Aller au contenu

spaversu

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    41

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par spaversu

  1. spaversu
    Bonjour, Voilà mon (petit) problème : Je n'arrive pas à utiliser mes logiciels de P2P qui au bout de quelques minutes bloquent mes téléchargements( 0,0 Ko/s ) puis "freezent" (ils ne répondent plus). Je parle d'Emule, Utorrent ou Azureus/Vuze (qui lui ne "freeze" pas mais carrément disparait...). Emule indique un problème de "mappage" dans son journal des connections. Utorrent semble indiquer qu'il faille configurer l'ouverture des ports dans mon routeur. L'ennui c'est que c'est déjà fait ! En effet, je précise que ce problème existe malgré la configuration de mon routeur ( Alice box ) et l'ouverture des ports utilisés par mes logiciels de P2P comme indiqué dans les tutoriels concernant ces logiciels. D'ailleurs les premières minutes tout va bien, les voyants sont au vert et les téléchargements à hauteur de ma connexion... D'autre part ma connexion internet fonctionne normalement pour ce qui est de la navigation etc. Je n'ai pas trouvé sur Zébulon un sujet comportant la solution (du moins je crois) ni sur d'autres forums. Quelqu'un aurait il la gentillesse (et la patience) de se pencher sur mon problème ? Peut-être l'un de vous à été confronté au même ennui ? Merci d'avance...
  2. spaversu
    Oups j'avais pas vu ton message... Il semblerait donc que les virus / problèmes ont été effacés... Merci beaucoup pour le temps passé sur mon problème et ta patience ... Comment marquer le sujet comme résolu ? En tout cas merci et à bientôt peut-être...
  3. spaversu
    HA HA HA j'ai trouvé.... C'était super simple en fait : Pour je ne sais quelle raison Internet explorer s'était remis en navigateur par défaut au détriment de FF sans que je m'en rende compte. Le problème s'est que IE est défaillant ou partiellement enlevé de mon PC (je ne sais pas pourquoi, peut-être une erreur il y a longtemps..). Et le message: "aucun programme n'est associé à ce fichier pour exécuter cette action". ne correspondait pas aux fichiers Alice, Nvidia firewall etc. mais à IE. Reste que mon ordinateur est infecté...
  4. spaversu
    Entre temps Antivir a détecté ( une mise à jour ou un scan auto s'est declenché..) à nouveau le virus "TR/Monderb". Antivir ne l'avait pas efficacement mis en quarantaine semble t il...
  5. spaversu
    Voici le scan Avira: Avira AntiVir Personal Report file date: mardi 4 novembre 2008 16:50 Scanning for 1005296 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (Service Pack 3) [5.1.2600] Boot mode: Save mode Username: julien Computer name: JULIEN-2BD4071C Version information: BUILD.DAT : 8.2.0.334 16933 Bytes 16/10/2008 14:55:00 AVSCAN.EXE : 8.1.4.7 315649 Bytes 26/06/2008 08:57:53 AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40 LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19 LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52 ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 01:11:18 ANTIVIR1.VDF : 7.1.0.21 130560 Bytes 31/10/2008 17:03:02 ANTIVIR2.VDF : 7.1.0.22 2048 Bytes 31/10/2008 17:03:03 ANTIVIR3.VDF : 7.1.0.30 69120 Bytes 03/11/2008 01:31:44 Engineversion : 8.2.0.10 AEVDF.DLL : 8.1.0.6 102772 Bytes 15/10/2008 12:03:43 AESCRIPT.DLL : 8.1.1.9 319867 Bytes 17/10/2008 13:36:53 AESCN.DLL : 8.1.1.3 123252 Bytes 15/10/2008 12:03:39 AERDL.DLL : 8.1.1.2 438644 Bytes 10/10/2008 15:32:47 AEPACK.DLL : 8.1.2.4 369014 Bytes 15/10/2008 12:03:37 AEOFFICE.DLL : 8.1.0.29 196988 Bytes 23/10/2008 16:03:30 AEHEUR.DLL : 8.1.0.63 1479032 Bytes 23/10/2008 16:03:28 AEHELP.DLL : 8.1.1.2 115062 Bytes 15/10/2008 12:03:32 AEGEN.DLL : 8.1.0.42 319861 Bytes 24/10/2008 16:05:29 AEEMU.DLL : 8.1.0.9 393588 Bytes 15/10/2008 12:03:28 AECORE.DLL : 8.1.2.9 172407 Bytes 30/10/2008 01:11:24 AEBB.DLL : 8.1.0.3 53618 Bytes 15/10/2008 12:03:23 AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 08:40:05 AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01 AVREP.DLL : 8.0.0.2 98344 Bytes 10/10/2008 15:32:22 AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 11:26:40 AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23 AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49 SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02 SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40 NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10 RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07 RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37 Configuration settings for the scan: Jobname..........................: Complete system scan Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp Logging..........................: low Primary action...................: repair Secondary action.................: delete Scan master boot sector..........: on Scan boot sector.................: on Boot sectors.....................: C:, D:, Process scan.....................: on Scan registry....................: on Search for rootkits..............: on Scan all files...................: All files Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Macro heuristic..................: on File heuristic...................: medium Start of the scan: mardi 4 novembre 2008 16:50 Starting search for hidden objects. The driver could not be initialized. The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 11 processes with 11 modules were scanned Starting master boot sector scan: Master boot sector HD0 [iNFO] No virus was found! Start scanning boot sectors: Boot sector 'C:\' [iNFO] No virus was found! Boot sector 'D:\' [iNFO] No virus was found! Starting to scan the registry. The registry was scanned ( '58' files ). Starting the file scan: Begin scan in 'C:\' C:\pagefile.sys [WARNING] The file could not be opened! C:\Qoobox\Quarantine\C\WINDOWS\system32\awtqNghe.dll.vir [DETECTION] Is the TR/Monderb.wkt Trojan [NOTE] A backup was created as '49847049.qua' ( QUARANTINE ) [NOTE] Attempting to perform action using the ARK lib. [NOTE] The driver could not be initialized. [NOTE] The file was deleted! C:\Qoobox\Quarantine\C\WINDOWS\system32\rqRLdDTk.dll.vir [DETECTION] Is the TR/Monderb.wkt Trojan [NOTE] A backup was created as '49627043.qua' ( QUARANTINE ) [NOTE] Attempting to perform action using the ARK lib. [WARNING] The file could not be copied to the quarantine directory. [WARNING] Error in ARK lib [NOTE] The file was deleted! C:\WINDOWS\system32\drivers\sptd.sys [WARNING] The file could not be opened! Begin scan in 'D:\' <D> D:\jeux jean do\Crysis\Levels2.cab [0] Archive type: CAB (Microsoft) --> _AFAD19B01E0D4AE98E466E571FFA318F [WARNING] No further files can be extracted from this archive. The archive will be closed End of the scan: mardi 4 novembre 2008 17:29 Used time: 39:05 Minute(s) The scan has been done completely. 3565 Scanning directories 367261 Files were scanned 2 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 2 files were deleted 0 files were repaired 2 files were moved to quarantine 0 files were renamed 2 Files cannot be scanned 367257 Files not concerned 3130 Archives were scanned 4 Warnings 2 Notes
  6. spaversu
    Salut cher ami... Voilà anfin ce rapport : ComboFix 08-11-03.06 - julien 2008-11-04 15:53:16.6 - NTFSx86 MINIMAL Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.2832 [GMT 1:00] Lancé depuis: c:\documents and settings\julien\Bureau\ComboFix.exe Commutateurs utilisés :: c:\documents and settings\julien\Bureau\CFScript.txt FILE :: C:\1687864310 c:\windows\NV38563876.TMP c:\windows\system32\ksaf83hfd.dll . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\1687864310 c:\windows\system32\ksaf83hfd.dll . ((((((((((((((((((((((((((((( Fichiers créés du 2008-10-04 au 2008-11-04 )))))))))))))))))))))))))))))))))))) . 2008-11-04 15:13 . 2008-11-04 15:13 1,374 --a------ c:\windows\imsins.BAK 2008-11-03 23:58 . 2008-11-04 15:00 <REP> d-------- c:\documents and settings\julien\Application Data\uTorrent 2008-11-03 00:45 . 2008-11-03 00:45 0 --ah----- c:\windows\system32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf 2008-11-02 22:42 . 2008-11-02 22:42 <REP> d-------- c:\windows\SxsCaPendDel 2008-11-01 05:16 . 2008-11-01 05:16 <REP> d-------- c:\program files\Java 2008-11-01 05:16 . 2008-11-01 05:16 73,728 --a------ c:\windows\system32\javacpl.cpl 2008-11-01 05:09 . 2008-11-01 05:11 <REP> d-------- c:\documents and settings\julien\.SunDownloadManager 2008-10-30 19:51 . 2008-10-30 19:51 <REP> d-------- c:\program files\Microsoft Silverlight 2008-10-30 02:04 . 2008-11-03 16:58 2,920 --a------ c:\windows\system32\tmp.reg 2008-10-30 01:56 . 2008-10-30 02:00 <REP> d-------- C:\ToolBar SD 2008-10-29 21:19 . 2008-10-29 21:19 <REP> d-------- C:\rsit 2008-10-29 21:19 . 2008-10-29 21:19 <REP> d-------- c:\program files\trend micro 2008-10-29 02:59 . 2008-11-03 23:55 <REP> d-------- c:\documents and settings\julien\Application Data\Azureus 2008-10-29 02:59 . 2008-10-29 02:59 <REP> d-------- c:\documents and settings\All Users\Application Data\Azureus 2008-10-29 02:18 . 2008-10-29 02:18 <REP> d-------- c:\documents and settings\julien\LocalLow 2008-10-29 02:18 . 2008-10-29 02:18 <REP> d-------- c:\documents and settings\All Users\Application Data\TVU Networks 2008-10-29 00:07 . 2008-10-29 00:07 <REP> d-------- c:\documents and settings\julien\Application Data\Logitech 2008-10-29 00:07 . 2008-10-29 00:07 127,034 -r------- c:\windows\bwUnin-8.1.1.50-8876480SL.exe 2008-10-29 00:06 . 2007-11-15 10:06 301,656 --a------ c:\windows\system32\BtCoreIf.dll 2008-10-29 00:06 . 2007-11-15 10:07 170,512 --a------ c:\windows\system32\kemutb.dll 2008-10-29 00:06 . 2007-11-15 10:07 141,840 --a------ c:\windows\system32\KemUtil.dll 2008-10-29 00:06 . 2007-11-15 10:07 117,264 --a------ c:\windows\system32\KemWnd.dll 2008-10-29 00:06 . 2007-11-15 10:07 76,304 --a------ c:\windows\system32\KemXML.dll 2008-10-29 00:06 . 2008-10-29 00:06 0 --ah----- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2008-10-29 00:06 . 2008-10-29 00:06 0 --ah----- c:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf 2008-10-29 00:05 . 2008-10-29 00:07 <REP> d-------- c:\program files\Fichiers communs\Logishrd 2008-10-29 00:05 . 2008-10-29 00:08 <REP> d-------- c:\documents and settings\All Users\Application Data\Logitech 2008-10-29 00:05 . 2008-10-29 00:05 <REP> d-------- c:\documents and settings\All Users\Application Data\LogiShrd 2008-10-28 17:48 . 2008-10-28 17:48 <REP> d-------- c:\program files\Sun 2008-10-28 17:48 . 2008-11-01 05:16 410,976 --a------ c:\windows\system32\deploytk.dll 2008-10-27 16:08 . 2008-10-27 16:08 <REP> d-------- c:\program files\TechCity Solutions 2008-10-27 16:06 . 2008-10-27 16:08 <REP> d-------- c:\program files\Alice 2008-10-27 00:09 . 2008-10-29 14:22 <REP> d-------- c:\windows\system32\LogFiles 2008-10-26 23:52 . 2008-10-26 23:52 <REP> d--hs---- c:\windows\ftpcache 2008-10-26 23:51 . 2008-10-26 23:51 319 --a------ c:\windows\game.ini 2008-10-26 19:03 . 2008-10-26 19:03 <REP> d-------- C:\temp 2008-10-26 19:03 . 2008-10-26 19:03 <REP> d-------- c:\documents and settings\All Users\Application Data\Media Center Programs 2008-10-24 00:46 . 2008-10-24 00:46 717,296 --a------ c:\windows\system32\drivers\sptd.sys 2008-10-24 00:28 . 2008-10-24 00:28 <REP> d-------- c:\documents and settings\julien\Application Data\DAEMON Tools 2008-10-23 20:08 . 2008-10-15 17:35 337,408 -----c--- c:\windows\system32\dllcache\netapi32.dll 2008-10-21 15:16 . 2008-10-21 15:16 <REP> d-------- c:\program files\Fichiers communs\Adobe 2008-10-18 18:01 . 2008-10-30 15:08 <REP> d-------- c:\documents and settings\julien\Application Data\skypePM 2008-10-18 18:01 . 2008-10-18 18:01 56 --ah----- c:\windows\system32\ezsidmv.dat 2008-10-18 17:59 . 2008-10-18 17:59 <REP> d-------- c:\program files\Skype 2008-10-18 17:59 . 2008-10-18 17:59 <REP> d-------- c:\program files\Fichiers communs\Skype 2008-10-18 17:59 . 2008-10-30 15:35 <REP> d-------- c:\documents and settings\julien\Application Data\Skype 2008-10-18 17:59 . 2008-10-18 17:59 <REP> d-------- c:\documents and settings\All Users\Application Data\Skype 2008-10-18 17:48 . 2008-10-18 18:21 <REP> d-------- c:\documents and settings\All Users\Application Data\Creative 2008-10-17 18:09 . 2000-05-22 09:58 647,872 --------- c:\windows\system32\Mscomct2.ocx 2008-10-17 18:09 . 1999-10-10 18:00 41,984 --------- c:\windows\Ctregrun.exe 2008-10-17 18:09 . 2003-06-12 22:25 7,062 --a------ c:\windows\system32\audiopid.vxd 2008-10-17 18:08 . 2008-10-17 18:08 <REP> d-------- c:\documents and settings\julien\Application Data\Creative 2008-10-17 18:07 . 2006-08-30 06:10 158,456 --------- c:\windows\system32\pxwma.dll 2008-10-17 18:06 . 2008-10-17 18:06 <REP> d-------- c:\program files\Fichiers communs\muvee Technologies 2008-10-17 18:06 . 2008-10-17 18:06 <REP> d-------- c:\documents and settings\All Users\Application Data\muvee Technologies 2008-10-17 18:05 . 2008-10-17 18:05 <REP> d-------- c:\program files\SightSpeed 2008-10-17 18:05 . 2008-10-17 18:05 <REP> d-------- c:\documents and settings\julien\Application Data\InstallShield 2008-10-17 18:05 . 1998-11-13 12:16 308,224 --a------ c:\windows\IsUn040c.exe 2008-10-17 18:04 . 2003-03-19 06:19 1,060,864 --------- c:\windows\system32\MFC71.DLL 2008-10-17 18:04 . 2006-08-29 09:11 1,047,552 --------- c:\windows\system32\MFC71u.dll 2008-10-17 17:58 . 2008-04-14 03:34 92,160 --a------ c:\windows\system32\kswdmcap.ax 2008-10-17 17:58 . 2008-04-14 03:34 92,160 --a--c--- c:\windows\system32\dllcache\kswdmcap.ax 2008-10-17 17:58 . 2008-04-14 03:34 61,952 --a------ c:\windows\system32\kstvtune.ax 2008-10-17 17:58 . 