ludal

salut thanos, Je viens de suivre tes derniers conseils. Tout est ok pour moi. Juste une petite question : que fais-je des deux rapports de navilog à la racine de C: ? (cleannavi.txt et fixnavi.txt) Bien a toi

Bonjour Thanos, Voici le rapport généré par Navlog : ***************************************************************** Search Navipromo version 3.7.0 commencé le 13/12/2008 à 11:30:20,14 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Postez ce rapport sur le forum pour le faire analyser !!! !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!! Outil exécuté depuis C:\Program Files\navilog1 Mise à jour le 10.12.2008 à 21h00 par IL-MAFIOSO Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3 X86-based PC ( Uniprocessor Free : AMD Sempron Processor 3000+ ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Administrateur ( Administrator ) BOOT : Normal boot Antivirus : avast! antivirus 4.8.1296 [VPS 081212-0] 4.8.1296 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:19 Go (Free:6 Go) D:\ (Local Disk) - NTFS - Total:0 Go (Free:0 Go) E:\ (Local Disk) - NTFS - Total:54 Go (Free:27 Go) F:\ (Local Disk) - NTFS - Total:149 Go (Free:13 Go) G:\ (CD or DVD) H:\ (CD or DVD) Recherche executé en mode normal *** Recherche Programmes installés *** *** Recherche dossiers dans "C:\WINDOWS" *** *** Recherche dossiers dans "C:\Program Files" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users.WINDOWS\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users.WINDOWS\menudm~1" *** *** Recherche dossiers dans "c:\docume~1\alluse~1.win\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\locals~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\menudm~1\progra~1" *** *** Recherche avec Catchme-rootkit/stealth malware detector par gmer *** pour + d'infos : http://www.gmer.net *** Recherche avec GenericNaviSearch *** !!! Tous ces résultats peuvent révéler des fichiers légitimes !!! !!! A vérifier impérativement avant toute suppression manuelle !!! * Recherche dans "C:\WINDOWS\system32" * * Recherche dans "C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\locals~1\applic~1" * *** Recherche fichiers *** *** Recherche clés spécifiques dans le Registre *** !! Les clés trouvées ne sont pas forcément infectées !! HKEY_CURRENT_USER\Software\Lanconfig trouvé ! *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche nouveaux fichiers Instant Access : 2)Recherche Heuristique : * Dans "C:\WINDOWS\system32" : * Dans "C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\locals~1\applic~1" : 3)Recherche Certificats : Certificat Egroup absent ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltd absent ! 4)Recherche autres dossiers et fichiers connus : *** Analyse terminée le 13/12/2008 à 11:36:48,76 *** ************************************************************************ Je te souhaite un bon week end

Thanos .. tu es mon héros !!!!! Après avoir suivi tes indications, tout refonctionne a nouveau !!! Mille merci pour ton aide précieuse, très pro et efficace !! Longue vie au forum ... Amitiés sincères,

bonjour, Voilà ... j'ai eu le temps de faire cette analyse et j'ai eu quelques malwares détectés. J'ai supprimé la sélection, redémarrer l'ordi comme indiqué, fait les modifs dans le panneau de config et devines quoi ..... ça marche toujours pas .. Voici le rapport générer par Malwarebytes : Je ne sais pas si je vais arrivé au bout de ce problème un jour.. En tout cas, merci pour votre aide. windaube

salut thanos... Désolé pour le manque d'info mais j'ai un emploi du temps un peu chargé dernièrement... J'ai toujours le meme soucis et ca commence a etre vraiment agaçant. Je te prepare ce que tu m'as préconisé ce week end ... Bonne fin de semaine

Bonsoir Steffen... Non je suis en connexion direct avec un bon vieux RJ45 Voici le rapport info.txt ********************** info.txt logfile of random's system information tool 1.04 2008-11-27 19:03:22 ======Uninstall list====== Adobe Anchor Service CS4-->MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8} Adobe CSI CS4-->MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF} Adobe Dreamweaver CS4-->C:\Program Files\Fichiers communs\Adobe\Installers\acce07fd2c8fe7f9e3f26243e626578\Setup.exe --uninstall=1 Adobe Dreamweaver CS4-->MsiExec.exe /I{30C8AA56-4088-426F-91D1-0EDFD3A25678} Adobe ExtendScript Toolkit CS4-->MsiExec.exe /I{F8EF2B3F-C345-4F20-8FE4-791A20333CD5} Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Search for Help-->MsiExec.exe /I{F0E64E2E-3A60-40D8-A55D-92F6831875DA} Adobe Service Manager Extension-->MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7} Adobe Setup-->MsiExec.exe /I{14AFE241-FC6E-4FDB-BCA0-7AD6F4974171} Adobe Update Manager CS4-->MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755} Apple Mobile Device Support-->MsiExec.exe /I{EC4455AB-F155-4CC1-A4C5-88F3777F9886} Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959} Connect-->MsiExec.exe /I{B29AD377-CC12-490A-A480-1452337C618D} HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall HomePlayer 1.5.6b-->C:\Program Files\HomePlayer\uninst.exe iTunes-->MsiExec.exe /I{318AB667-3230-41B5-A617-CB3BF748D371} Java 6 Update 10-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF} K-Lite Mega Codec Pack 3.6.5-->"C:\Program Files\K-Lite Codec Pack\unins000.exe" kuler-->MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243} Macromedia Dreamweaver 8-->MsiExec.exe /I{5FD788ED-1A37-4496-9BDD-463F493B27FA} Macromedia Extension Manager-->MsiExec.exe /I{3C8C9FB3-5FDF-40B4-B314-EAD722728C76} Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700} Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28} Microsoft .NET Framework 3.0 Service Pack 1-->MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783} Microsoft .NET Framework 3.5-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5\setup.exe Microsoft .NET Framework 3.5-->MsiExec.exe /I{2FC099BD-AC9B-33EB-809C-D332E1B27C40} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe Mozilla Firefox (3.0.4)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F} MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 6 Service Pack 2 (KB954459)-->MsiExec.exe /I{97AA1F3C-DD64-4AA6-AEC5-F8F9F4CC21C5} Nero 8 Lite 8.1.1.3-->"C:\Program Files\Nero\unins000.exe" Next Generation Visualisations-->MsiExec.exe /I{2E376AD9-5C49-4F7D-A0BA-6A44E8FA5A3B} NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI QT Lite 2.2.0-->"C:\Program Files\QT Lite\unins000.exe" QuickTime-->MsiExec.exe /I{F958CA02-BB40-4007-894B-258729456EE4} Real Alternative 1.7.5 Lite-->"C:\Program Files\Real