setup.exe c:\Documents and Settings\julien\Bureau\6-6_xp-2k_dd_ccc_wdm_enu_33678.exe c:\Documents and Settings\julien\Bureau\aawsepersonal.exe c:\Documents and Settings\julien\Bureau\AdbeRdr70_fra_full.exe c:\Documents and Settings\julien\Bureau\AdbeRdr708_en_US.exe c:\Documents and Settings\julien\Bureau\ATI Catalyst 6.5 with CP.exe c:\Documents and Settings\julien\Bureau\atitool_atitool_0.24_anglais_17858.exe c:\Documents and Settings\julien\Bureau\atitool0.20.0fr.exe c:\Documents and Settings\julien\Bureau\ccsetup131.exe c:\Documents and Settings\julien\Bureau\christv_christv_4.95_lite_francais_11028.exe c:\Documents and Settings\julien\Bureau\cldxtra.exe c:\Documents and Settings\julien\Bureau\compte.exe c:\Documents and Settings\julien\Bureau\dotnetfx.exe c:\Documents and Settings\julien\Bureau\DScaler5008.exe c:\Documents and Settings\julien\Bureau\eMule0.47a-Installer(2).exe c:\Documents and Settings\julien\Bureau\eMule0.47a-Installer.exe c:\Documents and Settings\julien\Bureau\fredepwizard(2).EXE c:\Documents and Settings\julien\Bureau\fredepwizard(3).EXE c:\Documents and Settings\julien\Bureau\fredepwizard.EXE c:\Documents and Settings\julien\Bureau\Ftool-ver201.exe c:\Documents and Settings\julien\Bureau\hdtune_251.exe c:\Documents and Settings\julien\Bureau\Hercules_cartes_sons_6.09_98Me2000XP.exe c:\Documents and Settings\julien\Bureau\iata55_cd.exe c:\Documents and Settings\julien\Bureau\install_flash_player.exe c:\Documents and Settings\julien\Bureau\intel_matrix_storage_5.1.0.1022_2080.exe c:\Documents and Settings\julien\Bureau\intel_raid_software_4.5.0_2484.exe c:\Documents and Settings\julien\Bureau\issetup.exe c:\Documents and Settings\julien\Bureau\IZArc35(2).exe c:\Documents and Settings\julien\Bureau\IZArc35.exe c:\Documents and Settings\julien\Bureau\j2re-1_4_2_12-windows-i586-p.exe c:\Documents and Settings\julien\Bureau\j2sdk-1_4_2_12-windows-i586-p.exe c:\Documents and Settings\julien\Bureau\jv16pt_setup1.3.0.195.exe c:\Documents and Settings\julien\Bureau\klmcodec153.exe c:\Documents and Settings\julien\Bureau\makensisw.exe c:\Documents and Settings\julien\Bureau\messenger-plus_messenger_plus_4.00.235_francais_11159.exe c:\Documents and Settings\julien\Bureau\Meteo-Live.exe c:\Documents and Settings\julien\Bureau\microsoft-net-framework_microsoft_.net_framework_v2.0_francais_12834.exe c:\Documents and Settings\julien\Bureau\ntregopt-setup.exe c:\Documents and Settings\julien\Bureau\Pack_FirmFr200(2).exe c:\Documents and Settings\julien\Bureau\Pack_FirmFr200(3).exe c:\Documents and Settings\julien\Bureau\Pack_FirmFr200.exe c:\Documents and Settings\julien\Bureau\pilote_ati_catalyst_5.12_8.192_3025.exe c:\Documents and Settings\julien\Bureau\pilote_ati_catalyst_6.5_avec_control_center_6.5_3220.exe c:\Documents and Settings\julien\Bureau\Pinnacle_MediaCenter_3.00_and_3.10_to_3.20_Update.exe c:\Documents and Settings\julien\Bureau\Pinnacle_MediaCenter_3_20_to_3_40_Update.exe c:\Documents and Settings\julien\Bureau\PlayerCLIC.exe c:\Documents and Settings\julien\Bureau\PMC_4.00_and_4.10_to_4.11_Web-Update.exe c:\Documents and Settings\julien\Bureau\qc848fra.exe c:\Documents and Settings\julien\Bureau\sd4hide.exe c:\Documents and Settings\julien\Bureau\Setup_Zeb-Utility.exe c:\Documents and Settings\julien\Bureau\vlc-0.8.5-win32(2).exe c:\Documents and Settings\julien\Bureau\vlc-0.8.5-win32.exe c:\Documents and Settings\julien\Bureau\WGAPluginInstall.exe c:\Documents and Settings\julien\Bureau\windowblinds4_public.exe c:\Documents and Settings\julien\Bureau\windows-live-messenger_windows_live_messenger_8.0.0792.00_francais_19367.exe c:\Documents and Settings\julien\Bureau\WindowsXP-KB835935-SP2-FRA.exe c:\Documents and Settings\julien\Bureau\WindowsXP-KB896626-v2-x86-FRA.exe c:\Documents and Settings\julien\Bureau\zlsSetup_61_744_001_fr.exe c:\Documents and Settings\julien\Bureau\Arysta_FINAL\Arysta_FINAL.exe c:\Documents and Settings\julien\Bureau\chercher\chercher\LFiles.exe c:\Documents and Settings\julien\Bureau\chrome4[XP] v11r4 (FINAL)\cXP\Logon\logonui.exe c:\Documents and Settings\julien\Bureau\DreamfallTheLongestJourney2v1.0NoCDFixedexeEng\dreamfall.exe c:\Documents and Settings\julien\Bureau\emulev0.47a-MorphXTv8.12-bin\emule\emule.exe c:\Documents and Settings\julien\Bureau\intel_chipset_8.1.1.1001\Setup.exe c:\Documents and Settings\julien\Bureau\intel_chipset_8.1.1.1001\UpDrv64.exe c:\Documents and Settings\julien\Bureau\intel_chipset_8.1.1.1001(2)\Setup.exe c:\Documents and Settings\julien\Bureau\intel_chipset_8.1.1.1001(2)\UpDrv64.exe c:\Documents and Settings\julien\Bureau\MediaPortal_0.2\setup.exe c:\Documents and Settings\julien\Bureau\memt32\rawrite.exe c:\Documents and Settings\julien\Bureau\memtest86+-1.65.floppy\floppy\rawrite.exe c:\Documents and Settings\julien\Bureau\MMTV3\InstallMMTV.exe c:\Documents and Settings\julien\Bureau\Nouveau dossier\setup.exe c:\Documents and Settings\julien\Bureau\PouchinTV_0.3a\PouchinTV.exe c:\Documents and Settings\julien\Bureau\probe22301\_ISDEL.EXE c:\Documents and Settings\julien\Bureau\probe22301\SETUP.EXE c:\Documents and Settings\julien\Bureau\probe22301\UNINST.EXE c:\Documents and Settings\julien\Bureau\PROBE22308\PROBE22308\_ISDEL.EXE c:\Documents and Settings\julien\Bureau\PROBE22308\PROBE22308\SETUP.EXE c:\Documents and Settings\julien\Bureau\PROBE22308\PROBE22308\UNINST.EXE c:\Documents and Settings\julien\Bureau\WDM_ALL\Setup.exe c:\Documents and Settings\julien\Bureau\Zeb-Bench\setup.exe c:\Documents and Settings\julien\Bureau\Zeb-Bench\ZebBench_1_0_2_4\ZebBench.exe c:\Documents and Settings\julien\Bureau\Zeb-Restore\ZR_1.0.0.37\Zeb-Restore.exe c:\Documents and Settings\julien\Local Settings\Apps\2.0\MP0AO4M0.C2K\JYGHWX6W.7ZY\zebb..tion_4e93cf4ea346e16c_0001.0000_7e0d15207b1ca796\ZebBench.exe c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll c:\Documents and Settings\julien\Application Data\InstallShield Installation Information\{F38ADCA4-AF7C-4C73-9021-6F1EA15D15EA}\_setup.dll c:\Documents and Settings\julien\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll Vérifications de quelques clefs Recherche de clefs EGDACCESS HKLM\SOFTWARE\Microsoft\Windows\explorer\SharedTaskScheduler