2008-04-14 03:34 61,952 --a--c--- c:\windows\system32\dllcache\kstvtune.ax 2008-10-17 17:58 . 2008-04-14 03:33 54,784 --a------ c:\windows\system32\vfwwdm32.dll 2008-10-17 17:58 . 2008-04-14 03:33 54,784 --a--c--- c:\windows\system32\dllcache\vfwwdm32.dll 2008-10-17 17:58 . 2008-04-14 03:34 43,008 --a------ c:\windows\system32\ksxbar.ax 2008-10-17 17:58 . 2008-04-14 03:34 43,008 --a--c--- c:\windows\system32\dllcache\ksxbar.ax 2008-10-17 17:58 . 2008-04-14 03:34 20,992 --a------ c:\windows\system32\dshowext.ax 2008-10-17 17:58 . 2008-04-14 03:34 20,992 --a--c--- c:\windows\system32\dllcache\dshowext.ax 2008-10-15 20:00 . 2008-10-19 23:14 <REP> d-------- c:\program files\MSECACHE 2008-10-15 13:05 . 2008-08-14 14:23 2,191,232 -----c--- c:\windows\system32\dllcache\ntoskrnl.exe 2008-10-15 13:05 . 2008-08-14 14:23 2,147,328 -----c--- c:\windows\system32\dllcache\ntkrnlmp.exe 2008-10-15 13:05 . 2008-08-14 14:23 2,068,096 -----c--- c:\windows\system32\dllcache\ntkrnlpa.exe 2008-10-15 13:05 . 2008-08-14 14:23 2,025,984 -----c--- c:\windows\system32\dllcache\ntkrpamp.exe 2008-10-15 13:04 . 2008-09-15 16:26 1,846,528 -----c--- c:\windows\system32\dllcache\win32k.sys 2008-10-15 13:04 . 2008-09-08 11:41 333,824 -----c--- c:\windows\system32\dllcache\srv.sys 2008-10-15 02:40 . 2008-10-15 02:47 <REP> d-------- c:\program files\NOS 2008-10-15 02:40 . 2008-10-15 02:48 <REP> d-------- c:\documents and settings\All Users\Application Data\NOS 2008-10-13 17:45 . 2008-10-13 17:45 <REP> d-------- c:\program files\NVIDIA Corporation 2008-10-13 17:45 . 2008-10-13 17:45 1,024 --a------ C:\.rnd 2008-10-13 17:45 . 2008-10-13 17:45 25 --a------ c:\windows\FileName 2008-10-13 17:44 . 2005-09-28 10:10 466,944 --a------ c:\windows\system32\CapabilityTable.exe 2008-10-13 17:44 . 2006-04-14 15:00 208,896 --------- c:\windows\system32\nvuide.exe 2008-10-13 17:44 . 2006-04-14 15:01 35,840 -ra------ c:\windows\system32\NVCOI.DLL 2008-10-13 17:44 . 2006-02-20 14:00 1,570 --------- c:\windows\system32\nvide.nvu 2008-10-13 17:43 . 2008-10-13 17:43 <REP> d-------- c:\windows\NV38563876.TMP 2008-10-13 17:43 . 2006-02-17 12:28 305,152 -ra------ c:\windows\system32\drivers\nvnrm.sys 2008-10-13 17:43 . 2006-02-17 12:28 222,592 -ra------ c:\windows\system32\drivers\nvsnpu.sys 2008-10-13 17:43 . 2006-04-14 15:00 208,896 -ra------ c:\windows\system32\nvusmb.exe 2008-10-13 17:43 . 2006-04-14 15:00 208,896 -ra------ c:\windows\system32\nvunrm.exe 2008-10-13 17:43 . 2006-02-17 12:27 204,288 -ra------ c:\windows\system32\fdco1.dll 2008-10-13 17:43 . 2006-02-17 12:28 101,632 -ra------ c:\windows\system32\drivers\nvtcp.sys 2008-10-13 17:43 . 2006-02-17 12:28 34,176 -ra------ c:\windows\system32\drivers\NVENETFD.sys 2008-10-13 17:43 . 2006-02-17 12:28 13,056 -ra------ c:\windows\system32\drivers\nvnetbus.sys 2008-10-13 17:43 . 2006-02-17 12:26 9,728 -ra------ c:\windows\system32\bdco1.dll 2008-10-13 17:43 . 2005-12-08 13:06 3,657 --a------ c:\windows\system32\nvnrm.nvu 2008-10-13 17:43 . 2006-02-20 14:00 1,864 -ra------ c:\windows\system32\nvsmb.nvu 2008-10-13 17:40 . 2008-10-13 17:40 <REP> d-------- c:\program files\ASUS 2008-10-13 16:54 . 2008-10-13 16:57 <REP> d-------- c:\documents and settings\julien\Application Data\DeepBurner 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- c:\windows\system32\fr-fr 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- c:\windows\system32\fr 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- c:\windows\system32\bits 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- c:\windows\l2schemas 2008-10-13 14:32 . 2008-10-13 14:34 <REP> d-------- c:\windows\ServicePackFiles 2008-10-13 14:29 . 2008-10-13 14:29 <REP> d-------- c:\windows\EHome 2008-10-13 01:23 . 2008-10-13 01:23 <REP> dr-h----- c:\documents and settings\julien\Application Data\SecuROM 2008-10-13 01:23 . 2008-10-13 01:23 107,888 --a------ c:\windows\system32\CmdLineExt.dll 2008-10-13 00:59 . 2008-10-13 00:59 45 --a------ c:\windows\system32\initdebug.nfo 2008-10-12 21:50 . 2001-01-09 19:09 12,285 --a------ c:\windows\Cadx3.ini 2008-10-12 21:49 . 2008-10-12 21:49 <REP> d-------- c:\documents and settings\All Users\Application Data\nView_Profiles 2008-10-12 21:22 . 2008-10-12 21:22 <REP> dr------- c:\windows\AsDmiHtm 2008-10-12 20:27 . 2008-10-12 20:27 <REP> d-------- c:\documents and settings\julien\Application Data\dvdcss 2008-10-12 20:26 . 2008-10-12 20:27 <REP> d-------- c:\documents and settings\julien\Application Data\vlc 2008-10-11 16:39 . 2004-08-03 21:41 1,041,536 --------- c:\windows\system32\drivers\hsfdpsp2.sys 2008-10-11 10:37 . 2008-07-18 21:07 270,880 --a------ c:\windows\system32\mucltui.dll 2008-10-11 10:37 . 2008-07-18 21:07 210,976 --a------ c:\windows\system32\muweb.dll 2008-10-11 10:37 . 2008-07-18 21:07 29,728 --a------ c:\windows\system32\mucltui.dll.mui 2008-10-11 00:33 . 2008-10-11 00:41 <REP> d-------- c:\documents and settings\julien\Contacts 2008-10-11 00:32 . 2008-10-11 00:32 <REP> d----c--- c:\windows\system32\DRVSTORE 2008-10-11 00:24 . 2008-10-11 00:24 <REP> d-------- c:\documents and settings\julien\Application Data\MSNInstaller 2008-10-11 00:20 . 2008-10-11 00:26 <REP> d--hsc--- c:\program files\Fichiers communs\WindowsLiveInstaller 2008-10-11 00:19 . 2008-10-11 00:32 <REP> d-------- c:\program files\Windows Live 2008-10-11 00:19 . 2008-10-11 00:25 <REP> d-------- c:\documents and settings\All Users\Application Data\WLInstaller 2008-10-10 17:48 . 2008-10-10 17:48 13,646 --a------ c:\windows\system32\wpa.bak . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-10-28 23:07 --------- d--h--w c:\program files\InstallShield Installation Information 2008-10-10 22:09 --------- d-----w c:\program files\Fichiers communs\InstallShield 2008-10-09 17:53 --------- d-----w c:\program files\Realtek 2008-10-09 17:20 --------- d-----w c:\program files\microsoft frontpage 2008-10-09 17:19 --------- d-----w c:\program files\Services en ligne 2008-09-15 15:26 1,846,528 ----a-w c:\windows\system32\win32k.sys 2008-09-08 10:41 333,824 ----a-w c:\windows\system32\drivers\srv.sys 2008-08-20 05:10 670,208 ----a-w c:\windows\system32\wininet.dll 2008-08-14 13:23 2,147,328 ----a-w c:\windows\system32\ntoskrnl.exe 2008-08-14 13:23 2,025,984 ----a-w c:\windows\system32\ntkrnlpa.exe . ((((((((((((((((((((((((((((( snapshot@2008-11-01_15.10.22,64 ))))))))))))))))))))))))))))))))))))))))) . + 2005-10-20 19:02:28 163,328 ----a-w c:\windows\ERDNT\subs\ERDNT.EXE + 2007-09-21 02:10:20 20,240 ----a-w c:\windows\system32\drivers\L8042Kbd.sys + 2007-09-21 02:11:02 28,432 ----a-w c:\windows\system32\drivers\LUsbFilt.sys + 2006-06-29 07:05:44 26,112 ------w c:\windows\system32\idndl.dll + 2006-06-28 16:59:26 24,576 ------w c:\windows\system32\nlsdl.dll + 2006-06-29 07:05:44 23,552 ------w c:\windows\system32\normaliz.dll + 2008-11-04 14:55:58 16,384 ----atw c:\windows\temp\Perflib_Perfdata_61c.dat - 2008-10-31 22:44:56 1,500 ----a-w c:\windows\UI\BIOSCTL.DAT + 2008-11-04 14:55:58 1,500 ----a-w c:\windows\UI\BIOSCTL.DAT + 2006-12-01 21:56:00 96,256 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll + 2006-12-01 23:25:52 1,101,824 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll + 2006-12-01 23:25:56 1,093,120 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll + 2006-12-01 23:25:58 69,632 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll + 2006-12-01 23:26:00 57,856 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll + 2006-12-01 23:08:00 40,960 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll + 2006-12-01 23:08:00 45,056 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll + 2006-12-01 23:08:00 65,536 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll + 2006-12-01 23:08:00 57,344 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll + 2006-12-01 23:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll + 2006-12-01 23:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll + 2006-12-01 23:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll + 2006-12-01 23:08:00 49,152 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll + 2006-12-01 23:08:00 49,152 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll + 2006-12-01 23:46:44 65,536 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6c18549a\vcomp.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-28 68856] "DAEMON Tools Lite"="d:\program files\DAEMON Tools Lite\daemon.exe" [2008-08-08 490952] "LDM"="d:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2008-10-29 67128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Gainward"="c:\windows\TBPanel.exe" [2007-03-23 2173744] "JMB36X IDE Setup"="c:\windows\JM\JMInsIDE.exe" [2006-10-30 36864] "JMB36X Configure"="c:\windows\system32\JMRaidSetup.exe" [2006-10-30 1953792] "avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-06-12 266497] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-12 8429568] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-04-12 81920] "nTrayFw"="c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe" [2006-02-17 270336] "C0100Mon.exe"="c:\windows\C0100Mon.exe" [2007-04-29 32768] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-11-01 136600] "RTHDCPL"="RTHDCPL.EXE" [2006-11-14 c:\windows\RTHDCPL.exe] "nwiz"="nwiz.exe" [2007-04-12 c:\windows\system32\nwiz.exe] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-09-21 c:\windows\KHALMNPR.Exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Logitech Desktop Messenger.lnk - d:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-10-29 67128] Logitech SetPoint.lnk - d:\program files\Logitech\SetPoint\SetPoint.exe [2008-10-29 784912] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2007-11-15 10:10 72208 c:\program files\Fichiers communs\Logishrd\Bluetooth\LBTWLgn.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Reader Speed Launch.lnk backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AliceSAV] --a------ 2005-12-16 17:57 81408 c:\program files\TechCity Solutions\AliceSAV\AliceAgent.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a------ 2007-10-18 10:34 5724184 c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] -ra------ 2008-09-29 16:57 21755688 c:\program files\Skype\Phone\Skype.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel] -r------- 2006-05-16 11:04 2879488 c:\windows\SkyTel.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"= "d:\\Program Files\\THQ\\Gas Powered Games\\Supreme Commander - Forged Alliance\\bin\\ForgedAlliance.exe"= "d:\\Program Files\\THQ\\Gas Powered Games\\GPGNet\\GPG.Multiplayer.Client.exe"= "d:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"= "d:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"= "d:\\Program Files\\TVUPlayer\\TVUPlayer.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= "c:\\WINDOWS\\system32\\winver.exe"= "d:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Documents and Settings\\julien\\Bureau\\utorrent.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "6535:TCP"= 6535:TCP:emule1 "7312:UDP"= 7312:UDP:emule2 R2 JavaQuickStarterService;Java Quick Starter;c:\program files\Java\jre6\bin\jqs.exe [2008-11-01 152984] R2 NwSapAgent;Agent SAP;c:\windows\system32\svchost.exe [2008-04-14 14336] S1 61d90150;61d90150;c:\windows\system32\drivers\61d90150.sys [ ] S3 C0100Afx;Provides a software interface to control audio effects of VC0100 camera.;c:\windows\system32\Drivers\C0100Afx.sys [2007-06-07 141376] S3 C0100Aud;Provides a software interface to control noise cancellation of VC0100 camera.;c:\windows\system32\Drivers\C0100Aud.sys [2006-04-18 93440] S3 C0100Aul;Provides a software interface to control audio formats of VC0100 camera.;c:\windows\system32\Drivers\C0100Aul.sys [2007-04-19 5120] S3 C0100Dev;Creative Camera VC0100 Driver;c:\windows\system32\DRIVERS\C0100Dev.sys [2007-05-24 239904] S3 C0100Vfx;Creative Camera VC0100 Video VFX Driver;c:\windows\system32\DRIVERS\C0100Vfx.sys [2006-12-05 7168] . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-11-04 15:56:06 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . ------------------------ Autres processus actifs ------------------------ . c:\program files\Avira\AntiVir PersonalEdition Classic\sched.exe c:\windows\system32\rundll32.exe c:\program files\Avira\AntiVir PersonalEdition Classic\avguard.exe c:\program files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe c:\program files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe c:\program files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.exe c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe c:\windows\system32\nvsvc32.exe c:\windows\system32\wdfmgr.exe c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe . ************************************************************************** . Heure de fin: 2008-11-04 15:58:18 - La machine a redémarré [julien] ComboFix-quarantined-files.txt 2008-11-04 14:58:16 ComboFix2.txt 2008-11-03 19:21:13 ComboFix3.txt 2008-11-03 18:38:48 ComboFix4.txt 2008-11-03 16:07:20 ComboFix5.txt 2008-11-04 14:37:35 Avant-CF: 2,484,166,656 octets libres Après-CF: 2,470,031,360 octets libres 290 --- E O F --- 2008-10-24 02:02:21 Par contre, dois-je faire ce scan en ligne ? Internet explorer reste introuvable sur mon PC et son installation (depuis le site microsoft) ne fonctionne pas (" l'instalation ne s'est pas terminée correctement..."). Je vais essayer de trouver internet explorer 6 plutôt que le 7 (on sait jamais). Aucune possibilité sur Firefox ? A plus tard...
  7. spaversu
    Très bien, merci... A demain donc (et un peu plus tôt qu'aujourd'hui...)