Alternative\unins000.exe" Suite Shared Configuration CS4-->MsiExec.exe /I{842B4B72-9E8F-4962-B3C1-1C422A5C4434} Windows Defender-->MsiExec.exe /I{A06275F4-324B-4E85-95E6-87B2CD729401} Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe" Windows Live installer-->MsiExec.exe /I{A90D10BA-1E82-44E1-87DE-56A22BA151DA} Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65} Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" ======Hosts File====== ::1 localhost 127.0.0.1 rad.msn.com 127.0.0.1 rad.live.com 127.0.0.1 ads1.msn.com 127.0.0.1 adfarm.mediaplex.com 127.0.0.1 localhost 127.0.0.1 0-2u.com 127.0.0.1 0-days.net 127.0.0.1 0.start.bz 127.0.0.1 00-12.us ======Security center information====== AV: avast! antivirus 4.8.1290 [VPS 081127-1] ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QT Lite\QTSystem\ "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=15 "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 79 Stepping 2, AuthenticAMD "PROCESSOR_REVISION"=4f02 "NUMBER_OF_PROCESSORS"=1 "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "CLASSPATH"=.;C:\Program Files\QT Lite\QTSystem\QTJava.zip "QTJAVA"=C:\Program Files\QT Lite\QTSystem\QTJava.zip -----------------EOF-----------------

Voici le rapport log.txt Bienvenue dans la matrice ************************* Logfile of random's system information tool 1.04 (written by random/random) Run by Administrateur at 2008-11-27 19:03:13 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 6 GB (32%) free of 20 GB Total RAM: 2014 MB (66% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:03:19, on 27/11/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.20900) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Program Files\UberIcon\UberIcon Manager.exe C:\Windows\System32\VisualTaskTips.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\styler\Styler.exe C:\Program Files\Windows Defender\MSASCui.exe C:\WINDOWS\system32\RUNDLL32.EXE E:\iTunes\iTunesHelper.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\OpenOffice.org 3\program\soffice.exe C:\Program Files\OpenOffice.org 3\program\soffice.bin C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Opera\opera.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Bureau\RSIT.exe C:\Program Files\Trend Micro\HijackThis\Administrateur.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.fr/keyword/%s R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Ultimate Edition R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O1 - Hosts: ::1 localhost O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - F:\BitComet\tools\BitCometBHO_1.2.1.2.dll (file missing) O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\styler\TB\StylerTB.dll O4 - HKLM\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKLM\..\Run: [uberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" O4 - HKLM\..\Run: [VisualTaskTips] C:\Windows\System32\VisualTaskTips.exe O4 - HKLM\..\Run: [Vistadrv] C:\WINDOWS\system32\Vistadrive\vsdrv.exe O4 - HKLM\..\Run: [styler] C:\Program Files\styler\Styler.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QT Lite\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "E:\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'Default user') O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe O8 - Extra context menu item: &D&ownload &with BitComet - res://F:\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: &D&ownload all video with BitComet - res://F:\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: &D&ownload all with BitComet - res://F:\BitComet\BitComet.exe/AddAllLink.htm O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://F:\BitComet\tools\BitCometBHO_1.2.1.2.dll/206 (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 8706 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\AppleSoftwareUpdate.job C:\WINDOWS\tasks\MP Scheduled Scan.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}] BitComet Helper - F:\BitComet\tools\BitCometBHO_1.2.1.2.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-11-25 320920] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-11-25 34816] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-11-25 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] SaveLinksOrder Locked {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - StylerToolBar - C:\Program Files\styler\TB\StylerTB.dll [2006-05-02 102400] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2007-01-10 1235456] "UberIcon"=C:\Program Files\UberIcon\UberIcon Manager.exe [2006-07-17 122880] "VisualTaskTips"=C:\Windows\System32\VisualTaskTips.exe [2007-12-18 36864] "Vistadrv"=C:\WINDOWS\system32\Vistadrive\vsdrv.exe [2006-07-30 121089] "Styler"=C:\Program Files\styler\Styler.exe [2006-05-03 307200] "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-01-24 7311360] "nwiz"=nwiz.exe /install [] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-01-24 86016] "High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952] "QuickTime Task"=C:\Program Files\QT Lite\QTTask.exe [2008-09-06 413696] "iTunesHelper"=E:\iTunes\iTunesHelper.exe [2008-11-20 290088] "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-11-18 81000] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-11-25 136600] "AdobeCS4ServiceManager"=C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Menu Démarrer\Programmes\Démarrage OpenOffice.org 3.0.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 267304] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2007-12-18 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoUserNameInStartMenu"=1 "NoSMHelp"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "F:\BitComet\BitComet.exe"="F:\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "E:\iTunes\iTunes.exe"="E:\iTunes\iTunes.exe:*:Enabled:iTunes" "C:\Program Files\HomePlayer1.5.5\HomePlayer.exe"="C:\Program Files\HomePlayer1.5.5\HomePlayer.exe:*:Enabled:HomePlayer" "C:\Program Files\HomePlayer\HomePlayer.exe"="C:\Program Files\HomePlayer\HomePlayer.exe:*:Enabled:HomePlayer" "C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser" "C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4" "C:\Program Files\Adobe\Adobe Dreamweaver CS4\Dreamweaver.exe"="C:\Program Files\Adobe\Adobe Dreamweaver CS4\Dreamweaver.exe:*:Enabled:Adobe Dreamweaver CS4" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" ======File associations====== .js - edit - "C:\Program Files\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1" .js - open - "C:\Program Files\Adobe\Adobe Dreamweaver CS4\Dreamweaver.exe","%1" ======List of files/folders created in the last 1 months====== 