kalchrof

Bonjour tomtom95, je reviens vers toi après avoir effectué la procédure https://support.microsoft.com/fr-fr/kb/947215 qui a fonctionné nickel., Ensuite, j'ai pu supprimer AVG, spybot et quicktime (plus de trace de µtorrent...), j'ai lancé zhpfix, nickel aussi. Et puis après avoir lancé adware, au redemarrage, impossible de me connecté à la box, ni wifi ni lan, "accès limité". quand je lance recherche de problème, diagnostic, j'obtiens un message de problème de pilote carte réseau. Donc, je suis coincé et j'accueillerai avec gratitude toute suggestion résolutive... Merci pour ton aide , à bientot.

Bonsoir tomtom95, j'hésitait pour la 1er procédure, je vais la tenter dès que je récupère l'ordi. Le bogosse l'a pris pour le week-end,il travaille avec un profil guest , sans mot de passe ni possibilité d'installer d'autre pourriciel... je reviens vers toi des que j'ai du nouveau. Encore merci pour les conseils, et pour ce site d'assistance au top Bonne soirée

J'ai essayé le microsoft fix it 50446 mais là aussi mot de passe administrateur demandé! donc ça coince. idem avec commande mmc, ajout d'un nouvel utilisateur administrateur refusé...

Bonjour tomtom95, merci pour ta disponibilité. Quelques précisions: je suis sur l'ordi de mon fils 15 ans qui a installé les pourriciels en meme temps que le logiciel pour sa platine _DJ. depuis, en cherchant à les desinstaller, la situation empire - perte de son mot de passe administrateur! après excursion adolescente dans les reglages du BIOS !! avec ce message quand nous tentons d'ouvrir sa session : "échec de l'ouverture de session par le service Service de profil utilisateur. Impossible de charger le profil utilisateur." - ouverture de session possible avec compte guest mais, of course, pas en profil administrateur Donc, quand je veux désinstaller AVG et spybot, apparait une fenetre demandant mot de passe pour utilisateur Administrateur, mais le mot de passe n'est pas reconnu, donc pas de désinstallation possible j'ai essayé le microsoft fix it 50446 mais là aussi mot de passe administrateur demandé! donc ça coince. idem avec commande mmc, ajout d'un nouvel utilisateur administrateur refusé... Voilavoila, l'ordi tourne quand meme pour son DJing, sans connexion wifi chez sa maman... je lui rend l'ordi tout à l'heure pour le week end, mais je suis ouvert à toutes les suggestions ou solutions que tu voudras bien me proposer ( quoique j'ai une petit idée de son cadeau pour le prochain noel ) Merci , à bientot Cordialement:

Bonjour, pouvez vous m'aider avec ces rapports ZHP , s'il vous plait?? l'ordi n'est pas tout neuf mais bon... merci d'avance. Edit de Notpa : masqué long long rapport pour alléger la lecture. La prochaine fois, merci d'héberger les longs rapports sous Cjoint.

bonsoir, merci christine pour l'info qui confirme ce que je craignais.

je sollicite à nouveau votre aide pour ce pb de boot impossible; je n'ai pas le cd windows xp d'origine mais un cd millenium fourni par la fnac, à l'epoque ou g acheté l'ordi en 2004); donc qd j'essaie de booter avec ce cd , j'ai un message me proposant de partionner; mais comme je n'ai qu 6,5 Go d'espace libre sur le DD, je crains que ce ne soit pas suffisant. help, je voudrais recuperer mes photos des enfants et les qq videos que j'ai faites qd ils etqient + petits... merci d'avance pour votre aide. P.S j'ai à nouveau l'adsl at home et j'utilisze le portable toshiba (vista) de ma chère et tendre.

bonjour à tous, je ne peux pas rebooter après un message d'interruption windows oû j'a eu le temps d'apercevoir kernel et win 32... le boot s'arrète sur l'ecran de demarrage (après boot from CD x2) avec le message: "err. contact disk, ctrl+alt+supp pour redemarrer" ce message est survenu après maintenance avec tune up utilities(maintenance en 1 clic et defragmentation). j'ai fait une analyse malwarebyte la veille et j'ai supprimé les elements en quarantaine d'une infection précédente... je ne sais pas si cette suppression puis la defrag aurait pu declencher une verole?? j'utilise antivir ccleaner spybot, tous mis à jour recemment mais depuis merc 26/08 ma neufbox est en panne... donc pas de connexion internet à dom , je post depuis mon boulot. pack bell ixtrem, XP sp3, antivir, merci de votre avis eclairé

dernier episode j'espere de ce long binz. suite à ma derniere reponse, j'ai surfé et devinez quoi "vous n'avez pas le flash player d'adauauauaube" et que non pasque je peux pas l'installeeeeer. donc , grace à zebulon encore une fois, j'ai resolu mon pb grace à ici et plus particulierement ce lien là et plus paticulierement (3h plus tard) la derniere proceduuuuuure. bref ce fut long mais ce serait bon, esperons, on on on

de + en + bizarre. j'ai reinstalllé internet explorer 8 , ce qui a resolu le pb d'affishage des flash mais qd Je me suis connecté sur ce forum pour le signaler, j'ai à nouveau le blip fatal avec le message ce site requiert macromedia ... puis les anim flaSH SONT FINALEMENT VISIBLES. MSYSTèRES INSONDABLE S DE L'INFORMATIQUE

bon mon petit post a bien fait reagir... pardon d'avoir été imprecis mais l'intallation depuis le site de adobe est un echec à chq fois, et ce après avoir accepte l'install suggérée par IE. j'ai deja eu ce pb il y a qq mois et pendant une desinfection menée de main de maitre par Gof, il m'avait dirigé vers un "site alternatif" (il me semble?) pour telecharger flash player. pour finir, alors que lors de cettmême desinfection, Gof mavait fait desinstaller norton Av et update, j'ai eu la surprise de voir reapparaitre un pop up pour analyse de l'ordi par norton

bonjour à ous, je sollicite votre aide: j'ai mis à jour windows update dim 16/08 et depuis je ne peux pas afficher correctement les pages web, IE8 me demande d'installer la dernière version d'Adobe flash payer mais l'installation n'est pas possible. quelqu'un pourrait il m'aider, svp en remerciant d'avance.

merci Gof, toute ma reconnaissance pour avoir consacré ton temps à résoudre mon pb. longue vie aux zebuloniens.

ok, autant pour moi... j'ai effectué les actions avec del.bat et del.reg ainsi que la suppression du dossier Norton Internet Security avec tune up shredder.

Gof, il me reste un dossier Norton Internet Security ds program files sinon plus de Live Update. qd j'ai cliqué sur chacun des liens de ton post précédent, j'ai d'abord eu une page de free.fr?? (j'ai copié l'adresse de la 1ère : http://dl.free.fr/getfile.pl?file=/oZvD7IqP)

bonsoir Gof, super boulot, l'ordi est comme neuf... voici le bloc note de MsLook REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\bhoreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\ExpandFrom] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\ExpandTo] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services] "Boonty Games"=dword:00000003 "SymAppCore"=dword:00000002 "Symantec Core LC"=dword:00000003 "LiveUpdate Notice Service"=dword:00000002 "LiveUpdate Notice Ex"=dword:00000002 "LiveUpdate"=dword:00000003 "ISPwdSvc"=dword:00000003 "CLTNetCnService"=dword:00000002 "ccSetMgr"=dword:00000002 "ccEvtMgr"=dword:00000002 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^DSLMON.lnk] "backup"="C:\\WINDOWS\\pss\\DSLMON.lnkCommon Startup" "location"="Common Startup" "command"="C:\\PROGRA~1\\SAGEM\\SAGEMF~1\\dslmon.exe " "item"="DSLMON" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ATIPTA] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="atiptaxx" "hkey"="HKLM" "command"="C:\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ccApp] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ccApp" "hkey"="HKLM" "command"="\"C:\\Program Files\\Fichiers communs\\Symantec Shared\\ccApp.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ccRegVfy] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ccRegVfy" "hkey"="HKLM" "command"="\"C:\\Program Files\\Fichiers communs\\Symantec Shared\\ccRegVfy.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DMXLauncher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DMXLauncher" "hkey"="HKLM" "command"="\"C:\\Program Files\\Roxio\\Media Experience\\DMXLauncher.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MimBoot] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mimboot" "hkey"="HKLM" "command"="C:\\PROGRA~1\\MUSICM~1\\MUSICM~1\\mimboot.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MMTray] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mm_tray" "hkey"="HKLM" "command"="\"C:\\Program Files\\Musicmatch\\Musicmatch Jukebox\\mm_tray.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MsnMsgr] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MsnMsgr" "hkey"="HKCU" "command"="\"C:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\" /background" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\osCheck] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="osCheck" "hkey"="HKLM" "command"="\"C:\\Program Files\\Norton AntiVirus\\osCheck.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Picasa Media Detector] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="PicasaMediaDetector" "hkey"="HKLM" "command"="C:\\Program Files\\Picasa2\\PicasaMediaDetector.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RoxioDragToDisc] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DrgToDsc" "hkey"="HKLM" "command"="\"C:\\Program Files\\Roxio\\Drag-to-Disc\\DrgToDsc.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RoxWatchTray] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RoxWatchTray9" "hkey"="HKLM" "command"="\"C:\\Program Files\\Fichiers communs\\Roxio Shared\\9.0\\SharedCOM\\RoxWatchTray9.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TkBellExe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="realsched" "hkey"="HKLM" "command"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WinampAgent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="winampa" "hkey"="HKLM" "command"="\"C:\\Program Files\\Winamp\\winampa.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state] "system.ini"=dword:00000000 "win.ini"=dword:00000000 "bootini"=dword:00000000 "services"=dword:00000002 "startup"=dword:00000002