  8. spaversu
    ComboFix 08-11-02.05 - julien 2008-11-03 20:18:14.4 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.2680 [GMT 1:00] Lancé depuis: c:\documents and settings\julien\Bureau\ComboFix.exe . ((((((((((((((((((((((((((((( Fichiers créés du 2008-10-03 au 2008-11-03 )))))))))))))))))))))))))))))))))))) . 2008-11-03 00:45 . 2008-11-03 00:45 0 --ah----- c:\windows\system32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf 2008-11-02 22:42 . 2008-11-02 22:42 <REP> d-------- c:\windows\SxsCaPendDel 2008-11-02 22:34 . 2008-11-03 20:20 105,858 --a------ c:\windows\system32\drivers\61d90150.sys 2008-11-02 22:34 . 2008-11-02 22:34 10,000 --a------ c:\windows\system32\ksaf83hfd.dll 2008-11-02 22:34 . 2008-11-02 22:34 0 --a------ C:\1687864310 2008-11-01 05:16 . 2008-11-01 05:16 <REP> d-------- c:\program files\Java 2008-11-01 05:16 . 2008-11-01 05:16 73,728 --a------ c:\windows\system32\javacpl.cpl 2008-11-01 05:09 . 2008-11-01 05:11 <REP> d-------- c:\documents and settings\julien\.SunDownloadManager 2008-10-30 19:51 . 2008-10-30 19:51 <REP> d-------- c:\program files\Microsoft Silverlight 2008-10-30 02:04 . 2008-11-03 16:58 2,920 --a------ c:\windows\system32\tmp.reg 2008-10-30 01:56 . 2008-10-30 02:00 <REP> d-------- C:\ToolBar SD 2008-10-29 21:19 . 2008-10-29 21:19 <REP> d-------- C:\rsit 2008-10-29 21:19 . 2008-10-29 21:19 <REP> d-------- c:\program files\trend micro 2008-10-29 02:59 . 2008-11-01 14:16 <REP> d-------- c:\documents and settings\julien\Application Data\Azureus 2008-10-29 02:59 . 2008-10-29 02:59 <REP> d-------- c:\documents and settings\All Users\Application Data\Azureus 2008-10-29 02:18 . 2008-10-29 02:18 <REP> d-------- c:\documents and settings\julien\LocalLow 2008-10-29 02:18 . 2008-10-29 02:18 <REP> d-------- c:\documents and settings\All Users\Application Data\TVU Networks 2008-10-29 00:07 . 2008-10-29 00:07 <REP> d-------- c:\documents and settings\julien\Application Data\Logitech 2008-10-29 00:07 . 2008-10-29 00:07 127,034 -r------- c:\windows\bwUnin-8.1.1.50-8876480SL.exe 2008-10-29 00:06 . 2007-11-15 10:06 301,656 --a------ c:\windows\system32\BtCoreIf.dll 2008-10-29 00:06 . 2007-11-15 10:07 170,512 --a------ c:\windows\system32\kemutb.dll 2008-10-29 00:06 . 2007-11-15 10:07 141,840 --a------ c:\windows\system32\KemUtil.dll 2008-10-29 00:06 . 2007-11-15 10:07 117,264 --a------ c:\windows\system32\KemWnd.dll 2008-10-29 00:06 . 2007-11-15 10:07 76,304 --a------ c:\windows\system32\KemXML.dll 2008-10-29 00:06 . 2008-10-29 00:06 0 --ah----- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2008-10-29 00:06 . 2008-10-29 00:06 0 --ah----- c:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf 2008-10-29 00:05 . 2008-10-29 00:07 <REP> d-------- c:\program files\Fichiers communs\Logishrd 2008-10-29 00:05 . 2008-10-29 00:08 <REP> d-------- c:\documents and settings\All Users\Application Data\Logitech 2008-10-29 00:05 . 2008-10-29 00:05 <REP> d-------- c:\documents and settings\All Users\Application Data\LogiShrd 2008-10-28 17:48 . 2008-10-28 17:48 <REP> d-------- c:\program files\Sun 2008-10-28 17:48 . 2008-11-01 05:16 410,976 --a------ c:\windows\system32\deploytk.dll 2008-10-27 16:08 . 2008-10-27 16:08 <REP> d-------- c:\program files\TechCity Solutions 2008-10-27 16:06 . 2008-10-27 16:08 <REP> d-------- c:\program files\Alice 2008-10-27 00:09 . 2008-10-29 14:22 <REP> d-------- c:\windows\system32\LogFiles 2008-10-26 23:52 . 2008-10-26 23:52 <REP> d--hs---- c:\windows\ftpcache 2008-10-26 23:51 . 2008-10-26 23:51 319 --a------ c:\windows\game.ini 2008-10-26 19:03 . 2008-10-26 19:03 <REP> d-------- C:\temp 2008-10-26 19:03 . 2008-10-26 19:03 <REP> d-------- c:\documents and settings\All Users\Application Data\Media Center Programs 2008-10-24 00:46 . 2008-10-24 00:46 717,296 --a------ c:\windows\system32\drivers\sptd.sys 2008-10-24 00:28 . 2008-10-24 00:28 <REP> d-------- c:\documents and settings\julien\Application Data\DAEMON Tools 2008-10-23 20:08 . 2008-10-15 17:35 337,408 -----c--- c:\windows\system32\dllcache\netapi32.dll 2008-10-21 15:16 . 2008-10-21 15:16 <REP> d-------- c:\program files\Fichiers communs\Adobe 2008-10-18 18:01 . 2008-10-30 15:08 <REP> d-------- c:\documents and settings\julien\Application Data\skypePM 2008-10-18 18:01 . 2008-10-18 18:01 56 --ah----- c:\windows\system32\ezsidmv.dat 2008-10-18 17:59 . 2008-10-18 17:59 <REP> d-------- c:\program files\Skype 2008-10-18 17:59 . 2008-10-18 17:59 <REP> d-------- c:\program files\Fichiers communs\Skype 2008-10-18 17:59 . 2008-10-30 15:35 <REP> d-------- c:\documents and settings\julien\Application Data\Skype 2008-10-18 17:59 . 2008-10-18 17:59 <REP> d-------- c:\documents and settings\All Users\Application Data\Skype 2008-10-18 17:48 . 2008-10-18 18:21 <REP> d-------- c:\documents and settings\All Users\Application Data\Creative 2008-10-17 18:09 . 2000-05-22 09:58 647,872 --------- c:\windows\system32\Mscomct2.ocx 2008-10-17 18:09 . 1999-10-10 18:00 41,984 --------- c:\windows\Ctregrun.exe 2008-10-17 18:09 . 2003-06-12 22:25 7,062 --a------ c:\windows\system32\audiopid.vxd 2008-10-17 18:08 . 2008-10-17 18:08 <REP> d-------- c:\documents and settings\julien\Application Data\Creative 2008-10-17 18:07 . 2006-08-30 06:10 158,456 --------- c:\windows\system32\pxwma.dll 2008-10-17 18:06 . 2008-10-17 18:06 <REP> d-------- c:\program files\Fichiers communs\muvee Technologies 2008-10-17 18:06 . 2008-10-17 18:06 <REP> d-------- c:\documents and settings\All Users\Application Data\muvee Technologies 2008-10-17 18:05 . 2008-10-17 18:05 <REP> d-------- c:\program files\SightSpeed 2008-10-17 18:05 . 2008-10-17 18:05 <REP> d-------- c:\documents and settings\julien\Application Data\InstallShield 2008-10-17 18:05 . 1998-11-13 12:16 308,224 --a------ c:\windows\IsUn040c.exe 2008-10-17 18:04 . 2003-03-19 06:19 1,060,864 --------- c:\windows\system32\MFC71.DLL 2008-10-17 18:04 . 2006-08-29 09:11 1,047,552 --------- c:\windows\system32\MFC71u.dll 2008-10-17 17:58 . 2008-04-14 03:34 92,160 --a------ c:\windows\system32\kswdmcap.ax 2008-10-17 17:58 . 2008-04-14 03:34 92,160 --a--c--- c:\windows\system32\dllcache\kswdmcap.ax 2008-10-17 17:58 . 2008-04-14 03:34 61,952 --a------ c:\windows\system32\kstvtune.ax 2008-10-17 17:58 . 2008-04-14 03:34 61,952 --a--c--- c:\windows\system32\dllcache\kstvtune.ax 2008-10-17 17:58 . 2008-04-14 03:33 54,784 --a------ c:\windows\system32\vfwwdm32.dll 2008-10-17 17:58 . 2008-04-14 03:33 54,784 --a--c--- c:\windows\system32\dllcache\vfwwdm32.dll 2008-10-17 17:58 . 2008-04-14 03:34 43,008 --a------ c:\windows\system32\ksxbar.ax 2008-10-17 17:58 . 2008-04-14 03:34 43,008 --a--c--- c:\windows\system32\dllcache\ksxbar.ax 2008-10-17 17:58 . 2008-04-14 03:34 20,992 --a------ c:\windows\system32\dshowext.ax 2008-10-17 17:58 . 2008-04-14 03:34 20,992 --a--c--- c:\windows\system32\dllcache\dshowext.ax 2008-10-15 20:00 . 2008-10-19 23:14 <REP> d-------- c:\program files\MSECACHE 2008-10-15 13:05 . 2008-08-14 14:23 2,191,232 -----c--- c:\windows\system32\dllcache\ntoskrnl.exe 2008-10-15 13:05 . 2008-08-14 14:23 2,147,328 -----c--- c:\windows\system32\dllcache\ntkrnlmp.exe 2008-10-15 13:05 . 2008-08-14 14:23 2,068,096 -----c--- c:\windows\system32\dllcache\ntkrnlpa.exe 2008-10-15 13:05 . 2008-08-14 14:23 2,025,984 -----c--- c:\windows\system32\dllcache\ntkrpamp.exe 2008-10-15 13:04 . 2008-09-15 16:26 1,846,528 -----c--- c:\windows\system32\dllcache\win32k.sys 2008-10-15 13:04 . 2008-09-08 11:41 333,824 -----c--- c:\windows\system32\dllcache\srv.sys 2008-10-15 02:40 . 2008-10-15 02:47 <REP> d-------- c:\program files\NOS 2008-10-15 02:40 . 2008-10-15 02:48 <REP> d-------- c:\documents and settings\All Users\Application Data\NOS 2008-10-13 17:45 . 2008-10-13 17:45 <REP> d-------- c:\program files\NVIDIA Corporation 2008-10-13 17:45 . 2008-10-13 17:45 1,024 --a------ C:\.rnd 2008-10-13 17:45 . 2008-10-13 17:45 25 --a------ c:\windows\FileName 2008-10-13 17:44 . 2005-09-28 10:10 466,944 --a------ c:\windows\system32\CapabilityTable.exe 2008-10-13 17:44 . 2006-04-14 15:00 208,896 --------- c:\windows\system32\nvuide.exe 2008-10-13 17:44 . 2006-04-14 15:01 35,840 -ra------ c:\windows\system32\NVCOI.DLL 2008-10-13 17:44 . 2006-02-20 14:00 1,570 --------- c:\windows\system32\nvide.nvu 2008-10-13 17:43 . 2008-10-13 17:43 <REP> d-------- c:\windows\NV38563876.TMP 2008-10-13 17:43 . 2006-02-17 12:28 305,152 -ra------ c:\windows\system32\drivers\nvnrm.sys 2008-10-13 17:43 . 2006-02-17 12:28 222,592 -ra------ c:\windows\system32\drivers\nvsnpu.sys 2008-10-13 17:43 . 2006-04-14 15:00 208,896 -ra------ c:\windows\system32\nvusmb.exe 2008-10-13 17:43 . 2006-04-14 15:00 208,896 -ra------ c:\windows\system32\nvunrm.exe 2008-10-13 17:43 . 2006-02-17 12:27 204,288 -ra------ c:\windows\system32\fdco1.dll 2008-10-13 17:43 . 2006-02-17 12:28 101,632 -ra------ c:\windows\system32\drivers\nvtcp.sys 2008-10-13 17:43 . 2006-02-17 12:28 34,176 -ra------ c:\windows\system32\drivers\NVENETFD.sys 2008-10-13 17:43 . 2006-02-17 12:28 13,056 -ra------ c:\windows\system32\drivers\nvnetbus.sys 2008-10-13 17:43 . 2006-02-17 12:26 9,728 -ra------ c:\windows\system32\bdco1.dll 2008-10-13 17:43 . 2005-12-08 13:06 3,657 --a------ c:\windows\system32\nvnrm.nvu 2008-10-13 17:43 . 2006-02-20 14:00 1,864 -ra------ c:\windows\system32\nvsmb.nvu 2008-10-13 17:40 . 2008-10-13 17:40 <REP> d-------- c:\program files\ASUS 2008-10-13 16:54 . 2008-10-13 16:57 <REP> d-------- c:\documents and settings\julien\Application Data\DeepBurner 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- c:\windows\system32\fr-fr 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- c:\windows\system32\fr 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- c:\windows\system32\bits 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- c:\windows\l2schemas 2008-10-13 14:32 . 2008-10-13 14:34 <REP> d-------- c:\windows\ServicePackFiles 2008-10-13 14:29 . 2008-10-13 14:29 <REP> d-------- c:\windows\EHome 2008-10-13 01:23 . 2008-10-13 01:23 <REP> dr-h----- c:\documents and settings\julien\Application Data\SecuROM 2008-10-13 01:23 . 2008-10-13 01:23 107,888 --a------ c:\windows\system32\CmdLineExt.dll 2008-10-13 00:59 . 2008-10-13 00:59 45 --a------ c:\windows\system32\initdebug.nfo 2008-10-12 21:50 . 2001-01-09 19:09 12,285 --a------ c:\windows\Cadx3.ini 2008-10-12 21:49 . 2008-10-12 21:49 <REP> d-------- c:\documents and settings\All Users\Application Data\nView_Profiles 2008-10-12 21:22 . 2008-10-12 21:22 <REP> dr------- c:\windows\AsDmiHtm 2008-10-12 20:27 . 2008-10-12 20:27 <REP> d-------- c:\documents and settings\julien\Application Data\dvdcss 2008-10-12 20:26 . 2008-10-12 20:27 <REP> d-------- c:\documents and settings\julien\Application Data\vlc 2008-10-11 16:39 . 2004-08-03 21:41 1,041,536 --------- c:\windows\system32\drivers\hsfdpsp2.sys 2008-10-11 10:37 . 2008-07-18 21:07 270,880 --a------ c:\windows\system32\mucltui.dll 2008-10-11 10:37 . 2008-07-18 21:07 210,976 --a------ c:\windows\system32\muweb.dll 2008-10-11 10:37 . 2008-07-18 21:07 29,728 --a------ c:\windows\system32\mucltui.dll.mui 2008-10-11 00:33 . 2008-10-11 00:41 <REP> d-------- c:\documents and settings\julien\Contacts 2008-10-11 00:32 . 2008-10-11 00:32 <REP> d----c--- c:\windows\system32\DRVSTORE 2008-10-11 00:24 . 2008-10-11 00:24 <REP> d-------- c:\documents and settings\julien\Application Data\MSNInstaller 2008-10-11 00:20 . 2008-10-11 00:26 <REP> d--hsc--- c:\program files\Fichiers communs\WindowsLiveInstaller 2008-10-11 00:19 . 2008-10-11 00:32 <REP> d-------- c:\program files\Windows Live 2008-10-11 00:19 . 2008-10-11 00:25 <REP> d-------- c:\documents and settings\All Users\Application Data\WLInstaller . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-10-28 23:07 --------- d--h--w c:\program files\InstallShield Installation Information 2008-10-10 22:09 --------- d-----w c:\program files\Fichiers communs\InstallShield 2008-10-09 17:53 --------- d-----w c:\program files\Realtek 2008-10-09 17:20 --------- d-----w c:\program files\microsoft frontpage 2008-10-09 17:19 --------- d-----w c:\program files\Services en ligne 2008-09-15 15:26 1,846,528 ----a-w c:\windows\system32\win32k.sys 2008-09-08 10:41 333,824 ----a-w c:\windows\system32\drivers\srv.sys 2008-08-20 05:10 670,208 ----a-w c:\windows\system32\wininet.dll 2008-08-14 13:23 2,147,328 ----a-w c:\windows\system32\ntoskrnl.exe 2008-08-14 13:23 2,025,984 ----a-w c:\windows\system32\ntkrnlpa.exe . ((((((((((((((((((((((((((((( snapshot@2008-11-01_15.10.22,64 ))))))))))))))))))))))))))))))))))))))))) . + 2005-10-20 19:02:28 163,328 ----a-w c:\windows\ERDNT\subs\ERDNT.EXE + 2007-09-21 02:10:20 20,240 ----a-w c:\windows\system32\drivers\L8042Kbd.sys + 2007-09-21 02:11:02 28,432 ----a-w c:\windows\system32\drivers\LUsbFilt.sys + 2008-11-03 18:44:17 16,384 ----atw c:\windows\temp\Perflib_Perfdata_3b4.dat - 2008-10-31 22:44:56 1,500 ----a-w c:\windows\UI\BIOSCTL.DAT + 2008-11-03 18:44:25 1,500 ----a-w c:\windows\UI\BIOSCTL.DAT + 2006-12-01 21:56:00 96,256 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll + 2006-12-01 23:25:52 1,101,824 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll + 2006-12-01 23:25:56 1,093,120 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll + 2006-12-01 23:25:58 69,632 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll + 2006-12-01 23:26:00 57,856 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll + 2006-12-01 23:08:00 40,960 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll + 2006-12-01 23:08:00 45,056 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll + 2006-12-01 23:08:00 65,536 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll + 2006-12-01 23:08:00 57,344 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll + 2006-12-01 23:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll + 2006-12-01 23:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll + 2006-12-01 23:08:00 61,440 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll + 2006-12-01 23:08:00 49,152 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll + 2006-12-01 23:08:00 49,152 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll + 2006-12-01 23:46:44 65,536 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6c18549a\vcomp.