2008-11-27 19:03:13 ----D---- C:\rsit 2008-11-27 18:51:47 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\nView_Profiles 2008-11-26 18:46:15 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\FLEXnet 2008-11-26 18:39:57 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe 2008-11-26 18:28:23 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Media Player Classic 2008-11-25 20:32:10 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Macromedia 2008-11-25 20:31:50 ----D---- C:\Program Files\Macromedia 2008-11-25 12:50:19 ----A---- C:\WINDOWS\system32\javaws.exe 2008-11-25 12:50:19 ----A---- C:\WINDOWS\system32\javaw.exe 2008-11-25 12:50:19 ----A---- C:\WINDOWS\system32\java.exe 2008-11-25 12:50:19 ----A---- C:\WINDOWS\system32\deploytk.dll 2008-11-25 12:49:12 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Sun 2008-11-24 23:03:46 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Nero 2008-11-24 22:40:03 ----D---- C:\Program Files\Trend Micro 2008-11-24 07:38:14 ----A---- C:\WINDOWS\system32\mappings.txt 2008-11-24 07:36:31 ----D---- C:\WINDOWS\Prefetch 2008-11-24 07:36:09 ----D---- C:\Program Files\netmeeting 2008-11-24 07:32:53 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$ 2008-11-24 07:32:48 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$ 2008-11-24 07:32:43 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$ 2008-11-24 07:32:36 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$ 2008-11-24 07:32:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$ 2008-11-24 07:32:23 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$ 2008-11-24 07:32:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$ 2008-11-24 07:29:58 ----D---- C:\WINDOWS\system32\oobe 2008-11-24 07:29:58 ----D---- C:\Program Files\msn 2008-11-24 07:21:50 ----D---- C:\WINDOWS\EHome 2008-11-23 21:55:57 ----N---- C:\WINDOWS\system32\spmsg.dll 2008-11-23 21:35:29 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\vlc 2008-11-23 21:26:38 ----D---- C:\Program Files\HomePlayer 2008-11-23 20:42:11 ----A---- C:\WINDOWS\system32\MSVCP71.dll 2008-11-23 20:42:11 ----A---- C:\WINDOWS\system32\MFC71.dll 2008-11-23 20:42:11 ----A---- C:\WINDOWS\system32\aswBoot.exe 2008-11-23 20:42:09 ----D---- C:\Program Files\Alwil Software 2008-11-23 19:48:44 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Apple Computer 2008-11-23 19:48:32 ----A---- C:\WINDOWS\system32\GEARAspi.dll 2008-11-23 19:48:19 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6} 2008-11-23 19:46:35 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Apple 2008-11-23 19:37:07 ----A---- C:\WINDOWS\system32\bitcometres.dll 2008-11-23 18:41:49 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\OpenOffice.org 2008-11-23 18:17:33 ----D---- C:\Program Files\Mozilla Firefox 2008-11-23 18:11:34 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Macromedia 2008-11-23 18:03:08 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy 2008-11-23 17:56:13 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\FileZilla 2008-11-23 17:51:55 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Adobe 2008-11-23 17:38:00 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Thunderbird 2008-11-23 17:37:16 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Opera 2008-11-23 17:28:44 ----A---- C:\WINDOWS\Ascd_tmp.ini 2008-11-23 17:20:17 ----A---- C:\WINDOWS\system32\CapabilityTable.exe 2008-11-23 17:20:09 ----RA---- C:\WINDOWS\system32\SET29.tmp 2008-11-23 17:20:08 ----RA---- C:\WINDOWS\system32\SET27.tmp 2008-11-23 17:19:48 ----RA---- C:\WINDOWS\system32\fdco_l2052.dll 2008-11-23 17:19:48 ----RA---- C:\WINDOWS\system32\fdco_l1046.dll 2008-11-23 17:19:48 ----RA---- C:\WINDOWS\system32\fdco_l1042.dll 2008-11-23 17:19:48 ----RA---- C:\WINDOWS\system32\fdco_l1041.dll 2008-11-23 17:19:48 ----RA---- C:\WINDOWS\system32\fdco_l1040.dll 2008-11-23 17:19:48 ----RA---- C:\WINDOWS\system32\fdco_l1036.dll 2008-11-23 17:19:47 ----RA---- C:\WINDOWS\system32\fdco1ins.dll 2008-11-23 17:19:47 ----RA---- C:\WINDOWS\system32\fdco1.dll 2008-11-23 17:19:47 ----RA---- C:\WINDOWS\system32\fdco_l1034.dll 2008-11-23 17:19:47 ----RA---- C:\WINDOWS\system32\fdco_l1031.dll 2008-11-23 17:19:47 ----RA---- C:\WINDOWS\system32\fdco_l1028.dll 2008-11-23 17:19:42 ----RA---- C:\WINDOWS\system32\nvconrm.dll 2008-11-23 17:19:42 ----RA---- C:\WINDOWS\system32\bdco1ins.dll 2008-11-23 17:19:42 ----RA---- C:\WINDOWS\system32\bdco1.dll 2008-11-23 17:19:42 ----D---- C:\WINDOWS\NV12601908.TMP 2008-11-23 17:19:42 ----A---- C:\WINDOWS\system32\nvunrm.exe 2008-11-23 17:19:40 ----RA---- C:\WINDOWS\system32\nvusmb.exe 2008-11-23 17:11:17 ----A---- C:\WINDOWS\Ascd_log.ini 2008-11-23 17:10:57 ----A---- C:\WINDOWS\AS_Debug.txt 2008-11-23 17:08:30 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Mozilla 2008-11-23 17:07:25 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Xentient 2008-11-23 17:02:29 ----A---- C:\WINDOWS\system32\nvudisp.exe 2008-11-23 17:02:21 ----RA---- C:\WINDOWS\system32\NVUNINST.EXE 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nwiz.exe 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrszht.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrszhc.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrstr.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrssv.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrssl.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrssk.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsru.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsptb.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrspt.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrspl.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsno.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsnl.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsko.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsja.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsit.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrshu.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrshe.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsfr.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsfi.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsesm.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrses.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrseng.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsel.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsde.dll 2008-11-23 17:02:12 ----A---- C:\WINDOWS\system32\nvwrsda.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvwrscs.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvwrsar.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvwimg.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvwddi.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvsvc32.exe 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvshell.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrszht.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrszhc.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrstr.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrssv.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrssl.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrssk.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsru.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsptb.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrspt.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrspl.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsno.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsnl.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsko.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsja.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsit.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrshu.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrshe.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsfr.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsfi.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsesm.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrses.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrseng.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsel.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsde.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsda.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrscs.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvrsar.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvoglnt.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvnt4cpl.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvmctray.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvmccsrs.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvmccs.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nview.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvhwvid.dll 2008-11-23 17:02:11 ----A---- C:\WINDOWS\system32\nvdspsch.exe 2008-11-23 17:02:10 ----A---- C:\WINDOWS\system32\nvcpl.dll 2008-11-23 17:02:10 ----A---- C:\WINDOWS\system32\nvcolor.exe 2008-11-23 17:02:10 ----A---- C:\WINDOWS\system32\nvcodins.dll 2008-11-23 17:02:10 ----A---- C:\WINDOWS\system32\nvcod.dll 2008-11-23 17:02:10 ----A---- C:\WINDOWS\system32\nvappbar.exe 2008-11-23 17:02:10 ----A---- C:\WINDOWS\system32\nvapi.dll 2008-11-23 17:02:10 ----A---- C:\WINDOWS\system32\nv4_disp.dll 2008-11-23 17:02:10 ----A---- C:\WINDOWS\system32\keystone.exe 2008-11-23 17:01:59 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\WinRAR 2008-11-23 16:59:02 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\ACD Systems 2008-11-23 12:53:51 ----A---- C:\WINDOWS\system32\h323log.txt 2008-11-23 12:52:49 ----A---- C:\WINDOWS\system32\OVUI2RC.dll 2008-11-23 12:52:49 ----A---- C:\WINDOWS\system32\OVUI2.dll 2008-11-23 12:52:49 ----A---- C:\WINDOWS\system32\OVComS.exe 2008-11-23 12:52:48 ----A---- C:\WINDOWS\system32\OVComC.dll 2008-11-23 12:52:48 ----A---- C:\WINDOWS\system32\OVCodec2.dll 2008-11-23 12:52:47 ----A---- C:\WINDOWS\system32\vfwwdm32.dll 2008-11-23 12:51:31 ----A---- C:\WINDOWS\system32\ksuser.dll 2008-11-23 12:50:48 ----N---- C:\WINDOWS\system32\nvuide.exe 2008-11-23 12:50:39 ----A---- C:\WINDOWS\system32\usbui.dll 2008-11-23 12:47:00 ----A---- C:\WINDOWS\imsins.BAK 2008-11-23 12:46:56 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2008-11-23 12:46:54 ----A---- C:\WINDOWS\ODBCINST.INI 2008-11-23 12:46:43 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2008-11-23 12:46:43 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2008-11-23 12:46:42 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2008-11-23 12:46:38 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2008-11-23 12:46:37 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2008-11-23 12:46:37 ----RA---- C:\WINDOWS\system32\kbdur.dll 2008-11-23 12:46:37 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2008-11-23 12:46:37 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2008-11-23 12:46:37 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2008-11-23 12:46:37 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2008-11-23 12:46:36 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2008-11-23 12:46:36 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2008-11-23 12:46:36 ----RA---- C:\WINDOWS\system32\kbdru.dll 2008-11-23 12:46:36 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2008-11-23 12:46:36 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2008-11-23 12:46:31 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2008-11-23 12:46:31 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2008-11-23 12:46:30 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2008-11-23 12:46:30 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2008-11-23 12:46:30 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2008-11-23 12:46:30 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2008-11-23 12:46:30 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2008-11-23 12:46:26 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2008-11-23 12:46:26 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2008-11-23 12:46:26 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2008-11-23 12:46:26 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2008-11-23 12:46:26 ----RA---- C:\WINDOWS\system32\kbdest.dll 2008-11-23 12:46:21 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2008-11-23 12:46:21 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2008-11-23 12:46:21 ----RA---- C:\WINDOWS\system32\kbdro.dll 2008-11-23 12:46:21 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2008-11-23 12:46:20 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2008-11-23 12:46:20 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2008-11-23 12:46:20 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2008-11-23 12:46:20 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2008-11-23 12:46:20 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2008-11-23 12:46:20 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2008-11-23 12:46:20 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2008-11-23 12:46:20 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2008-11-23 