tt s'est bien passé, ilreste Java 6 Update 12 ds ajouter/supp l'ordi ne plante pas et repond impec! j'ai supprimer "C:\ComboFix.txt <=" ce fichier manuellement et te post le rapport RTIS info.txt logfile of random's system information tool 1.05 2009-03-19 14:22:35 ======Uninstall list====== -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419} Adobe AIR-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F} Adobe Flash Player 9 ActiveX-->MsiExec.exe /X{58BAA8D0-404E-4585-9FD3-ED1BB72AC2EE} Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Media Player-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.amp 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 Adobe Media Player-->MsiExec.exe /I{1EBB57D4-63FF-87CC-A0F0-D73982CF6008} Adobe Reader 9.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001} Adobe Shockwave Player 11-->C:\WINDOWS\system32\adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543} Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4} ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean Auto Gordian Knot 2.45-->C:\Program Files\AutoGK\uninst.exe AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe" Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3} Brickshooter Egypt-->"C:\Program Files\Brickshooter Egypt\unins000.exe" Canon i560-->C:\WINDOWS\system32\CNMCP58.exe "-PRINTERNAMECanon i560" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon i560 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon i560 Installer\Inst2\cnmi040c.dll" CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" Coffret de pilotes Logitech Legacy USB Camera-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\10.51.2023\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"legacyqcam_10.51" /clone_wait /hide_progress Coffret de pilotes Logitech QuickCam-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\11.80.1048\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"lvdrivers_11.80" /clone_wait /hide_progress Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe" dBpoweramp DSP Effects-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp DSP Effects.dat dBpoweramp Musepack Codec-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Musepack Codec.dat dBpoweramp Music Converter-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Music Converter.dat dBpoweramp WavPack Codec-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp WavPack Codec.dat Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976} DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN DVDFab Platinum 3.0.9.8-->"C:\Program Files\DVDFab Platinum 3\unins000.exe" e-Carte Bleue Banque Populaire-->"C:\Program Files\InstallShield Installation Information\{B0900CB5-8EC0-43B4-9DAC-A32FE52DC864}\setup.exe" -runfromtemp -l0x040c -removeonly eMule Applejuice-->C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\eMule Applejuice\uninstall.exe EncFlac 1.1.2-->"C:\Program Files\Winamp\EncFlac-Uninstall.exe" EncVorbis 1.1-->"C:\Program Files\Winamp\EncVorbis-Uninstall.exe" ESET Online Scanner-->C:\WINDOWS\system32\OnlineScannerUninstaller.exe Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D} FLAC 1.1.4b (remove only)-->C:\Program Files\FLAC\uninstall.exe foobar2000 v0.9.5.6-->"C:\Program Files\foobar2000\uninstall.exe" Furnish Pro-->C:\WINDOWS\unvise32.exe C:\Program Files\Furnish Pro\Furnish Pro uninstal.log getPlus® for Adobe-->"C:\Program Files\NOS\bin\getPlus_HelperSvc.exe" /UninstallGet1 HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall iTunes-->MsiExec.exe /I{585776BC-4BD6-4BD2-A19A-1D6CB44A403B} Java 6 Update 12-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF} LG PC Suite-->C:\Program Files\InstallShield Installation Information\{993960EE-CA4D-443F-8F88-E24260DD5FD2}\setup.exe -runfromtemp -l0x040c -removeonly LG USB Modem driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C3ABE126-2BB2-4246-BFE1-6797679B3579}\setup.exe" -l0x40c LG -removeonly Logitech QuickCam-->MsiExec.exe /X{3AF8FCCD-F51A-4014-9002-F195E1CBC876} Logitech Updater-->MsiExec.exe /I{53735ECE-E461-4FD0-B742-23A352436D3A} Luxor 3-->C:\PROGRA~1\GAMEHO~1\LUXOR3~1\UNWISE.EXE /U C:\PROGRA~1\GAMEHO~1\LUXOR3~1\INSTALL.LOG Ma-Config.com plugin-->MsiExec.exe /I{6F06A42D-525C-49ED-8622-E16790956CD8} Macromedia Flash Player 8-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5 Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929} Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 1-->MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783} Microsoft Baseline Security Analyzer 2.1-->MsiExec.exe /I{6AF5CAB9-FD0A-494F-8AA6-784D4B5D06C5} Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE} Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE} Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB} Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE} Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE} Microsoft Office Professional 2007-->MsiExec.exe /X{91120000-0014-0000-0000-0000000FF1CE} Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE} Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE} Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE} Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE} Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE} Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE} Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE} Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE} Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE} Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft Word 2002-->MsiExec.exe /I{911B040C-6000-11D3-8CFE-0050048383C9} Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E} Multi Virus Cleaner 2008-->"C:\Program Files\AxBx\Multi Virus Cleaner 2008\unins000.exe" Navigation par onglets (Windows Live Toolbar)-->MsiExec.exe /X{E916E61F-DE9D-4EAF-91E1-CEB50016326A} Neuf - Media Center-->C:\Program Files\Neuf\Media Center\uninstall.exe OpenOffice.org 2.4-->MsiExec.exe /I{1E0FF527-971B-4BBF-83D1-987E8DEE437D} Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe" Pixie 1.4.1-->"C:\Program Files\Pixie\unins000.exe" QuickTime-->MsiExec.exe /I{1838C5A2-AB32-4145-85C1-BB9B8DFA24CD} RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85} Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7} Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2} Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B} Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77} Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85} Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F} Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC} Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C} Security Update for Visio 2007 (KB947590)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {6BAD036C-261F-4BEF-96CF-C20678D07A41} SFR - Kit de connexion-->C:\Program Files\Neuf\Kit\uninstall.exe Spybot - Search & Destroy 1.5.2.20-->"C:\WINDOWS\unins000.exe" SUPER © Version 2007.bld.23 (July 4, 2007)-->C:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0 TuneUp Utilities 2008-->MsiExec.exe /I{5888428E-699C-4E71-BF71-94EE06B497DA} UnzipThemAll 1.3-->"C:\Program Files\UnzipThemAll\unins000.exe" Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756} Update for Office 2007 (KB946691)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278} Update for Outlook 2007 Junk Email Filter (kb962871)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {297857BF-4011-449B-BD74-DB64D182821C} Version d'évaluation de Microsoft Office Professional 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROR /dll OSETUP.DLL VideoLAN VLC media player 0.8.6d-->C:\Program Files\VideoLAN\VLC\uninstall.exe VobSub v2.23 (Remove Only)-->"C:\Program Files\Gabest\VobSub\uninstall.exe" Winamp Essentials Pack v5.34-->C:\Program Files\Winamp\UninstallWinampEssentials.exe Winamp Toolbar for Firefox-->"C:\Documents and Settings\christophe.SN1006475\Application Data\Mozilla\Firefox\Profiles\pl9g7xxp.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\uninstall.exe" Winamp-->"C:\Program Files\Winamp\UninstWA.exe" Windows Defender-->MsiExec.exe /I{A06275F4-324B-4E85-95E6-87B2CD729401} Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411} Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D} Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D} Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" WOT for Internet Explorer-->MsiExec.exe /X{08E16CBF-7029-4881-83DF-D0B3A63030B4} Xvid 1.1.2 final uninstall-->"C:\Program Files\Xvid\unins001.exe" XviD MPEG4 Video Codec (remove only)-->"C:\WINDOWS\system32\xvid-uninstall.exe" Yahoo! Anti-Spy-->C:\PROGRA~1\Yahoo!\Common\unypsr.exe Yahoo! Toolbar avec bloqueur de fenêtres pop-up-->C:\PROGRA~1\Yahoo!\Common\unyt.exe System event log Computer Name: SN100647590008 Event Code: 7000 Message: Le service LiveUpdate n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle. Record Number: 2052309 Source Name: Service Control Manager Time Written: 20090319070758.000000+060 Event Type: erreur User: Computer Name: SN100647590008 Event Code: 7009 Message: Délai (30000 millisecondes) d'attente pour une connexion du service LiveUpdate. Record Number: 2052308 Source Name: Service Control Manager Time Written: 20090319070758.000000+060 Event Type: erreur User: Computer Name: SN100647590008 Event Code: 10005 Message: DCOM a reçu l'erreur "%1053" lors de la mise en route du service LiveUpdate avec les arguments "" pour démarrer le serveur : {03E0E6C2-363B-11D3-B536-00902771A435} Record Number: 2052307 Source Name: DCOM Time Written: 20090319070758.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 7000 Message: Le service LiveUpdate n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle. Record Number: 2052306 Source Name: Service Control Manager Time Written: 20090319070257.000000+060 Event Type: erreur User: Computer Name: SN100647590008 Event Code: 7009 Message: Délai (30000 millisecondes) d'attente pour une connexion du service LiveUpdate. Record Number: 2052305 Source Name: Service Control Manager Time Written: 20090319070257.000000+060 Event Type: erreur User: Application event log Computer Name: SN100647590008 Event Code: 101 Message: Record Number: 116270 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090318001556.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Record Number: 116269 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090318001046.000000+060 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Record Number: 116268 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090318001046.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Record Number: 116267 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090318001041.