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-28 68856] "DAEMON Tools Lite"="d:\program files\DAEMON Tools Lite\daemon.exe" [2008-08-08 490952] "LDM"="d:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2008-10-29 67128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Gainward"="c:\windows\TBPanel.exe" [2007-03-23 2173744] "JMB36X IDE Setup"="c:\windows\JM\JMInsIDE.exe" [2006-10-30 36864] "JMB36X Configure"="c:\windows\system32\JMRaidSetup.exe" [2006-10-30 1953792] "avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-06-12 266497] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-12 8429568] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-04-12 81920] "nTrayFw"="c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe" [2006-02-17 270336] "C0100Mon.exe"="c:\windows\C0100Mon.exe" [2007-04-29 32768] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-11-01 136600] "RTHDCPL"="RTHDCPL.EXE" [2006-11-14 c:\windows\RTHDCPL.exe] "nwiz"="nwiz.exe" [2007-04-12 c:\windows\system32\nwiz.exe] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-09-21 c:\windows\KHALMNPR.Exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Logitech Desktop Messenger.lnk - d:\program files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-10-29 67128] Logitech SetPoint.lnk - d:\program files\Logitech\SetPoint\SetPoint.exe [2008-10-29 784912] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2007-11-15 10:10 72208 c:\program files\Fichiers communs\Logishrd\Bluetooth\LBTWLgn.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=zqesto.dll wnoanv.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Reader Speed Launch.lnk backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AliceSAV] --a------ 2005-12-16 17:57 81408 c:\program files\TechCity Solutions\AliceSAV\AliceAgent.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a------ 2007-10-18 10:34 5724184 c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] -ra------ 2008-09-29 16:57 21755688 c:\program files\Skype\Phone\Skype.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel] -r------- 2006-05-16 11:04 2879488 c:\windows\SkyTel.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"= "d:\\Program Files\\THQ\\Gas Powered Games\\Supreme Commander - Forged Alliance\\bin\\ForgedAlliance.exe"= "d:\\Program Files\\THQ\\Gas Powered Games\\GPGNet\\GPG.Multiplayer.Client.exe"= "d:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"= "d:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"= "d:\\Program Files\\TVUPlayer\\TVUPlayer.exe"= "d:\\Program Files\\Vuze\\Azureus.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= "c:\\WINDOWS\\system32\\winver.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "6535:TCP"= 6535:TCP:emule1 "7312:UDP"= 7312:UDP:emule2 R2 JavaQuickStarterService;Java Quick Starter;c:\program files\Java\jre6\bin\jqs.exe [2008-11-01 152984] R2 NwSapAgent;Agent SAP;c:\windows\system32\svchost.exe [2008-04-14 14336] S3 C0100Afx;Provides a software interface to control audio effects of VC0100 camera.;c:\windows\system32\Drivers\C0100Afx.sys [2007-06-07 141376] S3 C0100Aud;Provides a software interface to control noise cancellation of VC0100 camera.;c:\windows\system32\Drivers\C0100Aud.sys [2006-04-18 93440] S3 C0100Aul;Provides a software interface to control audio formats of VC0100 camera.;c:\windows\system32\Drivers\C0100Aul.sys [2007-04-19 5120] S3 C0100Dev;Creative Camera VC0100 Driver;c:\windows\system32\DRIVERS\C0100Dev.sys [2007-05-24 239904] S3 C0100Vfx;Creative Camera VC0100 Video VFX Driver;c:\windows\system32\DRIVERS\C0100Vfx.sys [2006-12-05 7168] . . ------- Examen supplémentaire ------- . FireFox -: Profile - c:\documents and settings\julien\Application Data\Mozilla\Firefox\Profiles\zdilmalx.default\ FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.fr FF -: plugin - c:\program files\Java\jre6\bin\new_plugin\npdeploytk.dll FF -: plugin - c:\program files\Java\jre6\bin\new_plugin\npjp2.dll FF -: plugin - c:\program files\Microsoft Silverlight\2.0.31005.0\npctrl.dll FF -: plugin - c:\program files\Mozilla Firefox\plugins\np_gp.dll FF -: plugin - d:\program files\Mozilla Firefox\plugins\npnul32.dll FF -: plugin - d:\program files\Mozilla Firefox\plugins\nppdf32.dll . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-11-03 20:20:00 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\61d90150] "ImagePath"="\SystemRoot\System32\drivers\61d90150.sys" . Heure de fin: 2008-11-03 20:21:12 ComboFix-quarantined-files.txt 2008-11-03 19:20:56 ComboFix2.txt 2008-11-03 18:38:48 ComboFix3.txt 2008-11-03 16:07:20 ComboFix4.txt 2008-11-01 14:11:03 Avant-CF: 12 012 032 000 octets libres Après-CF: 11,999,510,528 octets libres 274 --- E O F --- 2008-10-24 02:02:21
  9. spaversu
    Bonsoir, j'étais absent quelque temps... J'ai suivi la procédure Combofix mais je ne trouve pas le fichier après. Ni sur le bureau, ni dans le dossier C:/ combofix. Je poste quand même un rapport en relançant le logiciel (mais normalement cette fois ci):
  10. spaversu
    Salut.... voilà le rapport Combofix: ComboFix 08-10-31.02 - julien 2008-11-01 15:07:19.1 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.2614 [GMT 1:00] Lancé depuis: C:\Documents and Settings\julien\Bureau\ComboFix.exe Commutateurs utilisés :: C:\Documents and Settings\julien\Bureau\WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe * Un nouveau point de restauration a été créé . ((((((((((((((((((((((((((((( Fichiers créés du 2008-10-01 au 2008-11-01 )))))))))))))))))))))))))))))))))))) . 2008-11-01 05:16 . 2008-11-01 05:16 <REP> d-------- C:\Program Files\Java 2008-11-01 05:16 . 2008-11-01 05:16 73,728 --a------ C:\WINDOWS\system32\javacpl.cpl 2008-11-01 05:09 . 2008-11-01 05:11 <REP> d-------- C:\Documents and Settings\julien\.SunDownloadManager 2008-10-30 19:51 . 2008-10-30 19:51 <REP> d-------- C:\Program Files\Microsoft Silverlight 2008-10-30 02:04 . 2008-10-30 02:29 3,332 --a------ C:\WINDOWS\system32\tmp.reg 2008-10-30 02:03 . 2007-09-05 23:22 289,144 --a------ C:\WINDOWS\system32\VCCLSID.exe 2008-10-30 02:03 . 2006-04-27 16:49 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe 2008-10-30 02:03 . 2008-09-08 22:38 88,576 --a------ C:\WINDOWS\system32\AntiXPVSTFix.exe 2008-10-30 02:03 . 2008-10-01 14:51 87,552 --a------ C:\WINDOWS\system32\VACFix.exe 2008-10-30 02:03 . 2008-10-10 07:58 82,944 --a------ C:\WINDOWS\system32\o4Patch.exe 2008-10-30 02:03 . 2008-05-18 20:40 82,944 --a------ C:\WINDOWS\system32\IEDFix.exe 2008-10-30 02:03 . 2008-10-10 07:58 82,944 --a------ C:\WINDOWS\system32\IEDFix.C.exe 2008-10-30 02:03 . 2008-08-18 11:19 82,432 --a------ C:\WINDOWS\system32\404Fix.exe 2008-10-30 02:03 . 2003-06-05 20:13 53,248 --a------ C:\WINDOWS\system32\Process.exe 2008-10-30 02:03 . 2004-07-31 17:50 51,200 --a------ C:\WINDOWS\system32\dumphive.exe 2008-10-30 02:03 . 2007-10-03 23:36 25,600 --a------ C:\WINDOWS\system32\WS2Fix.exe 2008-10-30 01:56 . 2008-10-30 02:00 <REP> d-------- C:\ToolBar SD 2008-10-29 21:19 . 2008-10-29 21:19 <REP> d-------- C:\rsit 2008-10-29 21:19 . 2008-10-29 21:19 <REP> d-------- C:\Program Files\trend micro 2008-10-29 02:59 . 2008-11-01 14:16 <REP> d-------- C:\Documents and Settings\julien\Application Data\Azureus 2008-10-29 02:59 . 2008-10-29 02:59 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Azureus 2008-10-29 02:18 . 2008-10-29 02:18 <REP> d-------- C:\Documents and Settings\julien\LocalLow 2008-10-29 02:18 . 2008-10-29 02:18 <REP> d-------- C:\Documents and Settings\All Users\Application Data\TVU Networks 2008-10-29 00:07 . 2008-10-29 00:07 <REP> d-------- C:\Documents and Settings\julien\Application Data\Logitech 2008-10-29 00:07 . 2008-10-29 00:07 127,034 -r------- C:\WINDOWS\bwUnin-8.1.1.50-8876480SL.exe 2008-10-29 00:06 . 2007-11-15 10:06 301,656 --a------ C:\WINDOWS\system32\BtCoreIf.dll 2008-10-29 00:06 . 2007-11-15 10:07 170,512 --a------ C:\WINDOWS\system32\kemutb.dll 2008-10-29 00:06 . 2007-11-15 10:07 141,840 --a------ C:\WINDOWS\system32\KemUtil.dll 2008-10-29 00:06 . 2007-11-15 10:07 117,264 --a------ C:\WINDOWS\system32\KemWnd.dll 2008-10-29 00:06 . 2007-11-15 10:07 76,304 --a------ C:\WINDOWS\system32\KemXML.dll 2008-10-29 00:06 . 2008-10-29 00:06 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2008-10-29 00:06 . 2008-10-29 00:06 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf 2008-10-29 00:05 . 2008-10-29 00:07 <REP> d-------- C:\Program Files\Fichiers communs\Logishrd 2008-10-29 00:05 . 2008-10-29 00:08 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Logitech 2008-10-29 00:05 . 2008-10-29 00:05 <REP> d-------- C:\Documents and Settings\All Users\Application Data\LogiShrd 2008-10-28 17:48 . 2008-10-28 17:48 <REP> d-------- C:\Program Files\Sun 2008-10-28 17:48 . 2008-11-01 05:16 410,976 --a------ C:\WINDOWS\system32\deploytk.dll 2008-10-27 16:08 . 2008-10-27 16:08 <REP> d-------- C:\Program Files\TechCity Solutions 2008-10-27 16:06 . 2008-10-27 16:08 <REP> d-------- C:\Program Files\Alice 2008-10-27 00:09 . 2008-10-29 14:22 <REP> d-------- C:\WINDOWS\system32\LogFiles 2008-10-26 23:52 . 2008-10-26 23:52 <REP> d--hs---- C:\WINDOWS\ftpcache 2008-10-26 23:51 . 2008-10-26 23:51 319 --a------ C:\WINDOWS\game.ini 2008-10-26 19:03 . 2008-10-26 19:03 <REP> d-------- C:\temp 2008-10-26 19:03 . 2008-10-26 19:03 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Media Center Programs 2008-10-24 00:46 . 2008-10-24 00:46 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys 2008-10-24 00:28 . 2008-10-24 00:28 <REP> d-------- C:\Documents and Settings\julien\Application Data\DAEMON Tools 2008-10-23 20:08 . 2008-10-15 17:35 337,408 -----c--- C:\WINDOWS\system32\dllcache\netapi32.dll 2008-10-21 15:16 . 2008-10-21 15:16 <REP> d-------- C:\Program Files\Fichiers communs\Adobe 2008-10-18 18:01 . 2008-10-30 15:08 <REP> d-------- C:\Documents and Settings\julien\Application Data\skypePM 2008-10-18 18:01 . 2008-10-18 18:01 56 --ah----- C:\WINDOWS\system32\ezsidmv.dat 2008-10-18 17:59 . 2008-10-18 17:59 <REP> d-------- C:\Program Files\Skype 2008-10-18 17:59 . 2008-10-18 17:59 <REP> d-------- C:\Program Files\Fichiers communs\Skype 2008-10-18 17:59 . 2008-10-30 15:35 <REP> d-------- C:\Documents and Settings\julien\Application Data\Skype 2008-10-18 17:59 . 2008-10-18 17:59 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Skype 2008-10-18 17:48 . 2008-10-18 18:21 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Creative 2008-10-17 18:09 . 2000-05-22 09:58 647,872 --------- C:\WINDOWS\system32\Mscomct2.ocx 2008-10-17 18:09 . 1999-10-10 18:00 41,984 --------- C:\WINDOWS\Ctregrun.exe 2008-10-17 18:09 . 2003-06-12 22:25 7,062 --a------ C:\WINDOWS\system32\audiopid.vxd 2008-10-17 18:08 . 2008-10-17 18:08 <REP> d-------- C:\Documents and Settings\julien\Application Data\Creative 2008-10-17 18:07 . 2006-08-30 06:10 158,456 --------- C:\WINDOWS\system32\pxwma.dll 2008-10-17 18:06 . 2008-10-17 18:06 <REP> d-------- C:\Program Files\Fichiers communs\muvee Technologies 2008-10-17 18:06 . 2008-10-17 18:06 <REP> d-------- C:\Documents and Settings\All Users\Application Data\muvee Technologies 2008-10-17 18:05 . 2008-10-17 18:05 <REP> d-------- C:\Program Files\SightSpeed 2008-10-17 18:05 . 2008-10-17 18:05 <REP> d-------- C:\Documents and Settings\julien\Application Data\InstallShield 2008-10-17 18:05 . 1998-11-13 12:16 308,224 --a------ C:\WINDOWS\IsUn040c.exe 2008-10-17 18:04 . 2003-03-19 06:19 1,060,864 --------- C:\WINDOWS\system32\MFC71.DLL 2008-10-17 18:04 . 2006-08-29 09:11 1,047,552 --------- C:\WINDOWS\system32\MFC71u.dll 2008-10-17 17:58 . 2008-04-14 03:34 92,160 --a------ C:\WINDOWS\system32\kswdmcap.ax 2008-10-17 17:58 . 2008-04-14 03:34 92,160 --a--c--- C:\WINDOWS\system32\dllcache\kswdmcap.ax 2008-10-17 17:58 . 2008-04-14 03:34 61,952 --a------ C:\WINDOWS\system32\kstvtune.ax 2008-10-17 17:58 . 2008-04-14 03:34 61,952 --a--c--- C:\WINDOWS\system32\dllcache\kstvtune.ax 2008-10-17 17:58 . 2008-04-14 03:33 54,784 --a------ C:\WINDOWS\system32\vfwwdm32.dll 2008-10-17 17:58 . 