12:46:20 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2008-11-23 12:46:09 ----A---- C:\WINDOWS\system32\irclass.dll 2008-11-23 12:46:09 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2008-11-23 12:46:08 ----A---- C:\WINDOWS\system32\spxcoins.dll 2008-11-23 12:46:08 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2008-11-23 12:46:08 ----A---- C:\WINDOWS\system32\dgsetup.dll 2008-11-23 12:46:04 ----A---- C:\WINDOWS\TASKMAN.EXE 2008-11-23 12:46:03 ----A---- C:\WINDOWS\system32\batt.dll 2008-11-23 12:46:02 ----A---- C:\WINDOWS\notepad.exe 2008-11-23 12:46:01 ----A---- C:\WINDOWS\system32\storprop.dll 2008-11-23 12:45:50 ----ASH---- C:\Documents and Settings\All Users.WINDOWS\Application Data\desktop.ini 2008-11-23 12:45:06 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft 2008-11-23 12:44:45 ----A---- C:\WINDOWS\setuplog.txt 2008-11-23 12:38:31 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Windows Genuine Advantage 2008-11-23 12:29:42 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Styler 2008-11-23 12:29:22 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Identities 2008-11-23 12:25:27 ----N---- C:\WINDOWS\system32\spmsg2.dll 2008-11-23 12:17:25 ----ASH---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\desktop.ini 2008-11-23 12:17:24 ----SD---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Microsoft 2008-11-23 12:17:24 ----D---- C:\Documents and Settings\Administrateur.2795A3F1A10D4FD\Application Data\Real 2008-11-23 12:16:59 ----A---- C:\WINDOWS\SchedLgU.Txt 2008-11-23 12:15:06 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\WLInstaller 2008-11-23 12:14:40 ----D---- C:\Program Files\Real Alternative 2008-11-23 12:14:38 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Apple Computer 2008-11-23 12:14:20 ----A---- C:\WINDOWS\system32\unrar.dll 2008-11-23 12:14:20 ----A---- C:\WINDOWS\system32\rmoc3260.dll 2008-11-23 12:14:20 ----A---- C:\WINDOWS\system32\pndx5032.dll 2008-11-23 12:14:20 ----A---- C:\WINDOWS\system32\pndx5016.dll 2008-11-23 12:14:20 ----A---- C:\WINDOWS\system32\pncrt.dll 2008-11-23 12:14:16 ----A---- C:\WINDOWS\system32\yv12vfw.dll 2008-11-23 12:14:16 ----A---- C:\WINDOWS\system32\xvidvfw.dll 2008-11-23 12:14:16 ----A---- C:\WINDOWS\system32\xvidcore.dll 2008-11-23 12:14:15 ----A---- C:\WINDOWS\system32\qt-dx331.dll 2008-11-23 12:14:15 ----A---- C:\WINDOWS\system32\dpl100.dll 2008-11-23 12:14:14 ----A---- C:\WINDOWS\system32\divx.dll 2008-11-23 12:14:13 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest 2008-11-23 12:14:13 ----A---- C:\WINDOWS\system32\ff_vfw.dll 2008-11-23 12:14:11 ----D---- C:\Program Files\K-Lite Codec Pack 2008-11-23 12:14:11 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Real 2008-11-23 12:14:11 ----A---- C:\WINDOWS\system32\msvcr71.dll 2008-11-23 12:11:58 ----D---- C:\Program Files\Nero 2008-11-23 12:11:58 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Nero 2008-11-23 12:11:29 ----N---- C:\WINDOWS\system32\WgaTray.exe 2008-11-23 12:11:29 ----N---- C:\WINDOWS\system32\WgaLogon.dll 2008-11-23 12:02:56 ----D---- C:\Program Files\Everest 2008-11-23 12:02:56 ----D---- C:\Program Files\Compare It! 2008-11-23 12:02:24 ----A---- C:\WINDOWS\system32\Tcpview.exe 2008-11-23 12:02:24 ----A---- C:\WINDOWS\system32\tcpvcon.exe 2008-11-23 12:02:23 ----A---- C:\WINDOWS\system32\Procexp.exe 2008-11-23 12:02:23 ----A---- C:\WINDOWS\system32\latency.exe 2008-11-23 12:02:23 ----A---- C:\WINDOWS\system32\gpuz.exe 2008-11-23 12:02:23 ----A---- C:\WINDOWS\system32\cpuz.ini 2008-11-23 12:02:23 ----A---- C:\WINDOWS\system32\cpuz.exe 2008-11-23 12:01:56 ----A---- C:\WINDOWS\setdebug.exe 2008-11-23 12:01:55 ----A---- C:\WINDOWS\system32\jit.dll 2008-11-23 12:01:55 ----A---- C:\WINDOWS\system32\javaee.dll 2008-11-23 12:01:55 ----A---- C:\WINDOWS\system32\dx3j.dll 2008-11-23 12:01:50 ----A---- C:\WINDOWS\system32\wjview.exe 2008-11-23 12:01:50 ----A---- C:\WINDOWS\system32\vmhelper.dll 2008-11-23 12:01:50 ----A---- C:\WINDOWS\system32\msjdbc10.dll 2008-11-23 12:01:49 ----A---- C:\WINDOWS\system32\msjava.dll 2008-11-23 12:01:49 ----A---- C:\WINDOWS\system32\msawt.dll 2008-11-23 12:01:49 ----A---- C:\WINDOWS\system32\jview.exe 2008-11-23 12:01:48 ----A---- C:\WINDOWS\system32\jdbgmgr.exe 2008-11-23 12:01:48 ----A---- C:\WINDOWS\system32\javart.dll 2008-11-23 12:01:48 ----A---- C:\WINDOWS\system32\javaprxy.dll 2008-11-23 12:01:48 ----A---- C:\WINDOWS\system32\javacypt.dll 2008-11-23 12:01:47 ----A---- C:\WINDOWS\system32\clspack.exe 2008-11-23 12:01:20 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2008-11-23 12:01:13 ----N---- C:\WINDOWS\system32\tzchange.exe 2008-11-23 12:00:59 ----A---- C:\WINDOWS\control.ini 2008-11-23 12:00:41 ----A---- C:\WINDOWS\OEWABLog.txt 2008-11-23 12:00:33 ----A---- C:\WINDOWS\system32\mapi32.dll 2008-11-23 12:00:32 ----D---- C:\WINDOWS\system32\dllcache 2008-11-23 11:59:30 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2008-11-23 11:59:24 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2008-11-23 11:58:35 ----A---- C:\WINDOWS\system32\acctres.dll 2008-11-23 11:58:28 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2008-11-23 11:58:15 ----A---- C:\WINDOWS\system32\wuweb.dll 2008-11-23 11:58:15 ----A---- C:\WINDOWS\system32\wucltui.dll 2008-11-23 11:58:15 ----A---- C:\WINDOWS\system32\wuauserv.dll 2008-11-23 11:58:14 ----A---- C:\WINDOWS\system32\wups.dll 2008-11-23 11:58:14 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2008-11-23 11:58:14 ----A---- C:\WINDOWS\system32\wuaueng.dll 2008-11-23 11:58:13 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2008-11-23 11:58:13 ----A---- C:\WINDOWS\system32\wuauclt.exe 2008-11-23 11:58:12 ----A---- C:\WINDOWS\system32\wuapi.dll 2008-11-23 11:58:12 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2008-11-23 11:58:12 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2008-11-23 11:58:12 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2008-11-23 11:58:11 ----A---- C:\WINDOWS\system32\qmgr.dll 2008-11-23 11:58:09 ----A---- C:\WINDOWS\system32\fltmc.exe 2008-11-23 11:58:09 ----A---- C:\WINDOWS\system32\fltlib.dll 2008-11-23 11:58:08 ----A---- C:\WINDOWS\system32\srsvc.dll 2008-11-23 11:58:08 ----A---- C:\WINDOWS\system32\srrstr.dll 2008-11-23 11:58:07 ----A---- C:\WINDOWS\system32\srclient.dll 2008-11-23 11:58:07 ----A---- C:\WINDOWS\system32\msoert2.dll 2008-11-23 11:58:07 ----A---- C:\WINDOWS\system32\msoeacct.dll 2008-11-23 11:58:05 ----A---- C:\WINDOWS\system32\inetres.dll 2008-11-23 11:58:04 ----A---- C:\WINDOWS\system32\inetcomm.dll 2008-11-23 11:58:01 ----A---- C:\WINDOWS\system32\schedsvc.dll 2008-11-23 11:58:01 ----A---- C:\WINDOWS\system32\mstinit.exe 2008-11-23 11:58:01 ----A---- C:\WINDOWS\system32\mstask.dll 2008-11-23 11:58:00 ----A---- C:\WINDOWS\system32\isign32.dll 2008-11-23 11:58:00 ----A---- C:\WINDOWS\system32\inetcfg.dll 2008-11-23 11:58:00 ----A---- C:\WINDOWS\system32\icwphbk.dll 2008-11-23 11:58:00 ----A---- C:\WINDOWS\system32\icwdial.dll 2008-11-23 11:56:56 ----A---- C:\WINDOWS\vbaddin.ini 2008-11-23 11:56:56 ----A---- C:\WINDOWS\vb.ini 2008-11-23 11:56:36 ----A---- C:\WINDOWS\T30DebugLogFile.txt 2008-11-23 11:56:10 ----A---- C:\WINDOWS\system32\sndvol32.exe 2008-11-23 11:56:07 ----A---- C:\WINDOWS\system32\getuname.dll 2008-11-23 11:56:06 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2008-11-23 11:56:06 ----A---- C:\WINDOWS\system32\tskill.exe 2008-11-23 11:56:06 ----A---- C:\WINDOWS\system32\reset.exe 2008-11-23 11:56:06 ----A---- C:\WINDOWS\system32\charmap.exe 2008-11-23 11:56:06 ----A---- C:\WINDOWS\system32\calc.exe 2008-11-23 11:56:05 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2008-11-23 11:56:05 ----A---- C:\WINDOWS\system32\tslabels.ini 2008-11-23 11:56:05 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2008-11-23 11:56:05 ----A---- C:\WINDOWS\system32\tscon.exe 2008-11-23 11:56:05 ----A---- C:\WINDOWS\system32\shadow.exe 2008-11-23 11:56:04 ----A---- C:\WINDOWS\system32\rwinsta.exe 2008-11-23 11:56:04 ----A---- C:\WINDOWS\system32\regini.exe 2008-11-23 11:56:04 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2008-11-23 11:56:04 ----A---- C:\WINDOWS\system32\qwinsta.exe 2008-11-23 11:56:04 ----A---- C:\WINDOWS\system32\qappsrv.exe 2008-11-23 11:56:04 ----A---- C:\WINDOWS\system32\msg.exe 2008-11-23 11:56:03 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2008-11-23 11:56:03 ----A---- C:\WINDOWS\system32\logoff.exe 2008-11-23 11:56:03 ----A---- C:\WINDOWS\system32\cdmodem.dll 2008-11-23 11:56:02 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2008-11-23 11:56:01 ----A---- C:\WINDOWS\system32\stclient.dll 2008-11-23 11:56:01 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2008-11-23 11:56:01 ----A---- C:\WINDOWS\system32\mtxex.dll 2008-11-23 11:56:01 ----A---- C:\WINDOWS\system32\mtxdm.dll 2008-11-23 11:56:01 ----A---- C:\WINDOWS\system32\comrepl.dll 2008-11-23 11:56:01 ----A---- C:\WINDOWS\system32\comaddin.dll 2008-11-23 11:56:00 ----A---- C:\WINDOWS\system32\comsnap.dll 2008-11-23 11:55:59 ----A---- C:\WINDOWS\system32\fxssend.exe 2008-11-23 11:55:59 ----A---- C:\WINDOWS\system32\fxsroute.dll 2008-11-23 11:55:59 ----A---- C:\WINDOWS\system32\fxsperf.ini 2008-11-23 11:55:59 ----A---- C:\WINDOWS\system32\fxsclntR.dll 2008-11-23 11:55:58 ----A---- C:\WINDOWS\system32\fxscfgwz.dll 2008-11-23 11:55:45 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2008-11-23 11:55:45 ----A---- C:\WINDOWS\system32\sndrec32.exe 2008-11-23 11:55:45 ----A---- C:\WINDOWS\system32\mplay32.exe 2008-11-23 11:55:44 ----A---- C:\WINDOWS\system32\clipbrd.exe 2008-11-23 11:55:43 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2008-11-23 11:55:42 ----A---- C:\WINDOWS\system32\remotepg.dll 2008-11-23 11:55:42 ----A---- C:\WINDOWS\system32\mstscax.dll 2008-11-23 11:55:42 ----A---- C:\WINDOWS\system32\mstsc.exe 2008-11-23 11:55:41 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2008-11-23 11:55:41 ----A---- C:\WINDOWS\system32\sessmgr.exe 2008-11-23 11:55:41 ----A---- C:\WINDOWS\system32\rdshost.exe 2008-11-23 11:55:41 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2008-11-23 11:55:41 ----A---- C:\WINDOWS\system32\rdchost.dll 2008-11-23 11:55:40 ----A---- C:\WINDOWS\system32\termsrv.dll 2008-11-23 11:55:40 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2008-11-23 11:55:40 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2008-11-23 11:55:40 ----A---- C:\WINDOWS\system32\rdpclip.exe 2008-11-23 11:55:40 ----A---- C:\WINDOWS\system32\qprocess.exe 2008-11-23 11:55:39 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2008-11-23 11:55:39 ----A---- C:\WINDOWS\system32\icaapi.dll 2008-11-23 11:55:39 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2008-11-23 11:55:38 ----A---- C:\WINDOWS\system32\mtxoci.dll 2008-11-23 11:55:38 ----A---- C:\WINDOWS\system32\msdtctm.dll 2008-11-23 11:55:38 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2008-11-23 11:55:37 ----A---- C:\WINDOWS\system32\xolehlp.dll 2008-11-23 11:55:37 ----A---- C:\WINDOWS\system32\msdtclog.dll 2008-11-23 11:55:37 ----A---- C:\WINDOWS\system32\msdtc.exe 2008-11-23 11:55:36 ----A---- C:\WINDOWS\system32\colbact.dll 2008-11-23 11:55:36 ----A---- C:\WINDOWS\system32\clbcatex.dll 2008-11-23 11:55:36 ----A---- C:\WINDOWS\system32\catsrvps.dll 2008-11-23 11:55:35 ----A---- C:\WINDOWS\system32\catsrvut.dll 2008-11-23 11:55:35 ----A---- C:\WINDOWS\system32\catsrv.dll 2008-11-23 11:55:34 ----A---- C:\WINDOWS\system32\fxsxp32.dll 2008-11-23 11:55:34 ----A---- C:\WINDOWS\system32\comuid.dll 2008-11-23 11:55:34 ----A---- C:\WINDOWS\system32\comsvcs.dll 2008-11-23 11:55:34 ----A---- C:\WINDOWS\system32\clbcatq.dll 2008-11-23 11:55:33 ----A---- C:\WINDOWS\system32\fxswzrd.dll 2008-11-23 11:55:33 ----A---- C:\WINDOWS\system32\fxsui.dll 2008-11-23 11:55:33 ----A---- C:\WINDOWS\system32\fxstiff.dll 2008-11-23 11:55:33 ----A---- C:\WINDOWS\system32\fxst30.dll 2008-11-23 11:55:33 ----A---- C:\WINDOWS\system32\fxssvc.exe 2008-11-23 11:55:33 ----A---- C:\WINDOWS\system32\fxsst.dll 2008-11-23 11:55:32 ----A---- C:\WINDOWS\system32\fxsres.dll 2008-11-23 11:55:32 ----A---- C:\WINDOWS\system32\fxsperf.dll 2008-11-23 11:55:32 ----A---- C:\WINDOWS\system32\fxsmon.dll 2008-11-23 11:55:32 ----A---- C:\WINDOWS\system32\fxsext32.dll 2008-11-23 11:55:32 ----A---- C:\WINDOWS\system32\fxsevent.dll 2008-11-23 11:55:32 ----A---- C:\WINDOWS\system32\fxsdrv.dll 2008-11-23 11:55:32 ----A---- C:\WINDOWS\system32\fxscover.exe 2008-11-23 11:55:31 ----A---- C:\WINDOWS\system32\fxscomex.dll 2008-11-23 11:55:31 ----A---- C:\WINDOWS\system32\fxscom.dll 2008-11-23 11:55:31 ----A---- C:\WINDOWS\system32\fxsclnt.exe 2008-11-23 11:55:31 ----A---- C:\WINDOWS\system32\fxsapi.dll 2008-11-23 11:55:18 ----A---- C:\WINDOWS\system32\servdeps.dll 2008-11-23 11:55:18 ----A---- C:\WINDOWS\system32\mmfutil.dll 2008-11-23 11:55:18 ----A---- C:\WINDOWS\system32\licwmi.dll 2008-11-23 11:55:17 ----A---- C:\WINDOWS\system32\cmprops.dll 2008-11-20 19:04:49 ----D---- C:\Program Files\GIF Movie Gear 2008-11-12 23:45:26 ----HDC---- C:\WINDOWS\$NtUninstallKB957097_0$ 2008-11-12 23:45:21 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$ 2008-11-12 23:45:14 