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Record Number: 116266 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090318000534.000000+060 Event Type: Informations User: AUTORITE NT\SYSTEM ======Environment variables====== "CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip "ComSpec"=%SystemRoot%\system32\cmd.exe "FP_NO_HOST_CHECK"=NO "NUMBER_OF_PROCESSORS"=1 "OS"=Windows_NT "Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\ATI Technologies\ATI Control Panel;C:\PROGRA~1\FICHIE~1\TVNAVI~1;C:\Program Files\Fichiers communs\Roxio Shared\DLLShared;C:\Program Files\Fichiers communs\Roxio Shared\9.0\DLLShared;%PIXIEHOME%\bin;C:\Program Files\QuickTime Alternative\QTSystem "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "PIXIEHOME"=C:\Program Files\Pixie "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 10 Stepping 0, AuthenticAMD "PROCESSOR_LEVEL"=6 "PROCESSOR_REVISION"=0a00 "QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip "RoxioCentral"=C:\Program Files\Fichiers communs\Roxio Shared\9.0\Roxio Central33\ "SHADERS"=%PIXIEHOME%\shaders "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "windir"=%SystemRoot% -----------------EOF----------------- Logfile of random's system information tool 1.05 (written by random/random) Run by christophe.SN1006475 at 2009-03-19 14:22:26 Microsoft Windows XP Édition familiale Service Pack 3 System drive C: has 11 GB (10%) free of 111 GB Total RAM: 1023 MB (57% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:22:32, on 19/03/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16791) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\System32\dllhost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe C:\WINDOWS\system32\slserv.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe C:\WINDOWS\System32\vssvc.exe C:\WINDOWS\wanmpsvc.exe C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\ctfmon.exe C:\apps\ABoard\ABoard.exe C:\apps\ABoard\AOSD.exe C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Neuf\Media Center\MediaCenter.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\Neuf\Media Center\httpd\httpd.exe C:\Program Files\Neuf\Media Center\httpd\httpd.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\christophe.SN1006475\bureau\RSIT.exe C:\Program Files\trend micro\christophe.SN1006475.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neufportail.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O2 - BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - (no file) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - (no file) O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKCU\..\Run: [Neuf Media Center] "C:\Program Files\Neuf\Media Center\MediaCenter.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm O15 - Trusted Zone: http://www.eset.com O15 - Trusted Zone: http://www.java.com O15 - Trusted Zone: http://www.secuser.com O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase6662.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1145507999330 O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...on_2_0_4_13.cab O16 - DPF: {9D3AA934-55FA-4373-96FD-ED7787E4F161} (MouseHooker Class) - https://collectionsbmu.ville-ge.ch/Componen...ndowsHooker.dll O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_fr_dl.cab O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/p...obat/nos/gp.cab O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - (no file) O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: getPlus® Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Fichiers communs\Sonic Shared\RoxioUPnPRenderer9.exe O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Fichiers communs\Sonic Shared\RoxioUpnpService9.exe O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe O24 - Desktop Component 0: (no name) - C:\Documents and Settings\christophe.SN1006475\Mes documents\Mes images\DSC00877.JPG O24 - Desktop Component 1: (no name) - C:\Documents and Settings\christophe.SN1006475\Mes documents\Mes images\DSC00874.JPG O24 - Desktop Component 2: (no name) - C:\Documents and Settings\christophe.SN1006475\Mes documents\Mes images\DSC00840.JPG -- End of file - 12711 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\AppleSoftwareUpdate.job C:\WINDOWS\tasks\Maintenance en 1 clic.job C:\WINDOWS\tasks\MP Scheduled Scan.job C:\WINDOWS\tasks\User_Feed_Synchronization-{1050FBD2-23BA-4551-831E-6B72F17466F3}.job C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll [2006-10-26 440384] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E03C0FD-4C48-43A7-9A54-00240C70FF16}] ECarteBleueBrowserHelper Class - C:\WINDOWS\system32\BhoECart.dll [2003-05-14 69632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-17 320920] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-07-07 324416] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - c:\program files\google\googletoolbar3.dll [2007-01-19 2436160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}] Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C920E44A-7F78-4E64-BDD7-A57026E7FEB7}] WOT Helper [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-17 35840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-17 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll [2006-10-26 440384] {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2003-04-28 360448] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar3.dll [2007-01-19 2436160] {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320] {71576546-354D-41c9-AAE8-31F2EC22BF0D} - [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "ACTIVBOARD"=c:\apps\ABoard\ABoard.exe [2003-05-02 24576] "OFFICEKB"=C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE [2007-01-04 401920] "FLMOFFICE4DMOUSE"=C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe [2007-01-04 370176] "ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184] "LogitechCommunicationsManager"=C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe [2008-08-14 565008] "LogitechQuickCamRibbon"=C:\Program Files\Logitech\QuickCam\Quickcam.exe [2008-08-14 2407184] "QuickTime Task"=C:\Program Files\QuickTime Alternative\qttask.exe [2008-03-28 413696] "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-05-01 185896] "MMTray"=C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe [2006-01-19 110592] "WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-07-09 36352] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-17 148888] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Neuf Media Center"=C:\Program Files\Neuf\Media Center\MediaCenter.exe [2007-10-15 1025264] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "ccleaner"=C:\Program Files\CCleaner\ccleaner.exe [2009-02-19 1471728] "LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe [2003-08-12 335872] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp] C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccRegVfy] C:\Program Files\Fichiers communs\Symantec Shared\ccRegVfy.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DMXLauncher] C:\Program Files\Roxio\Media Experience\DMXLauncher.exe [2006-08-14 102400] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe [2006-01-19 11776] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray] C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe [2006-01-19 110592] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck] C:\Program Files\Norton AntiVirus\osCheck.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe [2007-09-28 443968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc] C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe [2006-07-31 1116920] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray] C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [2006-08-10 221184] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-05-01 185896] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] C:\Program Files\Winamp\winampa.exe [2008-07-09 36352] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^DSLMON.lnk] C:\PROGRA~1\SAGEM\SAGEMF~1\dslmon.exe [2006-07-07 839680] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Boonty Games"=3 "SymAppCore"=2 "Symantec Core LC"=3 "LiveUpdate Notice Service"=2 "LiveUpdate Notice Ex"=2 "LiveUpdate"=3 "ISPwdSvc"=3 "CLTNetCnService"=2 "ccSetMgr"=2 "ccEvtMgr"=2 C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2007-02-15 236928] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=323 "NoDriveAutoRun"=67108863 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"= "NoDriveAutoRun"= "HonorAutoRunSetting"= "NoDriveTypeAutoRun"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealOne Player" "C:\Program Files\DivX\DivX Player\DivX Player.exe"="C:\Program Files\DivX\DivX Player\DivX Player.exe:*:Enabled:DivX Player" "C:\Program Files\Fichiers communs\aolshare\sysinfo\sinf.exe"="C:\Program Files\Fichiers communs\aolshare\sysinfo\sinf.exe:*:Enabled:AOL - Informations sur le système" "C:\WINDOWS\system32\mmc.exe"="C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console" "C:\Program Files\Shareaza\Shareaza.exe"="C:\Program Files\Shareaza\Shareaza.exe:*:Enabled:Shareaza" "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\emule.exe"="C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\emule.exe:*:Enabled:eMule" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\eMule Applejuice\emule.exe"="C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\eMule Applejuice\emule.exe:*:Enabled:eMule" "C:\Documents and Settings\christophe.SN1006475\Local Settings\temp\7zS10.tmp\SymNRT.exe"="C:\Documents and Settings\christophe.SN1006475\Local Settings\temp\7zS10.tmp\SymNRT.exe:*:Enabled:Norton Removal Tool" "C:\Program Files\Neuf\Media Center\httpd\httpd.exe"="C:\Program Files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel)" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" ======List of files/folders created in the last 1 months====== 2009-03-19 14:14:41 ----DC---- C:\Combo-Fix 2009-03-19 14:11:55 ----D---- C:\Program Files\Adobe 2009-03-19 14:09:51 ----D---- C:\WINDOWS\LastGood 2009-03-19 14:09:50 ----D---- C:\Documents and Settings\All Users\Application Data\NOS 2009-03-19 14:09:49 ----D---- C:\Program Files\NOS 2009-03-19 14:07:36 ----SHDC---- C:\Config.Msi 2009-03-19 03:50:44 ----SHDC---- C:\RECYCLER 2009-03-19 00:52:34 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\Malwarebytes 2009-03-19 00:52:27 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-03-19 00:52:27 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-03-18 17:14:17 ----D---- C:\Program Files\trend micro 2009-03-18 05:02:41 ----D---- C:\WINDOWS\ERDNT 2009-03-17 00:06:44 ----DC---- C:\rsit 2009-03-11 18:44:15 ----D---- C:\Program Files\EsetOnlineScanner 2009-03-11 12:41:28 ----A---- C:\WINDOWS\system32\Machnm1.exe 