2008-04-14 03:33 54,784 --a--c--- C:\WINDOWS\system32\dllcache\vfwwdm32.dll 2008-10-17 17:58 . 2008-04-14 03:34 43,008 --a------ C:\WINDOWS\system32\ksxbar.ax 2008-10-17 17:58 . 2008-04-14 03:34 43,008 --a--c--- C:\WINDOWS\system32\dllcache\ksxbar.ax 2008-10-17 17:58 . 2008-04-14 03:34 20,992 --a------ C:\WINDOWS\system32\dshowext.ax 2008-10-17 17:58 . 2008-04-14 03:34 20,992 --a--c--- C:\WINDOWS\system32\dllcache\dshowext.ax 2008-10-15 20:00 . 2008-10-19 23:14 <REP> d-------- C:\Program Files\MSECACHE 2008-10-15 13:05 . 2008-08-14 14:23 2,191,232 -----c--- C:\WINDOWS\system32\dllcache\ntoskrnl.exe 2008-10-15 13:05 . 2008-08-14 14:23 2,147,328 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlmp.exe 2008-10-15 13:05 . 2008-08-14 14:23 2,068,096 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlpa.exe 2008-10-15 13:05 . 2008-08-14 14:23 2,025,984 -----c--- C:\WINDOWS\system32\dllcache\ntkrpamp.exe 2008-10-15 13:04 . 2008-09-15 16:26 1,846,528 -----c--- C:\WINDOWS\system32\dllcache\win32k.sys 2008-10-15 13:04 . 2008-09-08 11:41 333,824 -----c--- C:\WINDOWS\system32\dllcache\srv.sys 2008-10-15 02:40 . 2008-10-15 02:47 <REP> d-------- C:\Program Files\NOS 2008-10-15 02:40 . 2008-10-15 02:48 <REP> d-------- C:\Documents and Settings\All Users\Application Data\NOS 2008-10-13 17:45 . 2008-10-13 17:45 <REP> d-------- C:\Program Files\NVIDIA Corporation 2008-10-13 17:45 . 2008-10-13 17:45 1,024 --a------ C:\.rnd 2008-10-13 17:45 . 2008-10-13 17:45 25 --a------ C:\WINDOWS\FileName 2008-10-13 17:44 . 2005-09-28 10:10 466,944 --a------ C:\WINDOWS\system32\CapabilityTable.exe 2008-10-13 17:44 . 2006-04-14 15:00 208,896 --------- C:\WINDOWS\system32\nvuide.exe 2008-10-13 17:44 . 2006-04-14 15:01 35,840 -ra------ C:\WINDOWS\system32\NVCOI.DLL 2008-10-13 17:44 . 2006-02-20 14:00 1,570 --------- C:\WINDOWS\system32\nvide.nvu 2008-10-13 17:43 . 2008-10-13 17:43 <REP> d-------- C:\WINDOWS\NV38563876.TMP 2008-10-13 17:43 . 2006-02-17 12:28 305,152 -ra------ C:\WINDOWS\system32\drivers\nvnrm.sys 2008-10-13 17:43 . 2006-02-17 12:28 222,592 -ra------ C:\WINDOWS\system32\drivers\nvsnpu.sys 2008-10-13 17:43 . 2006-04-14 15:00 208,896 -ra------ C:\WINDOWS\system32\nvusmb.exe 2008-10-13 17:43 . 2006-04-14 15:00 208,896 -ra------ C:\WINDOWS\system32\nvunrm.exe 2008-10-13 17:43 . 2006-02-17 12:27 204,288 -ra------ C:\WINDOWS\system32\fdco1.dll 2008-10-13 17:43 . 2006-02-17 12:28 101,632 -ra------ C:\WINDOWS\system32\drivers\nvtcp.sys 2008-10-13 17:43 . 2006-02-17 12:28 34,176 -ra------ C:\WINDOWS\system32\drivers\NVENETFD.sys 2008-10-13 17:43 . 2006-02-17 12:28 13,056 -ra------ C:\WINDOWS\system32\drivers\nvnetbus.sys 2008-10-13 17:43 . 2006-02-17 12:26 9,728 -ra------ C:\WINDOWS\system32\bdco1.dll 2008-10-13 17:43 . 2005-12-08 13:06 3,657 --a------ C:\WINDOWS\system32\nvnrm.nvu 2008-10-13 17:43 . 2006-02-20 14:00 1,864 -ra------ C:\WINDOWS\system32\nvsmb.nvu 2008-10-13 17:40 . 2008-10-13 17:40 <REP> d-------- C:\Program Files\ASUS 2008-10-13 16:54 . 2008-10-13 16:57 <REP> d-------- C:\Documents and Settings\julien\Application Data\DeepBurner 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- C:\WINDOWS\system32\fr-fr 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- C:\WINDOWS\system32\fr 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- C:\WINDOWS\system32\bits 2008-10-13 14:34 . 2008-10-13 14:34 <REP> d-------- C:\WINDOWS\l2schemas 2008-10-13 14:32 . 2008-10-13 14:34 <REP> d-------- C:\WINDOWS\ServicePackFiles 2008-10-13 14:29 . 2008-10-13 14:29 <REP> d-------- C:\WINDOWS\EHome 2008-10-13 01:23 . 2008-10-13 01:23 <REP> dr-h----- C:\Documents and Settings\julien\Application Data\SecuROM 2008-10-13 01:23 . 2008-10-13 01:23 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll 2008-10-13 00:59 . 2008-10-13 00:59 45 --a------ C:\WINDOWS\system32\initdebug.nfo 2008-10-12 21:50 . 2001-01-09 19:09 12,285 --a------ C:\WINDOWS\Cadx3.ini 2008-10-12 21:49 . 2008-10-12 21:49 <REP> d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles 2008-10-12 21:22 . 2008-10-12 21:22 <REP> dr------- C:\WINDOWS\AsDmiHtm 2008-10-12 20:27 . 2008-10-12 20:27 <REP> d-------- C:\Documents and Settings\julien\Application Data\dvdcss 2008-10-12 20:26 . 2008-10-12 20:27 <REP> d-------- C:\Documents and Settings\julien\Application Data\vlc 2008-10-11 16:39 . 2004-08-03 21:41 1,041,536 --------- C:\WINDOWS\system32\drivers\hsfdpsp2.sys 2008-10-11 10:37 . 2008-07-18 21:07 270,880 --a------ C:\WINDOWS\system32\mucltui.dll 2008-10-11 10:37 . 2008-07-18 21:07 210,976 --a------ C:\WINDOWS\system32\muweb.dll 2008-10-11 10:37 . 2008-07-18 21:07 29,728 --a------ C:\WINDOWS\system32\mucltui.dll.mui . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-10-28 23:07 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-10-10 22:09 --------- d-----w C:\Program Files\Fichiers communs\InstallShield 2008-10-09 17:53 --------- d-----w C:\Program Files\Realtek 2008-10-09 17:20 --------- d-----w C:\Program Files\microsoft frontpage 2008-10-09 17:19 --------- d-----w C:\Program Files\Services en ligne 2008-09-15 15:26 1,846,528 ----a-w C:\WINDOWS\system32\win32k.sys 2008-09-08 10:41 333,824 ----a-w C:\WINDOWS\system32\drivers\srv.sys 2008-08-20 05:10 670,208 ----a-w C:\WINDOWS\system32\wininet.dll 2008-08-14 13:23 2,147,328 ----a-w C:\WINDOWS\system32\ntoskrnl.exe 2008-08-14 13:23 2,025,984 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe 2008-08-01 09:35 207,872 ----a-w C:\WINDOWS\system32\fdco6.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360] "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-28 68856] "DAEMON Tools Lite"="D:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-08-08 490952] "LDM"="D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2008-10-29 67128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Gainward"="C:\WINDOWS\TBPanel.exe" [2007-03-23 2173744] "JMB36X IDE Setup"="C:\WINDOWS\JM\JMInsIDE.exe" [2006-10-30 36864] "JMB36X Configure"="C:\WINDOWS\system32\JMRaidSetup.exe" [2006-10-30 1953792] "avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-06-12 266497] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-04-12 8429568] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-04-12 81920] "nTrayFw"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe" [2006-02-17 270336] "C0100Mon.exe"="C:\WINDOWS\C0100Mon.exe" [2007-04-29 32768] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" [2008-11-01 136600] "RTHDCPL"="RTHDCPL.EXE" [2006-11-14 C:\WINDOWS\RTHDCPL.exe] "nwiz"="nwiz.exe" [2007-04-12 C:\WINDOWS\system32\nwiz.exe] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-09-21 C:\WINDOWS\KHALMNPR.Exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 15360] C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Logitech Desktop Messenger.lnk - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-10-29 67128] Logitech SetPoint.lnk - D:\Program Files\Logitech\SetPoint\SetPoint.exe [2008-10-29 784912] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2007-11-15 10:10 72208 c:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTWLgn.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk] path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Reader Speed Launch.lnk backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AliceSAV] --a------ 2005-12-16 17:57 81408 C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a------ 2007-10-18 10:34 5724184 C:\Program Files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] -ra------ 2008-09-29 16:57 21755688 C:\Program Files\Skype\Phone\Skype.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel] -r------- 2006-05-16 11:04 2879488 C:\WINDOWS\SkyTel.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"= "D:\\Program Files\\THQ\\Gas Powered Games\\Supreme Commander - Forged Alliance\\bin\\ForgedAlliance.exe"= "D:\\Program Files\\THQ\\Gas Powered Games\\GPGNet\\GPG.Multiplayer.Client.exe"= "D:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"= "D:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"= "D:\\Program Files\\TVUPlayer\\TVUPlayer.exe"= "D:\\Program Files\\Vuze\\Azureus.exe"= "C:\\Program Files\\Skype\\Phone\\Skype.exe"= "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "6535:TCP"= 6535:TCP:emule1 "7312:UDP"= 7312:UDP:emule2 R2 JavaQuickStarterService;Java Quick Starter;C:\Program Files\Java\jre6\bin\jqs.exe [2008-11-01 152984] R2 NwSapAgent;Agent SAP;C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R3 C0100Afx;Provides a software interface to control audio effects of VC0100 camera.;C:\WINDOWS\system32\Drivers\C0100Afx.sys [2007-06-07 141376] R3 C0100Aud;Provides a software interface to control noise cancellation of VC0100 camera.;C:\WINDOWS\system32\Drivers\C0100Aud.sys [2006-04-18 93440] R3 C0100Aul;Provides a software interface to control audio formats of VC0100 camera.;C:\WINDOWS\system32\Drivers\C0100Aul.sys [2007-04-19 5120] R3 C0100Dev;Creative Camera VC0100 Driver;C:\WINDOWS\system32\DRIVERS\C0100Dev.sys [2007-05-24 239904] R3 C0100Vfx;Creative Camera VC0100 Video VFX Driver;C:\WINDOWS\system32\DRIVERS\C0100Vfx.sys [2006-12-05 7168] *Newly Created Service* - JAVAQUICKSTARTERSERVICE *Newly Created Service* - PROCEXP90 . - - - - ORPHELINS SUPPRIMES - - - - MSConfigStartUp-Creative Live! Cam Manager - C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe . ------- Examen supplémentaire ------- . FireFox -: Profile - C:\Documents and Settings\julien\Application Data\Mozilla\Firefox\Profiles\zdilmalx.default\ FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.fr FF -: plugin - C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll FF -: plugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll FF -: plugin - C:\Program Files\Microsoft Silverlight\2.0.31005.0\npctrl.dll FF -: plugin - C:\Program Files\Mozilla Firefox\plugins\np_gp.dll FF -: plugin - D:\Program Files\Mozilla Firefox\plugins\npnul32.dll FF -: plugin - D:\Program Files\Mozilla Firefox\plugins\nppdf32.dll . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-11-01 15:09:40 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . Heure de fin: 2008-11-01 15:11:02 ComboFix-quarantined-files.txt 2008-11-01 14:10:45 Avant-CF: 12 217 561 088 octets libres Après-CF: 12,281,413,632 octets libres WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP dition familiale" /noexecute=optin /fastdetect 256 --- E O F --- 2008-10-24 02:02:21 J'espere que ça nous en dira plus.. à bientôt.
  11. spaversu
    Merci Pear... Bon ok pour le disque dur qui s'est transformé en locomotive, mais mon problème persiste. Les rapport des differents logiciels ont ils révélés un problème ? Peut-être est ce le registre ? En fait Antivir a finalement pu telecharger ses mises à jour, il semble même que ce soit fréquent ( à en croire certains forums )et que la concomittence avec d'autres problèmes était due au hasard. Pourrait il y avoir un rapport avec Emule qui systématiquement se bloque (freeze) et m'oblige même à relancer ma connection internet ? J'ai, il y a quelque temps ouvert 2 nouveaux ports pour son fonctionnement à travers la config. avancée de mon F.A.I et celle de mon firewall... D'autre part j'ai remarqué que Vuze (logiciel torrent) ne fonctionne pas correctement et que Skype bien que "connecté" ne me permet pas de communiquer avec mes contacts (ils et moi apparaissons offline quoique j'y fasse. Ah, bien sûr j'ai déjà désinstallé puis réinstallé mon modem/kit de connection. Enfin bon, si quelqu'un avait une idée pour mon problème... ça serait très sympa...
  12. spaversu
    Rapport après nettoyage : SmitFraudFix v2.368 Rapport fait à 2:29:47,67, 30/10/2008 Executé à partir de C:\Documents and Settings\julien\Bureau\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode sans echec »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Arret des processus »»»»»»»»»»»»»»»»»»»»»»»» hosts 127.0.0.1 localhost »»»»»»»»»»»»»»»»»»»»»»»» VACFix VACFix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix S!Ri's WS2Fix: LSP not Found. »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix GenericRenosFix by S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés »»»»»»»»»»»»»»»»»»»»»»»» IEDFix IEDFix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» 404Fix 404Fix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» AntiXPVSTFix »»»»»»»»»»»»»»»»»»»»»»»» RK »»»»»»»»»»»»»»»»»»»»»»»» DNS HKLM\SYSTEM\CCS\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CS1\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CS3\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 »»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "System"="" »»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre Nettoyage terminé. »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Fin P.S : Lors de l'opération nettoyage en mode sans échec, le nettoyage de disque par windows s'est lancé... De plus mon disque dur fait désormais un sacré bruit, comme s'il bloquait ou que pris d'une fièvre soudaine il se tapait la tête contre la paroi de la tour... En tout cas merci, j'espère à demain pour la solution!