salut Malekale morte g fais ce que tu m'as dis et il me dis qu'une erreur séest produite et qu 'l n'a pas pu trouver la clef ou la valeur du registre specifié

avec internet explorer, et kapersky me dit one line scanner est perimé donc g désinstaller et c toujours pareil. pour panda il ne veut pas se lancer, au telechargement de l'active x il me met un message d'erreur

aucun des deux fonctionne

bonjour j'ai un probleme avec mon pc; il rame de plus en plus il mais trente secondes à pouvrir une application. j'ai effectué la methode de pré-nettoyage et voilà mon rapport hijackthis: Logfile of HijackThis v1.99.1 Scan saved at 11:14:18, on 07/08/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\Brmfrmps.exe C:\Program Files\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe O4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Probe\AsusProb.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe O4 - HKLM\..\Run: [indexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe O4 - HKLM\..\Run: [setDefPrt] C:\Program Files\Brother\Brmfl04a\BrStDvPt.exe O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot O4 - Global Startup: Status Monitor.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1149346045718 O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Trend Micro ActiveX Scan Agent 6.5) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://drivers1.free.fr/telecharger.php?id=2&version= O17 - HKLM\System\CCS\Services\Tcpip\..\{A828447C-45AB-492D-979B-D4B17E2F9F37}: NameServer = 212.27.32.5,212.27.32.176 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C:\WINDOWS\system32\Brmfrmps.exe" -service (file missing) O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: Pinnacle Systems Media Service (PinnacleSys.MediaServer) - Unknown owner - C:\Program Files\Pinnacle\Shared Files\Programs\MediaServer\PMSHost.exe (file missing) O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe aidez moi s'il vous plait

super charles ingals il marche plutôt bien... mais j'ai l'impression que les images des pages internet mettent un peu de tps à ce charger...

j'ai fais le scan avec panda et : Incident Statut Analyse Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\invité juju\Cookies\invité juju@xiti[1].txt Virus:Eicar.Mod No Désinfecté C:\Program Files\PestPatrol\Help.chm[HowCanITestDetection.html] Adware:adware/gator No Désinfecté C:\WINDOWS\GatorHDPlugin.log-old.log