2009-03-11 10:51:18 ----D---- C:\WINDOWS\avxoscan 2009-03-11 09:42:44 ----A---- C:\WINDOWS\system32\javaws.exe 2009-03-11 09:42:44 ----A---- C:\WINDOWS\system32\javaw.exe 2009-03-11 09:42:44 ----A---- C:\WINDOWS\system32\java.exe 2009-03-11 09:23:29 ----D---- C:\Program Files\WOT 2009-03-11 02:34:00 ----D---- C:\Program Files\Windows Defender 2009-03-11 02:26:01 ----DC---- C:\fsaua.data 2009-03-11 02:22:01 ----D---- C:\Program Files\Update Services 2009-03-11 01:48:34 ----D---- C:\Program Files\Microsoft Baseline Security Analyzer 2 2009-03-11 01:45:22 ----D---- C:\Program Files\McafeeRootkitDetective 2009-03-10 18:51:09 ----DC---- C:\756ebbc6acbbe51a509140b77c43 2009-03-10 18:20:44 ----DC---- C:\679180b666ef33bd1acd4a13ce81605e 2009-03-09 18:39:45 ----DC---- C:\MFT 143762 2009-03-09 18:39:31 ----DC---- C:\MFT 123117 2009-03-09 13:56:24 ----D---- C:\Program Files\AxBx 2009-03-09 11:03:26 ----DC---- C:\00c1dd6213e4481ea3 2009-03-09 11:02:24 ----DC---- C:\f30a645f33c1db201701c677 2009-02-21 08:24:12 ----DC---- C:\lgupload 2009-02-21 08:20:58 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\LG Electronics 2009-02-21 08:13:19 ----D---- C:\Program Files\LG Electronics 2009-02-21 08:09:37 ----D---- C:\Program Files\LG PC Suite 2 2009-02-21 08:09:01 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\InstallShield ======List of files/folders modified in the last 1 months====== 2009-03-19 14:15:24 ----D---- C:\WINDOWS 2009-03-19 14:15:23 ----SHD---- C:\System Volume Information 2009-03-19 14:15:18 ----D---- C:\WINDOWS\system32 2009-03-19 14:14:50 ----D---- C:\WINDOWS\system32\CatRoot2 2009-03-19 14:13:10 ----SHD---- C:\WINDOWS\Installer 2009-03-19 14:13:09 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe 2009-03-19 14:12:28 ----D---- C:\Program Files\Fichiers communs\Adobe 2009-03-19 14:11:55 ----D---- C:\Program Files 2009-03-19 14:09:51 ----SD---- C:\WINDOWS\Downloaded Program Files 2009-03-19 14:09:51 ----D---- C:\WINDOWS\Temp 2009-03-19 14:04:09 ----D---- C:\Program Files\Java 2009-03-19 13:45:21 ----D---- C:\WINDOWS\Prefetch 2009-03-19 13:40:27 ----D---- C:\WINDOWS\Registration 2009-03-19 13:39:37 ----D---- C:\Program Files\Fichiers communs\Symantec Shared 2009-03-19 13:38:28 ----N---- C:\WINDOWS\SchedLgU.Txt 2009-03-19 13:35:35 ----HD---- C:\WINDOWS\system32\drivers 2009-03-19 13:33:45 ----SD---- C:\WINDOWS\Tasks 2009-03-19 12:57:59 ----HDC---- C:\BJPrinter 2009-03-19 03:02:48 ----HD---- C:\WINDOWS\inf 2009-03-19 03:02:46 ----RSHD---- C:\WINDOWS\system32\dllcache 2009-03-19 00:44:16 ----HD---- C:\Program Files\InstallShield Installation Information 2009-03-18 23:21:59 ----AC---- C:\WINDOWS\system.ini 2009-03-18 23:21:09 ----D---- C:\WINDOWS\AppPatch 2009-03-18 23:21:06 ----D---- C:\Program Files\Fichiers communs 2009-03-18 06:13:43 ----D---- C:\WINDOWS\Debug 2009-03-18 06:02:59 ----HD---- C:\WINDOWS\$hf_mig$ 2009-03-18 05:57:42 ----D---- C:\WINDOWS\system32\config 2009-03-18 05:48:57 ----D---- C:\Program Files\Internet Explorer 2009-03-18 05:05:43 ----D---- C:\WINDOWS\system32\Restore 2009-03-11 14:11:28 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\OpenOffice.org2 2009-03-11 11:49:40 ----D---- C:\Program Files\Spybot - Search & Destroy 2009-03-11 11:49:38 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2009-03-11 08:16:09 ----D---- C:\Program Files\Windows Live Safety Center 2009-03-11 02:34:00 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2009-03-10 23:59:46 ----SD---- C:\WINDOWS\system32\Microsoft 2009-03-10 23:57:46 ----SD---- C:\Documents and Settings\christophe.SN1006475\Application Data\Microsoft 2009-03-10 23:57:37 ----DC---- C:\WINDOWS\system32\DRVSTORE 2009-03-10 18:51:05 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2009-03-10 18:34:53 ----D---- C:\WINDOWS\Minidump 2009-03-10 06:19:35 ----D---- C:\Program Files\CCleaner 2009-03-09 16:42:11 ----RSD---- C:\WINDOWS\assembly 2009-03-09 16:17:16 ----D---- C:\WINDOWS\Microsoft.NET 2009-03-09 12:20:21 ----D---- C:\WINDOWS\SxsCaPendDel 2009-03-09 12:15:12 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI 2009-03-09 12:14:32 ----D---- C:\WINDOWS\WinSxS 2009-03-06 18:25:06 ----D---- C:\Program Files\TuneUp Utilities 2008 2009-03-06 10:21:18 ----AC---- C:\WINDOWS\NeroDigital.ini 2009-03-05 03:06:08 ----D---- C:\Program Files\PeerGuardian2 2009-03-04 15:26:11 ----AD---- C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1 2009-02-27 14:55:09 ----D---- C:\Program Files\Microsoft Silverlight 2009-02-25 12:55:00 ----AC---- C:\WINDOWS\system32\MRT.exe 2009-02-23 10:07:42 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\Media Player Classic ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41856] R1 Asapi;Asapi; C:\WINDOWS\system32\drivers\Asapi.sys [2002-08-06 11264] R1 c2scsi;c2scsi; C:\WINDOWS\system32\drivers\c2scsi.sys [2006-03-04 241664] R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2006-08-01 12952] R1 DLARTL_M;DLARTL_M; C:\WINDOWS\System32\Drivers\DLARTL_M.SYS [2006-08-01 28216] R1 vcsmpdrv;vcsmpdrv; C:\WINDOWS\System32\DRIVERS\vcsmpdrv.sys [2002-06-07 49232] R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244] R2 DLABMFSM;DLABMFSM; C:\WINDOWS\System32\DLA\DLABMFSM.SYS [2006-08-08 35128] R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2006-08-08 32504] R2 DLADResM;DLADResM; C:\WINDOWS\System32\DLA\DLADResM.SYS [2006-08-08 9464] R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2006-08-08 104504] R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2006-08-08 26136] R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2006-08-08 14552] R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2006-08-08 97880] R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2006-08-08 94680] R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2006-08-01 51800] R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2003-08-14 404736] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2003-08-21 462940] R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800] R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-05-03 1540608] R3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\System32\DRIVERS\fetnd5b.sys [2003-04-24 41984] R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2008-07-26 25624] R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824] R3 Pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\Pcouffin.sys [2007-04-05 47360] R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-08-04 33588] S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [] S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys [] S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14720] S2 ADILOADER;General Purpose USB Driver (adildr.sys); C:\WINDOWS\System32\Drivers\adildr.sys [2004-03-02 50007] S3 adiusbaw;USB ADSL WAN Adapter; C:\WINDOWS\System32\DRIVERS\adiusbaw.sys [2005-09-19 126489] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [] S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-05-09 41888] S3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\System32\DRIVERS\Mtlmnt5.sys [2003-01-21 210024] S3 Mtlstrm;Mtlstrm; C:\WINDOWS\System32\DRIVERS\Mtlstrm.sys [2003-01-21 1290312] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 NtMtlFax;NtMtlFax; C:\WINDOWS\System32\DRIVERS\NtMtlFax.sys [2003-01-17 162136] S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2004-08-03 1897408] S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2007-05-09 14112] S3 pgfilter;pgfilter; \??\C:\Program Files\PeerGuardian2\pgfilter.sys [] S3 PID_08A0;QuickCam IM(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2005-01-31 912768] S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2007-05-09 1276832] S3 RecAgent;recagent; \??\C:\WINDOWS\System32\DRIVERS\RecAgent.sys [] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 Slntamr;SmartLink AMR_PCI Driver; C:\WINDOWS\System32\DRIVERS\slntamr.sys [2003-01-17 507008] S3 SlNtHal;SlNtHal; C:\WINDOWS\System32\DRIVERS\Slnthal.sys [2003-01-21 84784] S3 SlWdmSup;SlWdmSup; C:\WINDOWS\System32\DRIVERS\SlWdmSup.sys [2003-01-17 39348] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2007-07-11 12416] S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2007-07-11 19840] S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2007-07-11 21632] S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [] S4 RxFilter;RxFilter; C:\WINDOWS\system32\DRIVERS\RxFilter.sys [2006-08-09 50688] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592] R2 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-17 152984] R2 LVCOMSer;LVCOMSer; C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe [2008-07-26 186904] R2 LVPrcSrv;Process Monitor; C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe [2008-07-26 150040] R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2003-06-20 322120] R2 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] R2 RoxWatch9;Roxio Hard Drive Watcher 9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [2006-08-10 159744] R2 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2003-01-17 45056] R2 UxTuneUp;TuneUp Extension de thème; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] R2 VCSSecS;Virtual CD v4 Security service (SDK - Version); C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe [2002-05-16 139264] R2 WANMiniportService;WAN Miniport (ATW) Service; C:\WINDOWS\wanmpsvc.exe [2003-08-04 65536] R3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-08-10 880640] S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192] S2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [] S2 Roxio Upnp Server 9;Roxio Upnp Server 9; C:\Program Files\Fichiers communs\Sonic Shared\RoxioUpnpService9.exe [2006-08-10 294912] S2 RoxLiveShare9;LiveShare P2P Server 9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe [2006-08-10 303104] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864] S3 getPlus® Helper;getPlus® Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2009-03-03 33176] S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-26 138168] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256] S3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776] S3 Roxio UPnP Renderer 9;Roxio UPnP Renderer 9; C:\Program Files\Fichiers communs\Sonic Shared\RoxioUPnPRenderer9.exe [2006-08-10 57344] S3 stllssvr;stllssvr; C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe [2006-07-20 73728] S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2008-03-04 307968] S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S4 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880] S4 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592] -----------------EOF----------------- encore merci de me consacrer tant de temps