  13. spaversu
    rapport Smitfraudfix: SmitFraudFix v2.368 Rapport fait à 2:04:47,57, 30/10/2008 Executé à partir de C:\Documents and Settings\julien\Bureau\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Le type du système de fichiers est NTFS Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» Process C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\TBPanel.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\C0100Mon.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe D:\Program Files\DAEMON Tools Lite\daemon.exe D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe D:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\NOTEPAD.EXE D:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\cmd.exe »»»»»»»»»»»»»»»»»»»»»»»» hosts »»»»»»»»»»»»»»»»»»»»»»»» C:\ »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\julien »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\julien\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\julien\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Ma page d'accueil" »»»»»»»»»»»»»»»»»»»»»»»» o4Patch !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! o4Patch Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» IEDFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! IEDFix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» VACFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! VACFix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» 404Fix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! 404Fix Credits: Malware Analysis & Diagnostic Code: S!Ri »»»»»»»»»»»»»»»»»»»»»»»» AntiXPVSTFix !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="" »»»»»»»»»»»»»»»»»»»»»»»» Winlogon !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "Userinit"="C:\\WINDOWS\\system32\\userinit.exe," "System"="" »»»»»»»»»»»»»»»»»»»»»»»» RK »»»»»»»»»»»»»»»»»»»»»»»» DNS Description: NVIDIA nForce Networking Controller - Miniport d'ordonnancement de paquets DNS Server Search Order: 192.168.1.1 HKLM\SYSTEM\CCS\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CS1\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CS3\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1 »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin
  14. spaversu
    Et le deuxième rapport: -----------\\ ToolBar S&D 1.2.4 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : Intel® Core2 CPU 6600 @ 2.40GHz ) BIOS : Phoenix - AwardBIOS v6.00PG USER : julien ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated) Firewall : ActiveArmor Firewall 1.0 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:24 Go (Free:12 Go) D:\ (Local Disk) - NTFS - Total:208 Go (Free:63 Go) E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go) F:\ (CD or DVD) G:\ (CD or DVD) "C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 ) Option : [2] ( 30/10/2008| 2:00 ) -----------\\ SUPPRESSION Supprime! - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll Supprime! - C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT Supprime! - C:\Program Files\DAEMON Tools Toolbar\Resources Supprime! - C:\Program Files\DAEMON Tools Toolbar\uninst.exe Supprime! - C:\Program Files\DAEMON Tools Toolbar -----------\\ Recherche de Fichiers / Dossiers ... -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://www.aliceadsl.fr"'>http://www.aliceadsl.fr" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie"'>http://www.google.com/ie" "First Home Page"="http://www.aliceadsl.fr" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" "Default_Search_URL"="http://www.google.com/ie" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Start Page"="http://www.msn.com/" --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! 1 - "C:\ToolBar SD\TB_1.txt" - 30/10/2008| 1:57 - Option : [1] 2 - "C:\ToolBar SD\TB_2.txt" - 30/10/2008| 2:00 - Option : [2] -----------\\ Fin du rapport a 2:00:43,35
  15. spaversu
    Ok voici la suite : -----------\\ ToolBar S&D 1.2.4 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : Intel® Core2 CPU 6600 @ 2.40GHz ) BIOS : Phoenix - AwardBIOS v6.00PG USER : julien ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated) Firewall : ActiveArmor Firewall 1.0 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:24 Go (Free:12 Go) D:\ (Local Disk) - NTFS - Total:208 Go (Free:63 Go) E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go) F:\ (CD or DVD) G:\ (CD or DVD) "C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 ) Option : [1] ( 30/10/2008| 1:57 ) -----------\\ Recherche de Fichiers / Dossiers ... C:\Program Files\DAEMON Tools Toolbar C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT C:\Program Files\DAEMON Tools Toolbar\Resources C:\Program Files\DAEMON Tools Toolbar\uninst.exe -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://www.aliceadsl.fr"'>http://www.aliceadsl.fr" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie"'>http://www.google.com/ie" "First Home Page"="http://www.aliceadsl.fr" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" "Default_Search_URL"="http://www.google.com/ie" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home" --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! 1 - "C:\ToolBar SD\TB_1.txt" - 30/10/2008| 1:57 - Option : [1] -----------\\ Fin du rapport a 1:57:53,56
  16. spaversu
    ainsi que l'info test: info.txt logfile of random's system information tool 1.04 2008-10-29 21:19:27 ======Uninstall list====== -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{15B3F9F8-4CF9-452A-9AF2-AA8553765DA7}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2C81600D-D6C7-4687-9362-DD4A78B3483E}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{513D9FB1-27A2-44E4-8F2D-77A6737921A5}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5549DC52-211C-44BE-8347-0C22812DEB31}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BE926E5-66F4-4166-A5E5-E14D7A165BBD}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\SETUP.EXE" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9814AC8C-FDA8-431F-A6EB-D7294E2D362E}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001} Advanced Audio FX Engine-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c /remove Advanced Video FX Engine-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c /remove Alice Auto-diagnostic-->C:\Program Files\TechCity Solutions\AliceSAV\uninstall.exe Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986} ASUSUpdate-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\setup.exe" -l0x40c Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE Calendrier de photos Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2C81600D-D6C7-4687-9362-DD4A78B3483E}\setup.exe" -l0x40c /remove Call of Duty® 4 - Modern Warfare-->C:\Program Files\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe -runfromtemp -l0x040c CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A} Creative Live! Cam Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BE926E5-66F4-4166-A5E5-E14D7A165BBD}\setup.exe" -l0x40c /remove Creative Live! Cam Doodling-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5549DC52-211C-44BE-8347-0C22812DEB31}\setup.exe" -l0x40c /remove Creative Live! Cam FX Creator-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9814AC8C-FDA8-431F-A6EB-D7294E2D362E}\setup.exe" -l0x40c /remove Creative Live! Cam Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{15B3F9F8-4CF9-452A-9AF2-AA8553765DA7}\setup.exe" -l0x40c /remove Creative Live! Cam Optia AF Driver (1.02.02.0612) -->C:\WINDOWS\CtDrvIns.exe -uninstall -script VC0100.uns -plugin C0100Pin.dll -pluginres CtCamPin.crl Creative Software AutoUpdate-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\SETUP.EXE" -l0x40c /remove Creative System Information-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x40c /remove DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe DeepBurner v1.9.0.228-->"D:\Program Files\Astonsoft\DeepBurner\Uninstall.exe" "D:\Program Files\Astonsoft\DeepBurner\install.log" -u eMule-->"D:\Program Files\eMule\Uninstall.exe" erLT-->MsiExec.exe /I{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C} EXPERTool-->RunDll32 Setupapi.dll,InstallHinfSection TB.Remove 4 TBNT4.inf Gestionnaire de photos Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{513D9FB1-27A2-44E4-8F2D-77A6737921A5}\setup.exe" -l0x40c /remove Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29} Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll" GPGNet-->MsiExec.exe /I{C194D333-B84A-4BB7-B35E-060732D98DC4} HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall Java 6 Update 10-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF} JMB36X Raid Configurer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}\setup.exe" -l0x40c -removeonly KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355} Kit de Connexion Alice ADSL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A0221AD-D30B-4320-8F9B-1D0F0E6C6843}\setup.exe" -l0x40c ControlPanel Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\SETUP.EXE" -l0x40c UNINSTALL Logitech SetPoint-->C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe -runfromtemp -l0x040c -removeonly Manuel d'utilisation de Creative Live! Cam Optia AF (Français)-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Creative Live! Cam Optia AF\Manuel d'utilisation de Creative Live! Cam Optia AF\French\CTManual.isu" Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe" Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7} Microsoft Visual J# 2.0 Redistributable Package-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.exe muveeNow 2.0 - Creative-->C:\Program Files\InstallShield Installation Information\{B0F64C44-DC77-497D-9A27-C0F5BAB12493}\setup.exe -runfromtemp -l0x040c -removeonly NVIDIA Drivers-->C:\WINDOWS\system32\nvuide.exe UninstallGUI NVIDIA ForceWare Network Access Manager-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{1F6423DE-7959-4178-80E0-023C7EAA5347} /l1036 OpenOffice.org Installer 1.0-->MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74} Pro Evolution Soccer 2008-->C:\Program Files\InstallShield Installation Information\{2FDFD600-7338-4738-90D5-FC4ACA08DC36}\setup.exe -runfromtemp -l0x040c Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly SightSpeed (remove only)-->"C:\Program Files\SightSpeed\uninst.exe" Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82} SpeedFan (remove only)-->"D:\Program Files\SpeedFan\uninstall.exe" Supreme Commander - Forged Alliance-->C:\Program Files\InstallShield Installation Information\{31D95937-B237-405D-920C-A3EF4E482395}\setup.exe -runfromtemp -l0x040c -removeonly TVUPlayer 2.4.0.1-->D:\Program Files\TVUPlayer\uninst.exe VLC media player 0.9.4-->D:\Program Files\VideoLAN\VLC\uninstall.exe Vuze-->D:\Program Files\Vuze\uninstall.exe Winamp-->"D:\Program Files\Winamp\UninstWA.exe" Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390} Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65} Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" ======Security center information====== AV: Avira AntiVir PersonalEdition (outdated) FW: ActiveArmor Firewall ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 6, GenuineIntel "PROCESSOR_REVISION"=0f06 "NUMBER_OF_PROCESSORS"=2 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- voilà, j'espere que ça nous en dira plus...
  17. spaversu
    Merci... Voici le premier: Logfile of random's system information tool 1.04 (written by random/random) Run by julien at 2008-10-29 21:19:00 Microsoft Windows XP Édition familiale Service Pack 3 System drive C: has 13 GB (52%) free of 25 GB Total RAM: 3070 MB (83% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:19:26, on 29/10/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\TBPanel.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\C0100Mon.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe D:\Program Files\DAEMON Tools Lite\daemon.exe D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe D:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe C:\WINDOWS\system32\wscntfy.exe D:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\julien\Bureau\RSIT.exe C:\Program Files\trend micro\julien.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aliceadsl.fr R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.aliceadsl.fr R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll O4 - HKLM\..\Run: [Gainward] C:\WINDOWS\TBPanel.exe /A O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exe O4 - HKLM\..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidSetup.exe boot O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [nTrayFw] C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe O4 - HKLM\..\Run: [C0100Mon.exe] C:\WINDOWS\C0100Mon.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun O4 - HKCU\..\Run: [LDM] D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - Global Startup: Logitech SetPoint.lnk = D:\Program Files\Logitech\SetPoint\SetPoint.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 7951 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-10-29 320920] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2008-10-10 2436160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll [2008-10-28 737776] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-10-29 34816] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-10-29 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2008-10-10 2436160] {32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2008-10-14 863688] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Gainward"=C:\WINDOWS\TBPanel.exe [2007-03-23 2173744] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-11-14 16270848] "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632] "JMB36X IDE Setup"=C:\WINDOWS\JM\JMInsIDE.exe [2006-10-30 36864] "JMB36X Configure"=C:\WINDOWS\system32\JMRaidSetup.exe [2006-10-30 1953792] "avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-04-12 8429568] "nwiz"=nwiz.exe /install [] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2007-04-12 81920] "KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k [] "nTrayFw"=C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe [2006-02-17 270336] "C0100Mon.exe"=C:\WINDOWS\C0100Mon.exe [2007-04-29 32768] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672] "Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2007-09-21 55824] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-10-29 136600] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-10-28 68856] "DAEMON Tools Lite"=D:\Program Files\DAEMON Tools Lite\daemon.exe [2008-08-08 490952] "LDM"=D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-10-29 67128] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AliceSAV] C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe [2005-12-16 81408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Live! Cam Manager] C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] C:\Program Files\Skype\Phone\Skype.exe [2008-09-29 21755688] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel] C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk] C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE [] C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Logitech Desktop Messenger.lnk - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe Logitech SetPoint.lnk - D:\Program Files\Logitech\SetPoint\SetPoint.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn] c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2007-11-15 72208] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server" "D:\Program Files\eMule\emule.exe"="D:\Program Files\eMule\emule.exe:*:Enabled:eMule" "C:\WINDOWS\system32\drivers\svchost.exe"="C:\WINDOWS\system32\drivers\svchost.exe:*:Enabled:svchost" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "D:\Program Files\THQ\Gas Powered Games\Supreme Commander - Forged Alliance\bin\ForgedAlliance.exe"="D:\Program Files\THQ\Gas Powered Games\Supreme Commander - Forged Alliance\bin\ForgedAlliance.exe:*:Enabled:Supreme Commander - Forged Alliance" "D:\Program Files\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe"="D:\Program Files\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe:*:Enabled:GPGNet - Supreme Commander - Forged Alliance" "D:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="D:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty® 4 - Modern Warfare" "D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger" "D:\Program Files\TVUPlayer\TVUPlayer.exe"="D:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component" "D:\Program Files\Vuze\Azureus.exe"="D:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger" ======List of files/folders created in the last 1 months====== 2008-10-29 21:19:01 ----D---- C:\Program Files\trend micro 2008-10-29 21:19:00 ----D---- C:\rsit 2008-10-29 15:06:13 ----A---- C:\WINDOWS\SchedLgU.Txt 2008-10-29 02:59:34 ----D---- C:\Documents and Settings\All Users\Application Data\Azureus 2008-10-29 02:59:31 ----D---- C:\Documents and Settings\julien\Application Data\Azureus 2008-10-29 02:55:38 ----A---- C:\WINDOWS\system32\javaws.exe 2008-10-29 02:55:38 ----A---- C:\WINDOWS\system32\javaw.exe 2008-10-29 02:55:38 ----A---- C:\WINDOWS\system32\java.exe 2008-10-29 02:55:30 ----D---- C:\Program Files\Java 2008-10-29 02:18:14 ----D---- C:\Documents and Settings\All Users\Application Data\TVU Networks 2008-10-29 00:07:37 ----D---- C:\Documents and Settings\julien\Application Data\Logitech 2008-10-29 00:07:08 ----R---- C:\WINDOWS\bwUnin-8.1.1.50-8876480SL.exe 2008-10-29 00:06:32 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$ 2008-10-29 00:06:07 ----A---- C:\WINDOWS\system32\BtCoreIf.dll 2008-10-29 00:06:04 ----A---- C:\WINDOWS\system32\KemXML.dll 2008-10-29 00:06:04 ----A---- C:\WINDOWS\system32\KemWnd.dll 2008-10-29 00:06:04 ----A---- C:\WINDOWS\system32\KemUtil.dll 2008-10-29 00:06:04 ----A---- C:\WINDOWS\system32\kemutb.dll 2008-10-29 00:05:54 ----D---- C:\Documents and Settings\All Users\Application Data\Logitech 2008-10-29 00:05:52 ----D---- C:\Program Files\Fichiers communs\Logishrd 2008-10-29 00:05:36 ----D---- C:\Documents and Settings\All Users\Application Data\LogiShrd 2008-10-28 17:48:57 ----D---- C:\Program Files\Sun 2008-10-28 17:48:36 ----A---- C:\WINDOWS\system32\deploytk.dll 2008-10-28 15:53:47 ----D---- C:\Documents and Settings\julien\Application Data\Sun 2008-10-27 16:08:43 ----D---- C:\Program Files\TechCity Solutions 2008-10-27 16:06:38 ----D---- C:\Program Files\Alice 2008-10-27 00:09:12 ----D---- C:\WINDOWS\system32\LogFiles 2008-10-26 23:52:27 ----SHD---- C:\WINDOWS\ftpcache 2008-10-26 23:51:44 ----A---- C:\WINDOWS\game.ini 2008-10-26 19:03:22 ----D---- C:\temp 2008-10-26 19:03:07 ----D---- C:\Documents and Settings\All Users\Application Data\Media Center Programs 2008-10-26 18:50:53 ----RSD---- C:\WINDOWS\assembly 2008-10-26 18:50:38 ----D---- C:\WINDOWS\Microsoft.NET 2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\xactengine2_9.dll 2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\xactengine2_8.dll 2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\x3daudio1_2.dll 2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\d3dx9_35.dll 2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\d3dx10_35.dll 