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$ 2008-11-09 19:05:48 ----D---- C:\WINDOWS\pss 2008-11-09 17:38:25 ----D---- C:\Program Files\Search Settings 2008-11-09 17:34:58 ----D---- C:\Program Files\Free FLV Converter 2008-11-09 15:11:35 ----D---- C:\Program Files\iPod 2008-11-09 15:02:43 ----D---- C:\Program Files\Fichiers communs\AVSMedia 2008-11-08 17:21:47 ----D---- C:\Program Files\Fichiers communs\SWF Studio 2008-11-01 16:31:15 ----D---- C:\Program Files\Flash Slideshow Maker Professional 2008-11-01 11:59:01 ----D---- C:\wamp ======List of files/folders modified in the last 1 months====== 2008-11-27 19:03:14 ----D---- C:\WINDOWS\Temp 2008-11-27 18:53:25 ----D---- C:\WINDOWS\Network Diagnostic 2008-11-27 18:30:40 ----D---- C:\Program Files\Mozilla Thunderbird 2008-11-27 06:36:19 ----D---- C:\WINDOWS\system32\CatRoot2 2008-11-27 06:36:17 ----SD---- C:\WINDOWS\Tasks 2008-11-27 06:33:20 ----D---- C:\WINDOWS 2008-11-26 18:40:01 ----SHD---- C:\WINDOWS\Installer 2008-11-26 18:38:37 ----D---- C:\Program Files\Fichiers communs\Adobe 2008-11-26 18:38:17 ----D---- C:\Program Files\Adobe 2008-11-26 08:01:18 ----SD---- C:\WINDOWS\Downloaded Program Files 2008-11-26 08:01:18 ----HD---- C:\WINDOWS\inf 2008-11-26 08:01:17 ----D---- C:\WINDOWS\system32 2008-11-25 20:31:50 ----D---- C:\Program Files 2008-11-25 18:55:46 ----D---- C:\WINDOWS\system32\drivers 2008-11-25 18:55:45 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$ 2008-11-25 12:49:59 ----D---- C:\Program Files\Java 2008-11-24 19:56:01 ----D---- C:\Documents and Settings 2008-11-24 19:09:33 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$ 2008-11-24 07:50:13 ----D---- C:\WINDOWS\system32\CatRoot 2008-11-24 07:49:39 ----D---- C:\Program Files\Messenger 2008-11-24 07:49:37 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$ 2008-11-24 07:37:50 ----D---- C:\WINDOWS\Debug 2008-11-24 07:36:10 ----D---- C:\WINDOWS\Help 2008-11-24 07:35:56 ----D---- C:\WINDOWS\system32\Setup 2008-11-24 07:35:56 ----D---- C:\WINDOWS\AppPatch 2008-11-24 07:35:55 ----D---- C:\WINDOWS\system32\wbem 2008-11-24 07:35:54 ----RSD---- C:\WINDOWS\Fonts 2008-11-24 07:32:02 ----D---- C:\WINDOWS\security 2008-11-24 07:30:10 ----D---- C:\WINDOWS\system32\inetsrv 2008-11-24 07:30:10 ----D---- C:\WINDOWS\ime 2008-11-24 07:30:00 ----D---- C:\WINDOWS\system32\fr-fr 2008-11-24 07:29:59 ----D---- C:\WINDOWS\system32\usmt 2008-11-24 07:29:58 ----D---- C:\WINDOWS\system32\fr 2008-11-24 07:29:58 ----D---- C:\WINDOWS\system32\bits 2008-11-24 07:29:58 ----D---- C:\WINDOWS\PeerNet 2008-11-24 07:29:58 ----D---- C:\WINDOWS\l2schemas 2008-11-24 07:29:57 ----D---- C:\WINDOWS\Media 2008-11-24 07:27:39 ----D---- C:\WINDOWS\system32\Restore 2008-11-24 07:27:39 ----D---- C:\WINDOWS\system32\npp 2008-11-24 07:27:37 ----D---- C:\WINDOWS\msagent 2008-11-24 07:27:36 ----D---- C:\WINDOWS\srchasst 2008-11-24 07:27:35 ----D---- C:\WINDOWS\system32\Com 2008-11-24 07:27:33 ----D---- C:\Program Files\Outlook Express 2008-11-24 07:27:31 ----D---- C:\Program Files\Fichiers communs\System 2008-11-24 07:27:18 ----D---- C:\WINDOWS\system 2008-11-24 07:24:25 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$ 2008-11-24 07:15:28 ----D---- C:\WINDOWS\system32\config 2008-11-23 22:00:51 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$ 2008-11-23 22:00:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$ 2008-11-23 22:00:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$ 2008-11-23 22:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB957095_0$ 2008-11-23 22:00:03 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$ 2008-11-23 21:59:00 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$ 2008-11-23 21:58:53 ----HDC---- C:\WINDOWS\$NtUninstallKB954211_0$ 2008-11-23 21:57:41 ----HDC---- C:\WINDOWS\$NtUninstallKB956841_0$ 2008-11-23 21:57:23 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$ 2008-11-23 21:57:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951072-v2$ 2008-11-23 21:57:05 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$ 2008-11-23 21:56:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$ 2008-11-23 21:55:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$ 2008-11-23 19:48:32 ----DC---- C:\WINDOWS\system32\DRVSTORE 2008-11-23 19:48:02 ----D---- C:\Program Files\Bonjour 2008-11-23 19:47:37 ----D---- C:\Program Files\QT Lite 2008-11-23 17:56:43 ----D---- C:\Program Files\FileZilla FTP Client 2008-11-23 17:55:46 ----D---- C:\Program Files\CDBurnerXP 2008-11-23 17:51:25 ----D---- C:\Program Files\Opera 2008-11-23 17:27:11 ----D---- C:\WINDOWS\nview 2008-11-23 17:13:33 ----D---- C:\WINDOWS\ASUSInstAll 2008-11-23 17:00:49 ----SHD---- C:\RECYCLER 2008-11-23 17:00:36 ----D---- C:\WINDOWS\system32\appmgmt 2008-11-23 12:46:47 ----A---- C:\WINDOWS\system.ini 2008-11-23 12:44:30 ----D---- C:\WINDOWS\WBEM 2008-11-23 12:44:30 ----D---- C:\WINDOWS\system32\en 2008-11-23 12:40:24 ----D---- C:\WINDOWS\Offline Web Pages 2008-11-23 12:39:57 ----D---- C:\WINDOWS\twain_32 2008-11-23 12:39:49 ----D---- C:\WINDOWS\system32\ras 2008-11-23 12:39:42 ----D---- C:\WINDOWS\system32\icsxml 2008-11-23 12:39:19 ----D---- C:\WINDOWS\system32\1036 2008-11-23 12:38:22 ----D---- C:\WINDOWS\NV16922004.TMP 2008-11-23 12:38:13 ----D---- C:\WINDOWS\Freecorder Toolbar 2008-11-23 12:38:10 ----HDC---- C:\WINDOWS\$NtUninstallKB953839$ 2008-11-23 12:38:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$ 2008-11-23 12:38:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$ 2008-11-23 12:38:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$ 2008-11-23 12:38:10 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$ 2008-11-23 12:38:10 ----D---- C:\WINDOWS\Applian FLV Player 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB951698_0$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB950749$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB948881$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB948590$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB946026$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB945553$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB943055$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB941693$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$ 2008-11-23 12:38:09 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$ 2008-11-23 12:35:07 ----RSD---- C:\WINDOWS\assembly 2008-11-23 12:32:26 ----D---- C:\WINDOWS\Microsoft.NET 2008-11-23 12:28:49 ----D---- C:\WINDOWS\system32\MsDtc 2008-11-23 12:28:49 ----D---- C:\WINDOWS\repair 2008-11-23 12:26:04 ----D---- C:\WINDOWS\system32\en-us 2008-11-23 