"pas de réponse à ma question : " oui, tt à fait, pas de regedit ni defenza de program files

re Gof, voici les rapports RTIS Logfile of random's system information tool 1.05 (written by random/random) Run by christophe.SN1006475 at 2009-03-19 10:13:09 Microsoft Windows XP Édition familiale Service Pack 3 System drive C: has 10 GB (9%) free of 111 GB Total RAM: 1023 MB (55% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:13:21, on 19/03/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16791) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\System32\dllhost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe C:\WINDOWS\system32\slserv.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe C:\WINDOWS\System32\vssvc.exe C:\WINDOWS\wanmpsvc.exe C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\ctfmon.exe C:\apps\ABoard\ABoard.exe C:\apps\ABoard\AOSD.exe C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Neuf\Media Center\MediaCenter.exe C:\Program Files\Neuf\Media Center\httpd\httpd.exe C:\Program Files\Neuf\Media Center\httpd\httpd.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Documents and Settings\christophe.SN1006475\bureau\RSIT.exe C:\Program Files\trend micro\christophe.SN1006475.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neufportail.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O2 - BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - (no file) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - (no file) O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\VirusKeeper.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [Neuf Media Center] "C:\Program Files\Neuf\Media Center\MediaCenter.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm O15 - Trusted Zone: http://www.eset.com O15 - Trusted Zone: http://www.java.com O15 - Trusted Zone: http://www.secuser.com O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase6662.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1145507999330 O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...on_2_0_4_13.cab O16 - DPF: {9D3AA934-55FA-4373-96FD-ED7787E4F161} (MouseHooker Class) - https://collectionsbmu.ville-ge.ch/Componen...ndowsHooker.dll O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_fr_dl.cab O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - (no file) O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Fichiers communs\Sonic Shared\RoxioUPnPRenderer9.exe O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Fichiers communs\Sonic Shared\RoxioUpnpService9.exe O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe O23 - Service: VirusKeeper antivirus/antispyware (vkservice) - AxBx - C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe O24 - Desktop Component 0: (no name) - C:\Documents and Settings\christophe.SN1006475\Mes documents\Mes images\DSC00877.JPG O24 - Desktop Component 1: (no name) - C:\Documents and Settings\christophe.SN1006475\Mes documents\Mes images\DSC00874.JPG O24 - Desktop Component 2: (no name) - C:\Documents and Settings\christophe.SN1006475\Mes documents\Mes images\DSC00840.JPG -- End of file - 12330 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\AppleSoftwareUpdate.job C:\WINDOWS\tasks\Maintenance en 1 clic.job C:\WINDOWS\tasks\MP Scheduled Scan.job C:\WINDOWS\tasks\Norton AntiVirus - Analyse système complète - christophe.SN1006475.job C:\WINDOWS\tasks\User_Feed_Synchronization-{1050FBD2-23BA-4551-831E-6B72F17466F3}.job C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll [2006-10-26 440384] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E03C0FD-4C48-43A7-9A54-00240C70FF16}] ECarteBleueBrowserHelper Class - C:\WINDOWS\system32\BhoECart.dll [2003-05-14 69632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-07-07 324416] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - c:\program files\google\googletoolbar3.dll [2007-01-19 2436160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}] Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C920E44A-7F78-4E64-BDD7-A57026E7FEB7}] WOT Helper [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-17 35840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-17 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll [2006-10-26 440384] {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2003-04-28 360448] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar3.dll [2007-01-19 2436160] {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320] {71576546-354D-41c9-AAE8-31F2EC22BF0D} - [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "ACTIVBOARD"=c:\apps\ABoard\ABoard.exe [2003-05-02 24576] "OFFICEKB"=C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE [2007-01-04 401920] "FLMOFFICE4DMOUSE"=C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe [2007-01-04 370176] "ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184] "LogitechCommunicationsManager"=C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe [2008-08-14 565008] "LogitechQuickCamRibbon"=C:\Program Files\Logitech\QuickCam\Quickcam.exe [2008-08-14 2407184] "QuickTime Task"=C:\Program Files\QuickTime Alternative\qttask.exe [2008-03-28 413696] "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-05-01 185896] "MMTray"=C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe [2006-01-19 110592] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792] "WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-07-09 36352] "VirusKeeper"=C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\VirusKeeper.exe [2009-03-16 3824512] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-17 148888] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Neuf Media Center"=C:\Program Files\Neuf\Media Center\MediaCenter.exe [2007-10-15 1025264] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "ccleaner"=C:\Program Files\CCleaner\ccleaner.exe [2009-02-19 1471728] "LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe [2003-08-12 335872] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp] C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe [2009-03-14 115816] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccRegVfy] C:\Program Files\Fichiers communs\Symantec Shared\ccRegVfy.exe [2002-11-19 59056] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DMXLauncher] C:\Program Files\Roxio\Media Experience\DMXLauncher.exe [2006-08-14 102400] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe [2006-01-19 11776] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray] C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe [2006-01-19 110592] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck] C:\Program Files\Norton AntiVirus\osCheck.exe [2009-03-16 26248] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe [2007-09-28 443968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc] C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe [2006-07-31 1116920] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray] C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [2006-08-10 221184] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-05-01 185896] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] C:\Program Files\Winamp\winampa.exe [2008-07-09 36352] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^DSLMON.lnk] C:\PROGRA~1\SAGEM\SAGEMF~1\dslmon.exe [2006-07-07 839680] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Boonty Games"=3 "SymAppCore"=2 "Symantec Core LC"=3 "LiveUpdate Notice Service"=2 "LiveUpdate Notice Ex"=2 "LiveUpdate"=3 "ISPwdSvc"=3 "CLTNetCnService"=2 "ccSetMgr"=2 "ccEvtMgr"=2 C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2007-02-15 236928] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=323 "NoDriveAutoRun"=67108863 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"= "NoDriveAutoRun"= "HonorAutoRunSetting"= "NoDriveTypeAutoRun"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealOne Player" "C:\Program Files\DivX\DivX Player\DivX Player.exe"="C:\Program Files\DivX\DivX Player\DivX Player.exe:*:Enabled:DivX Player" "C:\Program Files\Fichiers communs\aolshare\sysinfo\sinf.exe"="C:\Program Files\Fichiers communs\aolshare\sysinfo\sinf.exe:*:Enabled:AOL - Informations sur le système" "C:\WINDOWS\system32\mmc.exe"="C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console" "C:\Program Files\Shareaza\Shareaza.exe"="C:\Program Files\Shareaza\Shareaza.exe:*:Enabled:Shareaza" "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\emule.exe"="C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\emule.exe:*:Enabled:eMule" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\eMule Applejuice\emule.exe"="C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\eMule Applejuice\emule.exe:*:Enabled:eMule" "C:\Program Files\Neuf\Media Center\httpd\httpd.exe"="C:\Program Files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel)" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" ======List