2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\d3dx10_34.dll 2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll 2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll 2008-10-26 18:49:16 ----A---- C:\WINDOWS\system32\d3dx9_34.dll 2008-10-26 18:49:13 ----A---- C:\WINDOWS\system32\xactengine2_7.dll 2008-10-26 18:49:10 ----A---- C:\WINDOWS\system32\d3dx10_33.dll 2008-10-26 18:49:10 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll 2008-10-26 18:49:09 ----A---- C:\WINDOWS\system32\d3dx9_33.dll 2008-10-24 00:57:42 ----D---- C:\Program Files\Mozilla Firefox 2008-10-24 00:57:41 ----D---- C:\Program Files\DAEMON Tools Toolbar 2008-10-24 00:28:22 ----D---- C:\Documents and Settings\julien\Application Data\DAEMON Tools 2008-10-21 15:16:30 ----D---- C:\Program Files\Fichiers communs\Adobe 2008-10-21 15:16:30 ----D---- C:\Program Files\Adobe 2008-10-18 18:01:55 ----D---- C:\Documents and Settings\julien\Application Data\skypePM 2008-10-18 17:59:20 ----D---- C:\Documents and Settings\julien\Application Data\Skype 2008-10-18 17:59:11 ----D---- C:\Program Files\Skype 2008-10-18 17:59:11 ----D---- C:\Program Files\Fichiers communs\Skype 2008-10-18 17:59:06 ----D---- C:\Documents and Settings\All Users\Application Data\Skype 2008-10-18 17:48:51 ----D---- C:\Documents and Settings\All Users\Application Data\Creative 2008-10-17 18:09:27 ----N---- C:\WINDOWS\Ctregrun.exe 2008-10-17 18:08:58 ----RA---- C:\WINDOWS\system32\C0100Vfw.dll 2008-10-17 18:08:58 ----RA---- C:\WINDOWS\CtDrvIns.exe 2008-10-17 18:08:58 ----RA---- C:\WINDOWS\C0100Mon.exe 2008-10-17 18:08:58 ----RA---- C:\WINDOWS\C0100Cfg.exe 2008-10-17 18:08:57 ----RA---- C:\WINDOWS\system32\C0100Afx.dll 2008-10-17 18:08:56 ----RA---- C:\WINDOWS\system32\CtCamMgr.dll 2008-10-17 18:08:56 ----RA---- C:\WINDOWS\system32\C0100Srv.exe 2008-10-17 18:08:56 ----RA---- C:\WINDOWS\system32\C0100Pin.dll 2008-10-17 18:08:56 ----RA---- C:\WINDOWS\system32\C0100Hwx.dll 2008-10-17 18:08:56 ----RA---- C:\WINDOWS\system32\C0100Cvw.dll 2008-10-17 18:08:00 ----D---- C:\Documents and Settings\julien\Application Data\Creative 2008-10-17 18:07:15 ----N---- C:\WINDOWS\system32\pxwma.dll 2008-10-17 18:06:53 ----D---- C:\Program Files\Fichiers communs\muvee Technologies 2008-10-17 18:06:08 ----D---- C:\Documents and Settings\All Users\Application Data\muvee Technologies 2008-10-17 18:05:55 ----D---- C:\Documents and Settings\julien\Application Data\InstallShield 2008-10-17 18:05:31 ----D---- C:\Program Files\SightSpeed 2008-10-17 18:05:15 ----A---- C:\WINDOWS\IsUn040c.exe 2008-10-17 18:04:09 ----N---- C:\WINDOWS\system32\MFC71u.dll 2008-10-17 18:04:08 ----N---- C:\WINDOWS\system32\MFC71.DLL 2008-10-17 17:58:55 ----A---- C:\WINDOWS\system32\vfwwdm32.dll 2008-10-15 20:07:09 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe 2008-10-15 20:00:40 ----D---- C:\Program Files\MSECACHE 2008-10-15 02:40:57 ----D---- C:\Program Files\NOS 2008-10-15 02:40:57 ----D---- C:\Documents and Settings\All Users\Application Data\NOS 2008-10-13 17:45:28 ----D---- C:\Program Files\NVIDIA Corporation 2008-10-13 17:44:08 ----A---- C:\WINDOWS\system32\CapabilityTable.exe 2008-10-13 17:44:01 ----N---- C:\WINDOWS\system32\nvuide.exe 2008-10-13 17:44:00 ----RA---- C:\WINDOWS\system32\NVCOI.DLL 2008-10-13 17:43:47 ----RA---- C:\WINDOWS\system32\fdco1.dll 2008-10-13 17:43:45 ----RA---- C:\WINDOWS\system32\nvunrm.exe 2008-10-13 17:43:45 ----D---- C:\WINDOWS\NV38563876.TMP 2008-10-13 17:43:44 ----RA---- C:\WINDOWS\system32\bdco1.dll 2008-10-13 17:43:43 ----RA---- C:\WINDOWS\system32\nvusmb.exe 2008-10-13 17:40:50 ----D---- C:\Program Files\ASUS 2008-10-13 16:54:35 ----D---- C:\Documents and Settings\julien\Application Data\DeepBurner 2008-10-13 16:18:32 ----D---- C:\Documents and Settings\julien\Application Data\Mozilla 2008-10-13 15:10:58 ----D---- C:\WINDOWS\Prefetch 2008-10-13 14:34:03 ----D---- C:\WINDOWS\system32\fr-fr 2008-10-13 14:34:02 ----D---- C:\WINDOWS\system32\fr 2008-10-13 14:34:02 ----D---- C:\WINDOWS\system32\bits 2008-10-13 14:34:02 ----D---- C:\WINDOWS\l2schemas 2008-10-13 14:32:54 ----D---- C:\WINDOWS\ServicePackFiles 2008-10-13 14:31:25 ----D---- C:\WINDOWS\network diagnostic 2008-10-13 14:29:01 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$ 2008-10-13 14:29:01 ----D---- C:\WINDOWS\EHome 2008-10-13 01:23:45 ----RHD---- C:\Documents and Settings\julien\Application Data\SecuROM 2008-10-13 01:23:45 ----A---- C:\WINDOWS\system32\CmdLineExt.dll 2008-10-12 22:10:50 ----D---- C:\WINDOWS\nview 2008-10-12 22:10:50 ----A---- C:\WINDOWS\system32\nvudisp.exe 2008-10-12 22:10:30 ----A---- C:\WINDOWS\system32\NVUNINST.EXE 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nwiz.exe 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwssr.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwss.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrszht.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrszhc.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrstr.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrssv.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrssl.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrssk.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsru.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsptb.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrspt.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrspl.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsno.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsnl.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsko.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsja.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsit.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrshu.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrshe.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsfr.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsfi.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsesm.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrses.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrseng.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsel.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsde.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsda.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrscs.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsar.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwimg.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwddi.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvvitvsr.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvvitvs.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvsvc32.exe 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvshell.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrszht.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrszhc.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrstr.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrssv.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrssl.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrssk.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsru.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsptb.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrspt.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrspl.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsno.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsnl.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsko.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsja.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsit.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrshu.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrshe.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsfr.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsfi.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsesm.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrses.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrseng.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsel.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsde.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsda.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrscs.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsar.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvoglnt.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvnt4cpl.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmoblsr.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmobls.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmctray.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmccssr.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmccss.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmccsrs.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmccs.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nview.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvgamesr.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvgames.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvexpbar.dll 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvdspsch.exe 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvcplui.exe 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvcolor.exe 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvappbar.exe 2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\keystone.exe 2008-10-12 22:10:20 ----A---- C:\WINDOWS\system32\nvdispsr.dll 2008-10-12 22:10:20 ----A---- C:\WINDOWS\system32\nvdisps.dll 2008-10-12 22:10:20 ----A---- C:\WINDOWS\system32\nvcpluir.dll 2008-10-12 22:10:19 ----A---- C:\WINDOWS\system32\nvcpl.dll 2008-10-12 22:10:19 ----A---- C:\WINDOWS\system32\nvcodins.dll 2008-10-12 22:10:19 ----A---- C:\WINDOWS\system32\nvcod.dll 2008-10-12 22:10:19 ----A---- C:\WINDOWS\system32\nvapi.dll 2008-10-12 21:50:20 ----A---- C:\WINDOWS\Cadx3.ini 2008-10-12 21:49:06 ----D---- C:\Documents and Settings\All Users\Application Data\nView_Profiles 2008-10-12 21:22:31 ----RD---- C:\WINDOWS\AsDmiHtm 2008-10-12 20:27:06 ----D---- C:\Documents and Settings\julien\Application Data\dvdcss 2008-10-12 20:26:22 ----D---- C:\Documents and Settings\julien\Application Data\vlc 2008-10-12 19:30:27 ----D---- C:\WINDOWS\Minidump 2008-10-12 12:42:29 ----D---- C:\Documents and Settings\julien\Application Data\WinRAR 2008-10-12 03:42:50 ----A---- C:\WINDOWS\system32\MRT.exe 2008-10-11 14:18:27 ----D---- C:\WINDOWS\pss 2008-10-11 10:37:37 ----A---- C:\WINDOWS\system32\muweb.dll 2008-10-11 10:37:37 ----A---- C:\WINDOWS\system32\mucltui.dll.mui 2008-10-11 10:37:37 ----A---- C:\WINDOWS\system32\mucltui.dll 2008-10-11 00:32:22 ----DC---- C:\WINDOWS\system32\DRVSTORE 2008-10-11 00:24:59 ----D---- C:\Documents and Settings\julien\Application Data\MSNInstaller 2008-10-11 00:20:25 ----SHDC---- C:\Program Files\Fichiers communs\WindowsLiveInstaller 2008-10-11 00:19:57 ----D---- C:\Program Files\Windows Live 2008-10-11 00:19:52 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-10-10 17:48:24 ----A---- C:\WINDOWS\system32\wpa.bak 2008-10-10 16:31:47 ----D---- C:\Program Files\WinRAR 2008-10-10 16:06:13 ----A---- C:\WINDOWS\system32\hidserv.dll 2008-10-10 01:20:22 ----D---- C:\WINDOWS\RegisteredPackages 2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\vxblock.dll 2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxwave.dll 2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxsfs.dll 2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxmas.dll 2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxdrv.dll 2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxafs.dll 2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\px.dll 2008-10-10 01:19:27 ----D---- C:\Documents and Settings\julien\Application Data\Winamp 2008-10-10 01:18:01 ----D---- C:\Documents and Settings\julien\Application Data\Media Player Classic 2008-10-10 00:35:21 ----D---- C:\Program Files\Avira 2008-10-10 00:35:21 ----D---- C:\Documents and Settings\All Users\Application Data\Avira 2008-10-10 00:17:57 ----D---- C:\Documents and Settings\julien\Application Data\Google 2008-10-10 00:17:39 ----D---- C:\Documents and Settings\julien\Application Data\Macromedia 2008-10-10 00:17:36 ----D---- C:\Documents and Settings\All Users\Application Data\Google 2008-10-10 00:17:35 ----D---- C:\Program Files\Google 2008-10-09 20:31:54 ----N---- C:\WINDOWS\system32\spmsg.dll 2008-10-09 20:31:54 ----D---- C:\WINDOWS\system32\PreInstall 2008-10-09 20:31:53 ----HD---- C:\WINDOWS\$hf_mig$ 2008-10-09 20:20:20 ----SHD---- C:\RECYCLER 2008-10-09 20:16:07 ----A---- C:\WINDOWS\system32\h323log.txt 2008-10-09 20:11:42 ----A---- C:\WINDOWS\system32\usbui.dll 2008-10-09 20:10:48 ----SHD---- C:\WINDOWS\Installer 2008-10-09 20:10:48 ----D---- C:\Program Files\Fichiers communs\ODBC 2008-10-09 20:10:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2008-10-09 20:10:48 ----A---- C:\WINDOWS\ODBCINST.INI 2008-10-09 20:10:45 ----RD---- C:\Program Files 2008-10-09 20:10:45 ----D---- C:\Program Files\Fichiers communs\SpeechEngines 2008-10-09 20:10:45 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2008-10-09 20:10:45 ----D---- C:\Program Files\Fichiers communs 2008-10-09 20:10:42 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2008-10-09 20:10:42 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2008-10-09 20:10:42 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdur.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdru.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2008-10-09 20:10:39 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2008-10-09 20:10:39 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2008-10-09 20:10:39 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2008-10-09 20:10:39 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2008-10-09 20:10:39 ----RA---- C:\WINDOWS\system32\kbdest.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdro.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2008-10-09 20:10:36 ----A---- C:\WINDOWS\system32\irclass.dll 2008-10-09 20:10:35 ----A---- C:\WINDOWS\system32\spxcoins.dll 2008-10-09 20:10:35 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2008-10-09 20:10:35 ----A---- C:\WINDOWS\system32\dgsetup.dll 2008-10-09 20:10:35 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2008-10-09 20:10:34 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2008-10-09 20:10:34 ----A---- C:\WINDOWS\TASKMAN.EXE 2008-10-09 20:10:33 ----A---- C:\WINDOWS\system32\batt.dll 2008-10-09 20:10:33 ----A---- C:\WINDOWS\notepad.exe 2008-10-09 20:10:31 ----A---- C:\WINDOWS\system32\storprop.dll 2008-10-09 20:10:26 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2008-10-09 20:08:45 ----RA---- C:\WINDOWS\SET8.tmp 2008-10-09 20:08:43 ----RA---- C:\WINDOWS\SET4.tmp 2008-10-09 20:08:42 ----RA---- C:\WINDOWS\SET3.tmp 2008-10-09 20:08:38 ----D---- C:\WINDOWS\system32\CatRoot2 2008-10-09 20:08:38 ----D---- C:\WINDOWS\system32\CatRoot 2008-10-09 20:08:32 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2008-10-09 20:08:15 ----SHD---- C:\System Volume Information 2008-10-09 20:08:15 ----D---- C:\Documents and Settings 2008-10-09 20:07:24 ----SH---- C:\boot.ini 2008-10-09 20:02:47 ----RSHDC---- C:\WINDOWS\system32\dllcache 2008-10-09 20:02:47 ----RSD---- C:\WINDOWS\Fonts 2008-10-09 20:02:47 ----RD---- C:\WINDOWS\Web 2008-10-09 20:02:47 ----HD---- C:\WINDOWS\inf 2008-10-09 20:02:47 ----D---- C:\WINDOWS\WinSxS 2008-10-09 20:02:47 ----D---- C:\WINDOWS\twain_32 2008-10-09 20:02:47 ----D---- C:\WINDOWS\Temp 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\wins 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\wbem 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\usmt 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\spool 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\ShellExt 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\Setup 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\ras 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\oobe 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\npp 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\mui 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\inetsrv 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\IME 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\icsxml 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\ias 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\export 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\drivers 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\dhcp 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\config 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\3com_dmi 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\3076 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\2052 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1054 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1042 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1041 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1037 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1036 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1033 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1031 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1028 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1025 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32 2008-10-09 20:02:47 ----D---- C:\WINDOWS\system 2008-10-09 20:02:47 ----D---- C:\WINDOWS\security 2008-10-09 20:02:47 ----D---- C:\WINDOWS\Resources 2008-10-09 20:02:47 ----D---- C:\WINDOWS\repair 2008-10-09 20:02:47 ----D---- C:\WINDOWS\Provisioning 2008-10-09 20:02:47 ----D---- C:\WINDOWS\PeerNet 2008-10-09 20:02:47 ----D---- C:\WINDOWS\pchealth 2008-10-09 20:02:47 ----D---- C:\WINDOWS\mui 2008-10-09 20:02:47 ----D---- C:\WINDOWS\msapps 2008-10-09 20:02:47 ----D---- C:\WINDOWS\msagent 2008-10-09 20:02:47 ----D---- C:\WINDOWS\Media 2008-10-09 20:02:47 ----D---- C:\WINDOWS\java 2008-10-09 20:02:47 ----D---- C:\WINDOWS\ime 2008-10-09 20:02:47 ----D---- C:\WINDOWS\Help 2008-10-09 20:02:47 ----D---- C:\WINDOWS\Driver Cache 2008-10-09 20:02:47 ----D---- C:\WINDOWS\Debug 2008-10-09 20:02:47 ----D---- C:\WINDOWS\Cursors 2008-10-09 20:02:47 ----D---- C:\WINDOWS\Connection Wizard 2008-10-09 20:02:47 ----D---- C:\WINDOWS\Config 2008-10-09 20:02:47 ----D---- C:\WINDOWS\AppPatch 2008-10-09 20:02:47 ----D---- C:\WINDOWS\addins 2008-10-09 20:02:47 ----D---- C:\WINDOWS 2008-10-09 19:06:23 ----D---- C:\Documents and Settings\julien\Application Data\Adobe 2008-10-09 18:58:22 ----D---- C:\JM 2008-10-09 18:58:20 ----R---- C:\WINDOWS\system32\JMRaidSetup.exe 2008-10-09 18:58:20 ----R---- C:\WINDOWS\system32\JMRaidAPI.dll 2008-10-09 18:58:16 ----D---- C:\WINDOWS\JM 2008-10-09 18:57:39 ----D---- C:\WINDOWS\system32\Lang 2008-10-09 18:54:29 ----R---- C:\WINDOWS\system32\ChCfg.exe 2008-10-09 18:54:17 ----D---- C:\WINDOWS\system32\RTCOM 2008-10-09 18:54:16 ----A---- C:\WINDOWS\system32\ksuser.dll 2008-10-09 18:53:50 ----A---- C:\WINDOWS\DFC.INI 2008-10-09 18:53:48 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2008-10-09 18:53:47 ----A---- C:\WINDOWS\Ascd_tmp.ini 2008-10-09 18:53:42 ----R---- C:\WINDOWS\SoundMan.exe 2008-10-09 18:53:42 ----R---- C:\WINDOWS\SkyTel.exe 2008-10-09 18:53:41 ----R---- C:\WINDOWS\RtlUpd.exe 