12:26:02 ----D---- C:\WINDOWS\system32\XPSViewer 2008-11-23 12:24:53 ----D---- C:\WINDOWS\WinSxS 2008-11-23 12:17:52 ----D---- C:\WINDOWS\SoftwareDistribution 2008-11-23 12:17:03 ----SHD---- C:\System Volume Information 2008-11-23 12:13:38 ----D---- C:\Program Files\Fichiers communs\ACD Systems 2008-11-23 12:10:18 ----D---- C:\WINDOWS\Registration 2008-11-23 12:09:59 ----D---- C:\WINDOWS\system32\URTTemp 2008-11-23 12:07:08 ----AD---- C:\WINDOWS\i386 2008-11-23 12:02:53 ----D---- C:\WINDOWS\VAIO 2008-11-23 12:02:40 ----D---- C:\Program Files\WinRAR 2008-11-23 12:00:56 ----A---- C:\WINDOWS\win.ini 2008-11-23 12:00:09 ----D---- C:\WINDOWS\system32\ias 2008-11-23 11:58:36 ----D---- C:\Program Files\Windows Media Player 2008-11-23 11:58:35 ----D---- C:\Program Files\Fichiers communs\Services 2008-11-23 11:58:24 ----D---- C:\Program Files\Internet Explorer 2008-11-23 11:56:18 ----D---- C:\Program Files\Windows Media Connect 2 2008-11-23 11:55:59 ----D---- C:\WINDOWS\addins 2008-11-23 11:53:53 ----SH---- C:\boot.ini 2008-11-22 17:13:16 ----D---- C:\Program Files\FlashGet 2008-11-20 19:09:04 ----D---- C:\Downloads 2008-11-12 23:45:25 ----HD---- C:\WINDOWS\$hf_mig$ 2008-11-09 15:02:43 ----D---- C:\Program Files\Fichiers communs 2008-11-03 16:10:26 ----A---- C:\WINDOWS\system32\mrt.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2008-11-18 26944] R1 AmdK8;Pilote de processeur AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2004-08-28 43520] R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2008-11-18 110160] R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2008-11-18 50864] R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-11-18 20560] R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2008-11-18 94032] R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800] R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2008-11-18 23152] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464] R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920] R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944] R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-28 5810] R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-01-24 3535520] R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-02-17 34176] R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-02-17 13056] R3 QCDonner;Logitech QuickCam Express; C:\WINDOWS\system32\DRIVERS\OVCD.sys [2001-08-17 28032] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2006-10-23 59264] R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2007-12-18 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2007-12-18 82944] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] S4 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2007-12-18 12032] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424] R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-11-18 18752] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-11-18 155160] R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-11-25 152984] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-01-24 131139] R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592] R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-11-18 254040] R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-11-18 352920] R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-11-20 536872] S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-11-26 655624] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256] S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880] -----------------EOF-----------------

Bonsoir Thanos et merci pour ton aide. C bien toujours la cas. Pourtant, je ne pense pas naviguer sur des sites louches ... lol Exemple : http://wordpress.org/ ou quand je suis connecter sur myspace, pour passer sur le profil d'un ami. J'arrive sur une page blanche avec comme alerte "La connexion a échoué ...." J'ai essayé avec Firefox, Opera et même IE mais rien a faire. je vais essayer ce que tu me préconise et je poste à la suite .. A toute

Snif .... mon soucis ne vous inspire pas ou suis-je un cas clinique ? lol Amitiés,

Bonsoir tout le monde, Je viens de reformater ce week-end et je n'arrive plus a naviguer sur certaines pages web. j'ai déjà eu ce soucis suite a un formatage. Il semblerait que cela vienne d'une mise a jour de sécurité windows qui bloque certain site. Je vous transmet mon rapport hijackthis en espérant un petit coup de main. Merci pour votre aide si précieuse et longue vie au forum. Amitiés, ***************** Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 22:46:16, on 24/11/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.20900) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\UberIcon\UberIcon Manager.exe C:\Windows\System32\VisualTaskTips.exe C:\Program Files\styler\Styler.exe C:\Program Files\Windows Defender\MSASCui.exe C:\WINDOWS\system32\RUNDLL32.EXE E:\iTunes\iTunesHelper.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\OpenOffice.org 3\program\soffice.exe C:\Program Files\OpenOffice.org 3\program\soffice.bin C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\WINDOWS\system32\msiexec.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.fr/keyword/%s R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Ultimate Edition R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O1 - Hosts: ::1 localhost O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - F:\BitComet\tools\BitCometBHO_1.2.1.2.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\styler\TB\StylerTB.dll O4 - HKLM\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKLM\..\Run: [uberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" O4 - HKLM\..\Run: [VisualTaskTips] C:\Windows\System32\VisualTaskTips.exe O4 - HKLM\..\Run: [Vistadrv] C:\WINDOWS\system32\Vistadrive\vsdrv.exe O4 - HKLM\..\Run: [styler] C:\Program Files\styler\Styler.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QT Lite\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "E:\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'Default user') O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe O8 - Extra context menu item: &D&ownload &with BitComet - res://F:\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: &D&ownload all video with BitComet - res://F:\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: &D&ownload all with BitComet - res://F:\BitComet\BitComet.exe/AddAllLink.htm O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://F:\BitComet\tools\BitCometBHO_1.2.1.2.dll/206 (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 7592 bytes ****************