of files/folders created in the last 1 months====== 2009-03-19 03:50:44 ----SHDC---- C:\RECYCLER 2009-03-19 00:52:34 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\Malwarebytes 2009-03-19 00:52:27 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-03-19 00:52:27 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-03-18 23:25:11 ----AC---- C:\ComboFix.txt 2009-03-18 17:14:17 ----D---- C:\Program Files\trend micro 2009-03-18 05:06:04 ----A---- C:\WINDOWS\NIRCMD.exe 2009-03-18 05:06:01 ----A---- C:\WINDOWS\SWREG.exe 2009-03-18 05:06:00 ----A---- C:\WINDOWS\zip.exe 2009-03-18 05:05:57 ----A---- C:\WINDOWS\grep.exe 2009-03-18 05:05:56 ----A---- C:\WINDOWS\sed.exe 2009-03-18 05:05:55 ----A---- C:\WINDOWS\fdsv.exe 2009-03-18 05:05:53 ----A---- C:\WINDOWS\VFIND.exe 2009-03-18 05:05:51 ----A---- C:\WINDOWS\SWSC.exe 2009-03-18 05:05:49 ----A---- C:\WINDOWS\SWXCACLS.exe 2009-03-18 05:02:41 ----D---- C:\WINDOWS\ERDNT 2009-03-18 05:00:21 ----DC---- C:\Qoobox 2009-03-17 00:06:44 ----DC---- C:\rsit 2009-03-11 18:44:15 ----D---- C:\Program Files\EsetOnlineScanner 2009-03-11 12:41:28 ----A---- C:\WINDOWS\system32\Machnm1.exe 2009-03-11 10:51:18 ----D---- C:\WINDOWS\avxoscan 2009-03-11 09:42:44 ----A---- C:\WINDOWS\system32\javaws.exe 2009-03-11 09:42:44 ----A---- C:\WINDOWS\system32\javaw.exe 2009-03-11 09:42:44 ----A---- C:\WINDOWS\system32\java.exe 2009-03-11 09:23:29 ----D---- C:\Program Files\WOT 2009-03-11 02:34:00 ----D---- C:\Program Files\Windows Defender 2009-03-11 02:26:01 ----DC---- C:\fsaua.data 2009-03-11 02:22:01 ----D---- C:\Program Files\Update Services 2009-03-11 01:48:34 ----D---- C:\Program Files\Microsoft Baseline Security Analyzer 2 2009-03-11 01:45:22 ----D---- C:\Program Files\McafeeRootkitDetective 2009-03-10 18:51:09 ----DC---- C:\756ebbc6acbbe51a509140b77c43 2009-03-10 18:20:44 ----DC---- C:\679180b666ef33bd1acd4a13ce81605e 2009-03-09 18:39:45 ----DC---- C:\MFT 143762 2009-03-09 18:39:31 ----DC---- C:\MFT 123117 2009-03-09 13:56:24 ----D---- C:\Program Files\AxBx 2009-03-09 11:03:26 ----DC---- C:\00c1dd6213e4481ea3 2009-03-09 11:02:24 ----DC---- C:\f30a645f33c1db201701c677 2009-02-21 08:24:12 ----DC---- C:\lgupload 2009-02-21 08:20:58 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\LG Electronics 2009-02-21 08:13:19 ----D---- C:\Program Files\LG Electronics 2009-02-21 08:09:37 ----D---- C:\Program Files\LG PC Suite 2 2009-02-21 08:09:01 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\InstallShield ======List of files/folders modified in the last 1 months====== 2009-03-19 07:42:36 ----D---- C:\WINDOWS 2009-03-19 07:41:38 ----D---- C:\WINDOWS\Temp 2009-03-19 07:22:24 ----D---- C:\WINDOWS\Prefetch 2009-03-19 07:21:16 ----D---- C:\WINDOWS\Registration 2009-03-19 07:19:34 ----HD---- C:\WINDOWS\system32\drivers 2009-03-19 07:18:32 ----N---- C:\WINDOWS\SchedLgU.Txt 2009-03-19 07:13:10 ----D---- C:\Program Files 2009-03-19 03:09:35 ----D---- C:\WINDOWS\system32 2009-03-19 03:02:48 ----HD---- C:\WINDOWS\inf 2009-03-19 03:02:46 ----RSHD---- C:\WINDOWS\system32\dllcache 2009-03-19 00:44:45 ----SD---- C:\WINDOWS\Tasks 2009-03-19 00:44:16 ----HD---- C:\Program Files\InstallShield Installation Information 2009-03-18 23:21:59 ----AC---- C:\WINDOWS\system.ini 2009-03-18 23:21:09 ----D---- C:\WINDOWS\AppPatch 2009-03-18 23:21:06 ----D---- C:\Program Files\Fichiers communs 2009-03-18 23:19:22 ----D---- C:\WINDOWS\system32\CatRoot2 2009-03-18 06:13:43 ----D---- C:\WINDOWS\Debug 2009-03-18 06:02:59 ----HD---- C:\WINDOWS\$hf_mig$ 2009-03-18 05:57:42 ----D---- C:\WINDOWS\system32\config 2009-03-18 05:48:57 ----D---- C:\Program Files\Internet Explorer 2009-03-18 05:05:43 ----D---- C:\WINDOWS\system32\Restore 2009-03-18 05:05:42 ----SHD---- C:\System Volume Information 2009-03-12 07:07:29 ----SD---- C:\WINDOWS\Downloaded Program Files 2009-03-11 14:11:28 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\OpenOffice.org2 2009-03-11 13:27:43 ----HDC---- C:\BJPrinter 2009-03-11 11:49:40 ----D---- C:\Program Files\Spybot - Search & Destroy 2009-03-11 11:49:38 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2009-03-11 09:43:03 ----SHD---- C:\WINDOWS\Installer 2009-03-11 09:42:40 ----D---- C:\Program Files\Java 2009-03-11 08:16:09 ----D---- C:\Program Files\Windows Live Safety Center 2009-03-11 04:16:52 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec 2009-03-11 04:13:51 ----D---- C:\Program Files\Fichiers communs\Symantec Shared 2009-03-11 02:34:00 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2009-03-10 23:59:46 ----SD---- C:\WINDOWS\system32\Microsoft 2009-03-10 23:57:46 ----SD---- C:\Documents and Settings\christophe.SN1006475\Application Data\Microsoft 2009-03-10 23:57:37 ----DC---- C:\WINDOWS\system32\DRVSTORE 2009-03-10 18:51:05 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2009-03-10 18:34:53 ----D---- C:\WINDOWS\Minidump 2009-03-10 06:19:35 ----D---- C:\Program Files\CCleaner 2009-03-09 16:42:11 ----RSD---- C:\WINDOWS\assembly 2009-03-09 16:17:16 ----D---- C:\WINDOWS\Microsoft.NET 2009-03-09 12:20:21 ----D---- C:\WINDOWS\SxsCaPendDel 2009-03-09 12:15:12 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI 2009-03-09 12:14:32 ----D---- C:\WINDOWS\WinSxS 2009-03-06 18:25:06 ----D---- C:\Program Files\TuneUp Utilities 2008 2009-03-06 10:21:18 ----AC---- C:\WINDOWS\NeroDigital.ini 2009-03-05 03:06:08 ----D---- C:\Program Files\PeerGuardian2 2009-03-04 15:26:11 ----AD---- C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1 2009-02-27 14:55:09 ----D---- C:\Program Files\Microsoft Silverlight 2009-02-25 12:55:00 ----AC---- C:\WINDOWS\system32\MRT.exe 2009-02-23 10:07:42 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\Media Player Classic ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41856] R1 Asapi;Asapi; C:\WINDOWS\system32\drivers\Asapi.sys [2002-08-06 11264] R1 c2scsi;c2scsi; C:\WINDOWS\system32\drivers\c2scsi.sys [2006-03-04 241664] R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2006-08-01 12952] R1 DLARTL_M;DLARTL_M; C:\WINDOWS\System32\Drivers\DLARTL_M.SYS [2006-08-01 28216] R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys [] R1 SRTSP;SRTSP; C:\WINDOWS\System32\Drivers\SRTSP.SYS [2007-01-12 247608] R1 SRTSPX;SRTSPX; C:\WINDOWS\System32\Drivers\SRTSPX.SYS [2007-01-12 25400] R1 SYMTDI;SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [2006-09-02 186048] R1 vcsmpdrv;vcsmpdrv; C:\WINDOWS\System32\DRIVERS\vcsmpdrv.sys [2002-06-07 49232] R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244] R2 DLABMFSM;DLABMFSM; C:\WINDOWS\System32\DLA\DLABMFSM.SYS [2006-08-08 35128] R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2006-08-08 32504] R2 DLADResM;DLADResM; C:\WINDOWS\System32\DLA\DLADResM.SYS [2006-08-08 9464] R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2006-08-08 104504] R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2006-08-08 26136] R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2006-08-08 14552] R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2006-08-08 97880] R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2006-08-08 94680] R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2006-08-01 51800] R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2003-08-14 404736] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2003-08-21 462940] R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800] R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-05-03 1540608] R3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\System32\DRIVERS\fetnd5b.sys [2003-04-24 41984] R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2008-07-26 25624] R3 NAVENG;NAVENG; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20070720.016\NAVENG.SYS [] R3 NAVEX15;NAVEX15; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20070720.016\NAVEX15.SYS [] R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824] R3 Pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\Pcouffin.sys [2007-04-05 47360] R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [] R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-08-04 33588] S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [] S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys [] S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14720] S2 ADILOADER;General Purpose USB Driver (adildr.sys); C:\WINDOWS\System32\Drivers\adildr.sys [2004-03-02 50007] S3 adiusbaw;USB ADSL WAN Adapter; C:\WINDOWS\System32\DRIVERS\adiusbaw.sys [2005-09-19 126489] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [] S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-05-09 41888] S3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\System32\DRIVERS\Mtlmnt5.sys [2003-01-21 210024] S3 Mtlstrm;Mtlstrm; C:\WINDOWS\System32\DRIVERS\Mtlstrm.sys [2003-01-21 1290312] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 NtMtlFax;NtMtlFax; C:\WINDOWS\System32\DRIVERS\NtMtlFax.sys [2003-01-17 162136] S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2004-08-03 1897408] S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2007-05-09 14112] S3 pgfilter;pgfilter; \??