2008-10-09 18:53:37 ----R---- C:\WINDOWS\RTLCPL.exe 2008-10-09 18:53:32 ----R---- C:\WINDOWS\RTHDCPL.exe 2008-10-09 18:53:31 ----R---- C:\WINDOWS\MicCal.exe 2008-10-09 18:53:29 ----R---- C:\WINDOWS\alcwzrd.exe 2008-10-09 18:53:29 ----R---- C:\WINDOWS\Alcmtr.exe 2008-10-09 18:53:28 ----D---- C:\Program Files\Realtek 2008-10-09 18:53:26 ----R---- C:\WINDOWS\RtlExUpd.dll 2008-10-09 18:45:05 ----D---- C:\WINDOWS\ASUSInstAll 2008-10-09 18:43:06 ----HD---- C:\Program Files\InstallShield Installation Information 2008-10-09 18:42:35 ----RA---- C:\WINDOWS\system32\raidmgmt.ini 2008-10-09 18:42:35 ----RA---- C:\WINDOWS\system32\AsusSetup.ini 2008-10-09 18:42:35 ----RA---- C:\WINDOWS\system32\AsusSetup.exe 2008-10-09 18:41:56 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2008-10-09 18:41:11 ----RA---- C:\WINDOWS\system32\idecoiins.dll 2008-10-09 18:41:11 ----RA---- C:\WINDOWS\system32\idecoi.dll 2008-10-09 18:41:11 ----D---- C:\WINDOWS\system32\ReinstallBackups 2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco1ins.dll 2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l2052.dll 2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1046.dll 2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1042.dll 2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1041.dll 2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1040.dll 2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1036.dll 2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1034.dll 2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1031.dll 2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1028.dll 2008-10-09 18:41:04 ----RA---- C:\WINDOWS\system32\bdco1ins.dll 2008-10-09 18:41:04 ----D---- C:\WINDOWS\NV784972.TMP 2008-10-09 18:40:04 ----A---- C:\WINDOWS\Ascd_log.ini 2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\xinput1_3.dll 2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\xactengine2_6.dll 2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\xactengine2_5.dll 2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\xactengine2_4.dll 2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll 2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\d3dx9_32.dll 2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\d3dx9_31.dll 2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\xinput1_2.dll 2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\xinput1_1.dll 2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\xactengine2_3.dll 2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\xactengine2_2.dll 2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\xactengine2_1.dll 2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll 2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\xactengine2_0.dll 2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll 2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\d3dx9_29.dll 2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\d3dx9_27.dll 2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\d3dx9_26.dll 2008-10-09 18:37:21 ----A---- C:\WINDOWS\system32\d3dx9_25.dll 2008-10-09 18:37:21 ----A---- C:\WINDOWS\system32\d3dx9_24.dll 2008-10-09 18:35:31 ----D---- C:\Program Files\Fichiers communs\InstallShield 2008-10-09 18:35:26 ----A---- C:\WINDOWS\system32\nv4_disp.dll 2008-10-09 18:34:46 ----D---- C:\WINDOWS\UI 2008-10-09 18:34:43 ----A---- C:\WINDOWS\TBZoom.exe 2008-10-09 18:34:43 ----A---- C:\WINDOWS\TBPanelExt.dll 2008-10-09 18:34:43 ----A---- C:\WINDOWS\TBPanel.exe 2008-10-09 18:34:43 ----A---- C:\WINDOWS\TBManage.dll 2008-10-09 18:34:43 ----A---- C:\WINDOWS\GWLib.dll 2008-10-09 18:34:43 ----A---- C:\WINDOWS\DXTool.exe 2008-10-09 18:26:33 ----D---- C:\Documents and Settings\julien\Application Data\Identities 2008-10-09 18:26:32 ----HD---- C:\Program Files\Uninstall Information 2008-10-09 18:26:23 ----SD---- C:\Documents and Settings\julien\Application Data\Microsoft 2008-10-09 18:26:23 ----ASH---- C:\Documents and Settings\julien\Application Data\desktop.ini 2008-10-09 18:23:45 ----D---- C:\WINDOWS\SoftwareDistribution 2008-10-09 18:23:43 ----SD---- C:\WINDOWS\system32\Microsoft 2008-10-09 18:20:36 ----D---- C:\WINDOWS\system32\xircom 2008-10-09 18:20:36 ----D---- C:\Program Files\xerox 2008-10-09 18:20:36 ----D---- C:\Program Files\microsoft frontpage 2008-10-09 18:20:24 ----A---- C:\WINDOWS\control.ini 2008-10-09 18:20:24 ----A---- C:\AUTOEXEC.BAT 2008-10-09 18:20:13 ----A---- C:\WINDOWS\system32\mapi32.dll 2008-10-09 18:19:37 ----SD---- C:\WINDOWS\Downloaded Program Files 2008-10-09 18:19:37 ----RD---- C:\WINDOWS\Offline Web Pages 2008-10-09 18:19:37 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2008-10-09 18:19:32 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2008-10-09 18:19:29 ----HD---- C:\Program Files\WindowsUpdate 2008-10-09 18:19:26 ----D---- C:\Program Files\Services en ligne 2008-10-09 18:19:15 ----D---- C:\WINDOWS\system32\DirectX 2008-10-09 18:19:01 ----A---- C:\WINDOWS\system32\atrace.dll 2008-10-09 18:18:59 ----A---- C:\WINDOWS\system32\desktop.ini 2008-10-09 18:18:59 ----A---- C:\WINDOWS\desktop.ini 2008-10-09 18:18:54 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2008-10-09 18:18:53 ----A---- C:\WINDOWS\system32\acctres.dll 2008-10-09 18:18:52 ----D---- C:\Program Files\Fichiers communs\Services 2008-10-09 18:18:51 ----SD---- C:\WINDOWS\Tasks 2008-10-09 18:18:51 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2008-10-09 18:18:50 ----D---- C:\Program Files\Fichiers communs\MSSoap 2008-10-09 18:18:47 ----D---- C:\WINDOWS\system32\Macromed 2008-10-09 18:18:47 ----D---- C:\WINDOWS\srchasst 2008-10-09 18:18:45 ----A---- C:\WINDOWS\system32\wuweb.dll 2008-10-09 18:18:45 ----A---- C:\WINDOWS\system32\wucltui.dll 2008-10-09 18:18:45 ----A---- C:\WINDOWS\system32\wuauserv.dll 2008-10-09 18:18:45 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2008-10-09 18:18:45 ----A---- C:\WINDOWS\system32\wuaueng.dll 2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\wups.dll 2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\wuauclt.exe 2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\wuapi.dll 2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\qmgr.dll 2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2008-10-09 18:18:41 ----D---- C:\Program Files\Movie Maker 2008-10-09 18:18:39 ----A---- C:\WINDOWS\system32\safrslv.dll 2008-10-09 18:18:39 ----A---- C:\WINDOWS\system32\safrdm.dll 2008-10-09 18:18:38 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2008-10-09 18:18:38 ----A---- C:\WINDOWS\system32\racpldlg.dll 2008-10-09 18:18:36 ----D---- C:\WINDOWS\system32\Restore 2008-10-09 18:18:36 ----A---- C:\WINDOWS\system32\srsvc.dll 2008-10-09 18:18:36 ----A---- C:\WINDOWS\system32\srrstr.dll 2008-10-09 18:18:36 ----A---- C:\WINDOWS\system32\srclient.dll 2008-10-09 18:18:36 ----A---- C:\WINDOWS\system32\fltmc.exe 2008-10-09 18:18:36 ----A---- C:\WINDOWS\system32\fltlib.dll 2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\msconf.dll 2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\mnmdd.dll 2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\ils.dll 2008-10-09 18:18:33 ----D---- C:\Program Files\NetMeeting 2008-10-09 18:18:33 ----A---- C:\WINDOWS\system32\msoert2.dll 2008-10-09 18:18:33 ----A---- C:\WINDOWS\system32\msoeacct.dll 2008-10-09 18:18:32 ----A---- C:\WINDOWS\system32\inetres.dll 2008-10-09 18:18:32 ----A---- C:\WINDOWS\system32\inetcomm.dll 2008-10-09 18:18:31 ----D---- C:\Program Files\Outlook Express 2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\schedsvc.dll 2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\mstinit.exe 2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\mstask.dll 2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\isign32.dll 2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\inetcfg.dll 2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\icwphbk.dll 2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\icwdial.dll 2008-10-09 18:18:26 ----D---- C:\Program Files\Fichiers communs\System 2008-10-09 18:18:25 ----D---- C:\Program Files\Internet Explorer 2008-10-09 18:18:16 ----D---- C:\Program Files\ComPlus Applications 2008-10-09 18:18:14 ----A---- C:\WINDOWS\vbaddin.ini 2008-10-09 18:18:14 ----A---- C:\WINDOWS\vb.ini 2008-10-09 18:18:10 ----D---- C:\WINDOWS\Registration 2008-10-09 18:17:50 ----D---- C:\Program Files\Windows Media Player 2008-10-09 18:17:50 ----D---- C:\Program Files\Online Services 2008-10-09 18:17:44 ----D---- C:\Program Files\MSN Gaming Zone 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\tslabels.ini 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\tskill.exe 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\tscon.exe 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\shadow.exe 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\rwinsta.exe 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\reset.exe 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\regini.exe 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\qwinsta.exe 2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\qappsrv.exe 2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\mtxex.dll 2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\mtxdm.dll 2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\msg.exe 2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\logoff.exe 2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\cdmodem.dll 2008-10-09 18:17:30 ----A---- C:\WINDOWS\system32\stclient.dll 2008-10-09 18:17:30 ----A---- C:\WINDOWS\system32\comsnap.dll 2008-10-09 18:17:30 ----A---- C:\WINDOWS\system32\comrepl.dll 2008-10-09 18:17:30 ----A---- C:\WINDOWS\system32\comaddin.dll 2008-10-09 18:17:27 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2008-10-09 18:17:20 ----D---- C:\Program Files\MSN 2008-10-09 18:17:18 ----D---- C:\Program Files\Windows NT 2008-10-09 18:17:18 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\termsrv.dll 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\sessmgr.exe 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\remotepg.dll 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdshost.exe 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdpclip.exe 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdchost.dll 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\qprocess.exe 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\mstscax.dll 2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\mstsc.exe 2008-10-09 18:17:16 ----D---- C:\WINDOWS\system32\MsDtc 2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\xolehlp.dll 2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\mtxoci.dll 2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\msdtctm.dll 2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\msdtclog.dll 2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\icaapi.dll 2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2008-10-09 18:17:15 ----D---- C:\WINDOWS\system32\Com 2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\msdtc.exe 2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\colbact.dll 2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\clbcatex.dll 2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\catsrvut.dll 2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\catsrvps.dll 2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\catsrv.dll 2008-10-09 18:17:14 ----A---- C:\WINDOWS\system32\comuid.dll 2008-10-09 18:17:14 ----A---- C:\WINDOWS\system32\comsvcs.dll 2008-10-09 18:17:14 ----A---- C:\WINDOWS\system32\clbcatq.dll 2008-10-09 18:17:10 ----A---- C:\WINDOWS\system32\servdeps.dll 2008-10-09 18:17:10 ----A---- C:\WINDOWS\system32\mmfutil.dll 2008-10-09 18:17:10 ----A---- C:\WINDOWS\system32\licwmi.dll 2008-10-09 18:17:10 ----A---- C:\WINDOWS\system32\cmprops.dll ======List of files/folders modified in the last 1 months====== 2008-10-15 17:35:43 ----A---- C:\WINDOWS\system32\netapi32.dll 2008-10-09 20:10:44 ----A---- C:\WINDOWS\system.ini 2008-10-09 18:20:24 ----A---- C:\WINDOWS\win.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-06-27 75072] R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576] R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352] R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-05 12032] R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320] R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2004-08-05 63232] R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2004-08-05 55936] R2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys [2007-03-16 12256] R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys [] R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-15 4225920] R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2007-09-21 35088] R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2007-09-21 36240] R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288] R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-04-12 6738656] R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-02-17 34176] R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-02-17 13056] R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152] R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000] S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800] S3 avlxqxm3;avlxqxm3; C:\WINDOWS\system32\drivers\avlxqxm3.sys [] S3 C0100Afx;Provides a software interface to control audio effects of VC0100 camera.; \??\C:\WINDOWS\system32\Drivers\C0100Afx.sys [] S3 C0100Aud;Provides a software interface to control noise cancellation of VC0100 camera.; \??\C:\WINDOWS\system32\Drivers\C0100Aud.sys [] S3 C0100Aul;Provides a software interface to control audio formats of VC0100 camera.; \??\C:\WINDOWS\system32\Drivers\C0100Aul.sys [] S3 C0100Dev;Creative Camera VC0100 Driver; C:\WINDOWS\system32\DRIVERS\C0100Dev.sys [2007-05-24 239904] S3 C0100Vfx;Creative Camera VC0100 Video VFX Driver; C:\WINDOWS\system32\DRIVERS\C0100Vfx.sys [2006-12-05 7168] S3 Cardex;Cardex; \??\C:\WINDOWS\system32\drivers\TBPANEL.SYS [] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 USB_RNDIS;ADI Remote NDIS Network Device Driver; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2008-04-13 12800] S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 usbvideo;Périphérique vidéo USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-23 68865] R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-23 151297] R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe [2006-02-17 139264] R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-02-17 20543] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-10-29 152984] R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2006-02-17 127035] R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2006-02-17 61503] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-04-12 163908] R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240] S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-10 138168] S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe [2007-11-15 121360] S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328] S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240] -----------------EOF-----------------
  18. spaversu
    Bonjour tout le monde... Voilà mon souci: 1) Je n'arrive plus à lancer la "configuration avancée" de mon acces internet/modem Alice ( pour configurer les ports pour logiciel p2p et des options de sécurité). J'obtiens ce message: "aucun programme n'est associé à ce fichier pour exécuter cette action". 2) Je n'arrive plus à lancer/configurer le firewall nvidia et obtiens le même message " aucun programme..." 3) Je ne peux plus obtenir les mises à jour de mon antivirus Avira antivir personal... ni automatiques ni manuelles. Précision: ces trois fonctions programmes utilisent internet. C'est à dire que la configuration Alice et firewall Nvidia se font depuis une page internet ainsi que bien sûr l'update antivir. Je poste mon message dans la section securite / malwares car ces trois problèmes sont apparus en même temps + ce sont étrangement trois logiciels qui concernent la securité du PC. J'ai effectué des scans antivir et ccleaner en mode sans echec mais ça n'a rien donné. Bien sûr ces derniers jours l'antivirus avait détecté des virus/malwares (comme un certain Heur/html etc. ) mais bon c'est plutôt fréquent. Voilà, si quelqu'un avait la gentillesse de m'aider...
  19. spaversu
    ok merci. Je me suis un peu embrouillé dans les mots: biensûr je ne vais pas changer la carte mère de suite. On dirait que la carte graphique a plus d'importance dans le rendu des jeux, donc a priori ça serait la mon premier achat (Fallout 3 me voilà !) En fait j'ai pas vraiment compris toute l'importance du proc mais bon j'imagine qu'il faudra y passer aussi (mais d'abord l'oc pour commencer). La radeon 4850 520 mo semble bien pour le prix ! Ou alors j'attend encore un peu pour une nouvelle generation de carte, mais bon + de 6 mois peut-être pas...
  20. spaversu
    Salut... Voilà, il y a très longtemps j'avais acheté un pack logitech clavier sans fil + souris sf mx 700. Aujourd'hui j'ai acheté une nouvelle souris (une MX revolution) mais je veux garder l'ancien clavier. Le clavier n'est pas reconnu par le capteur de la MX revolution Du coup pour faire fonctionner le clavier je dois laisser connectés l'ancien capteur et l'ancienne souris. 2 souris, 2 receptacles, et 2 branchements USB (et tous les fils qui vont avec...) pour un seul ordi... Quelqu'un a t il connu le même problème, mais surtout quelqu'un a t il une solution ?
  21. spaversu
    Merci pour l'info... Donc en premier, faudrait il changer la carte mère ? Si je prends une nouvelle carte, le processeur arrivera t il à suivre ?
  22. spaversu
    Le problème pour le SLI c'est que ma carte est plutôt rare désormais, et toujours très chère (+ de 300 euros)... Autant en acheter une autre mais récente, non ?
  23. spaversu
    Salut, Pour pouvoir profiter un maximum des derniers jeux mais aussi des futurs, il faudrait que j'améliore ma config. Il va falloir que je fasse petit à petit pour une question d'argent. Ma question est la suivante: Quel élément changer en premier ? P.S: -je n'ai pas encore overclocké mes composants... -Je cherche aussi une souris (sans fil mais pour jouer aussi) la g7 n'est plus en vente ? Voici ma config actuelle: E6600 (2.4 Ghz) 8800 gts 640 Mo P5n E sli 2x 1Go pc 6400 cas4 Alim Seasonic S12 600 w Boitier Antec solo Merci d'avance...
  24. spaversu
    Au pire j'en racheterais.... Mais y a t il un risque pour que la carte mère soit responsable de l'état des barrettes ?
  25. spaversu
    Bonsoir... J'ai testé les deux barrettes: La 1ere ne fonctionnait pas (écran noir/comme non reconnu quelque soit le slot et même une légere odeur de chauffe) L'autre a donné à peu près la même chose lors des deux tests effectués: Memetes86 se bloque à la deuxième pass pass 17% Test 98% (ecc off pas le choix) errors 1 Error confidence value 213 test 0-4 = 0 erreurs test 5 = 32767 (oui oui 32767) errors per memory slot: infini enfin j'ai arrété le programme à 45 000... Enfin voilà. Si au moins j'étais sur qu'il s'agit bien des rams A LA BASE et pas de la carte mère, je me contenterais dans racheter mais bon comment savoir ?
×
×
  • Créer...