\C:\Program Files\PeerGuardian2\pgfilter.sys [] S3 PID_08A0;QuickCam IM(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2005-01-31 912768] S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2007-05-09 1276832] S3 RecAgent;recagent; \??\C:\WINDOWS\System32\DRIVERS\RecAgent.sys [] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 Slntamr;SmartLink AMR_PCI Driver; C:\WINDOWS\System32\DRIVERS\slntamr.sys [2003-01-17 507008] S3 SlNtHal;SlNtHal; C:\WINDOWS\System32\DRIVERS\Slnthal.sys [2003-01-21 84784] S3 SlWdmSup;SlWdmSup; C:\WINDOWS\System32\DRIVERS\SlWdmSup.sys [2003-01-17 39348] S3 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys [] S3 SRTSPL;SRTSPL; C:\WINDOWS\System32\Drivers\SRTSPL.SYS [2007-01-12 276792] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 SYMDNS;SYMDNS; C:\WINDOWS\System32\Drivers\SYMDNS.SYS [2006-09-02 11968] S3 SYMFW;SYMFW; C:\WINDOWS\System32\Drivers\SYMFW.SYS [2006-09-02 144832] S3 SYMIDS;SYMIDS; C:\WINDOWS\System32\Drivers\SYMIDS.SYS [2006-09-02 39104] S3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\IDS-DI~1\20070709.002\SymIDSCo.sys [] S3 SYMNDIS;SYMNDIS; C:\WINDOWS\System32\Drivers\SYMNDIS.SYS [2006-09-02 33216] S3 SYMREDRV;SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2006-09-02 26432] S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2007-07-11 12416] S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2007-07-11 19840] S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2007-07-11 21632] S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [] S4 RxFilter;RxFilter; C:\WINDOWS\system32\DRIVERS\RxFilter.sys [2006-08-09 50688] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592] R2 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-17 152984] R2 LVCOMSer;LVCOMSer; C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe [2008-07-26 186904] R2 LVPrcSrv;Process Monitor; C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe [2008-07-26 150040] R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2003-06-20 322120] R2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [2006-09-08 198336] R2 RoxWatch9;Roxio Hard Drive Watcher 9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [2006-08-10 159744] R2 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2003-01-17 45056] R2 UxTuneUp;TuneUp Extension de thème; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] R2 VCSSecS;Virtual CD v4 Security service (SDK - Version); C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe [2002-05-16 139264] R2 vkservice;VirusKeeper antivirus/antispyware; C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe [2008-09-26 1119584] R2 WANMiniportService;WAN Miniport (ATW) Service; C:\WINDOWS\wanmpsvc.exe [2003-08-04 65536] R3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-08-10 880640] S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192] S2 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S2 Roxio Upnp Server 9;Roxio Upnp Server 9; C:\Program Files\Fichiers communs\Sonic Shared\RoxioUpnpService9.exe [2006-08-10 294912] S2 RoxLiveShare9;LiveShare P2P Server 9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe [2006-08-10 303104] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864] S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-26 138168] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256] S3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104] S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE [2006-09-08 2528960] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776] S3 Roxio UPnP Renderer 9;Roxio UPnP Renderer 9; C:\Program Files\Fichiers communs\Sonic Shared\RoxioUPnPRenderer9.exe [2006-08-10 57344] S3 stllssvr;stllssvr; C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe [2006-07-20 73728] S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2008-03-04 307968] S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S4 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696] S4 ccEvtMgr;Symantec Event Manager; C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe [2007-01-09 108648] S4 ccSetMgr;Symantec Settings Manager; C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe [2007-01-09 108648] S4 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe [2007-01-09 108648] S4 ISPwdSvc;Validation de mot de passe Symantec IS; C:\Program Files\Norton AntiVirus\isPwdSvc.exe [2009-03-16 79496] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880] S4 Symantec Core LC;Symantec Core LC; C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe [2009-03-14 1087680] S4 SymAppCore;Symantec AppCore Service; C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe [2006-09-01 46736] S4 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592] -----------------EOF----------------- et de deux info.txt logfile of random's system information tool 1.05 2009-03-19 10:13:24 ======Uninstall list====== -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419} Adobe AIR-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F} Adobe Flash Player 9 ActiveX-->MsiExec.exe /X{58BAA8D0-404E-4585-9FD3-ED1BB72AC2EE} Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Media Player-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.amp 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 Adobe Media Player-->MsiExec.exe /I{1EBB57D4-63FF-87CC-A0F0-D73982CF6008} Adobe Reader 8.1.3-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81300000003} Adobe Shockwave Player 11-->C:\WINDOWS\system32\adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543} Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4} ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean Auto Gordian Knot 2.45-->C:\Program Files\AutoGK\uninst.exe AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe" Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3} Brickshooter Egypt-->"C:\Program Files\Brickshooter Egypt\unins000.exe" Canon i560-->C:\WINDOWS\system32\CNMCP58.exe "-PRINTERNAMECanon i560" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon i560 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon i560 Installer\Inst2\cnmi040c.dll" CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" Coffret de pilotes Logitech Legacy USB Camera-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\10.51.2023\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"legacyqcam_10.51" /clone_wait /hide_progress Coffret de pilotes Logitech QuickCam-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\11.80.1048\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"lvdrivers_11.80" /clone_wait /hide_progress Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe" dBpoweramp DSP Effects-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp DSP Effects.dat dBpoweramp Musepack Codec-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Musepack Codec.dat dBpoweramp Music Converter-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Music Converter.dat dBpoweramp WavPack Codec-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp WavPack Codec.dat Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976} DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN DVDFab Platinum 3.0.9.8-->"C:\Program Files\DVDFab Platinum 3\unins000.exe" e-Carte Bleue Banque Populaire-->"C:\Program Files\InstallShield Installation Information\{B0900CB5-8EC0-43B4-9DAC-A32FE52DC864}\setup.exe" -runfromtemp -l0x040c -removeonly eMule Applejuice-->C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\eMule Applejuice\uninstall.exe EncFlac 1.1.2-->"C:\Program Files\Winamp\EncFlac-Uninstall.exe" EncVorbis 1.1-->"C:\Program Files\Winamp\EncVorbis-Uninstall.exe" ESET Online Scanner-->C:\WINDOWS\system32\OnlineScannerUninstaller.exe Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D} FLAC 1.1.4b (remove only)-->C:\Program Files\FLAC\uninstall.exe foobar2000 v0.9.5.6-->"C:\Program Files\foobar2000\uninstall.exe" Furnish Pro-->C:\WINDOWS\unvise32.exe C:\Program Files\Furnish Pro\Furnish Pro uninstal.log HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall iTunes-->MsiExec.exe /I{585776BC-4BD6-4BD2-A19A-1D6CB44A403B} Java 6 Update 12-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF} Java 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020} Java 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030} Java 6 Update 4-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160040} Java 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050} Java 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070} Java SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010} LG PC Suite-->C:\Program Files\InstallShield Installation Information\{993960EE-CA4D-443F-8F88-E24260DD5FD2}\setup.exe -runfromtemp -l0x040c -removeonly LG USB Modem driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C3ABE126-2BB2-4246-BFE1-6797679B3579}\setup.exe" -l0x40c LG -removeonly Logitech QuickCam-->MsiExec.exe /X{3AF8FCCD-F51A-4014-9002-F195E1CBC876} Logitech Updater-->MsiExec.exe /I{53735ECE-E461-4FD0-B742-23A352436D3A} Luxor 3-->C:\PROGRA~1\GAMEHO~1\LUXOR3~1\UNWISE.EXE /U C:\PROGRA~1\GAMEHO~1\LUXOR3~1\INSTALL.LOG Ma-Config.com plugin-->MsiExec.exe /I{6F06A42D-525C-49ED-8622-E16790956CD8} Macromedia Flash Player 8-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5 Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929} Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 1-->MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783} Microsoft Baseline Security Analyzer 2.1-->MsiExec.exe /I{6AF5CAB9-FD0A-494F-8AA6-784D4B5D06C5} Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE} Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE} Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB} Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE} Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE} Microsoft Office Professional 2007-->MsiExec.exe /X{91120000-0014-0000-0000-0000000FF1CE} Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE} Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE} Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE} Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE} Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE} Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE} Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE} Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE} Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE} Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft Word 2002-->MsiExec.exe /I{911B040C-6000-11D3-8CFE-0050048383C9} Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E} Multi Virus Cleaner 2008-->"C:\Program Files\AxBx\Multi Virus Cleaner 2008\unins000.exe" Navigation par onglets (Windows Live Toolbar)-->MsiExec.exe /X{E916E61F-DE9D-4EAF-91E1-CEB50016326A} Neuf - Media Center-->C:\Program Files\Neuf\Media Center\uninstall.exe OpenOffice.org 2.4-->MsiExec.exe /I{1E0FF527-971B-4BBF-83D1-987E8DEE437D} Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe" Pixie 1.4.1-->"C:\Program Files\Pixie\unins000.exe" QuickTime-->MsiExec.exe /I{1838C5A2-AB32-4145-85C1-BB9B8DFA24CD} RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85} Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7} Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2} Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B} Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77} Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85} Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F} Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC} Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C} Security Update for Visio 2007 (KB947590)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {6BAD036C-261F-4BEF-96CF-C20678D07A41} SFR - Kit de connexion-->C:\Program Files\Neuf\Kit\uninstall.exe Spybot - Search & Destroy 1.5.2.20-->"C:\WINDOWS\unins000.exe" SUPER © Version 2007.bld.23 (July 4, 2007)-->C:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0 TuneUp Utilities 2008-->MsiExec.exe /I{5888428E-699C-4E71-BF71-94EE06B497DA} UnzipThemAll 1.3-->"C:\Program Files\UnzipThemAll\unins000.exe" Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756} Update for Office 2007 (KB946691)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278} Update for Outlook 2007 Junk Email Filter (kb962871)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {297857BF-4011-449B-BD74-DB64D182821C} Version d'évaluation de Microsoft Office Professional 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROR /dll OSETUP.DLL VideoLAN VLC media player 0.8.6d-->C:\Program Files\VideoLAN\VLC\uninstall.exe VirusKeeper 2009 Pro Evaluation-->"C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\unins000.exe" VobSub v2.23 (Remove Only)-->"C:\Program Files\Gabest\VobSub\uninstall.exe" Winamp Essentials Pack v5.34-->C:\Program Files\Winamp\UninstallWinampEssentials.exe Winamp Toolbar for Firefox-->"C:\Documents and Settings\christophe.SN1006475\Application Data\Mozilla\Firefox\Profiles\pl9g7xxp.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\uninstall.exe" Winamp-->"C:\Program Files\Winamp\UninstWA.exe" Windows Defender-->MsiExec.exe /I{A06275F4-324B-4E85-95E6-87B2CD729401} Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411} Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D} Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D} Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" WOT for Internet Explorer-->MsiExec.exe /X{08E16CBF-7029-4881-83DF-D0B3A63030B4} Xvid 1.1.2 final uninstall-->"C:\Program Files\Xvid\unins001.exe" XviD MPEG4 Video Codec (remove only)-->"C:\WINDOWS\system32\xvid-uninstall.exe" Yahoo! Anti-Spy-->C:\PROGRA~1\Yahoo!\Common\unypsr.exe Yahoo! Toolbar avec bloqueur de fenêtres pop-up-->C:\PROGRA~1\Yahoo!\Common\unyt.exe ======Security center information====== AV: Norton AntiVirus FW: Norton AntiVirus System event log Computer Name: SN100647590008 Event Code: 7009 Message: Délai (30000 millisecondes) d'attente pour une connexion du service LiveUpdate. Record Number: 2049820 Source Name: Service Control Manager Time Written: 20090316160008.000000+060 Event Type: erreur User: Computer Name: SN100647590008 Event Code: 10005 Message: DCOM a reçu l'erreur "%1053" lors de la mise en route du service LiveUpdate avec les arguments "" pour démarrer le serveur : {03E0E6C2-363B-11D3-B536-00902771A435} Record Number: 2049819 Source Name: DCOM Time Written: 20090316160006.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 7000 Message: Le service LiveUpdate n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle. Record Number: 2049818 Source Name: Service Control Manager Time Written: 20090316155449.000000+060 Event Type: erreur User: Computer Name: SN100647590008 Event Code: 7009 Message: Délai (30000 millisecondes) d'attente pour une connexion du service LiveUpdate. Record Number: 2049817 Source Name: Service Control Manager Time Written: 20090316155446.000000+060 Event Type: erreur User: Computer Name: SN100647590008 Event Code: 10005 Message: DCOM a reçu l'erreur "%1053" lors de la mise en route du service LiveUpdate avec les arguments "" pour démarrer le serveur : {03E0E6C2-363B-11D3-B536-00902771A435} Record Number: 2049816 Source Name: DCOM Time Written: 20090316155440.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Application event log Computer Name: SN100647590008 Event Code: 101 Message: Niveau d'information : error L'initialisation du sous-système COM a échoué. Code d'erreur : 0x8007041D Record Number: 116135 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090317201954.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Niveau d'information : success Retour à la planification précédente. L'exécution interviendra approximativement à 8:19 PM. Record Number: 116134 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090317201445.000000+060 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Niveau d'information : error LiveUpdate n'a pas pu poursuivre car certains fichiers binaires ne sont pas signés par Symantec. Il se peut qu'il y ait eu falsification. Record Number: 116133 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090317201445.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Niveau d'information : error L'initialisation du sous-système COM a échoué. Code d'erreur : 0x8007041D Record Number: 116132 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090317201433.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Niveau d'information : success Retour à la planification précédente. L'exécution interviendra approximativement à 8:14 PM. Record Number: 116131 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090317200926.000000+060 Event Type: Informations User: AUTORITE NT\SYSTEM ======Environment variables====== "CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip "ComSpec"=%SystemRoot%\system32\cmd.exe "FP_NO_HOST_CHECK"=NO "NUMBER_OF_PROCESSORS"=1 "OS"=Windows_NT "Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\ATI Technologies\ATI Control Panel;C:\PROGRA~1\FICHIE~1\TVNAVI~1;C:\Program Files\Fichiers communs\Roxio Shared\DLLShared;C:\Program Files\Fichiers communs\Roxio Shared\9.0\DLLShared;%PIXIEHOME%\bin;C:\Program Files\QuickTime Alternative\QTSystem "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "PIXIEHOME"=C:\Program Files\Pixie "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 10 Stepping 0, AuthenticAMD "PROCESSOR_LEVEL"=6 "PROCESSOR_REVISION"=0a00 "QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip "RoxioCentral"=C:\Program Files\Fichiers communs\Roxio Shared\9.0\Roxio Central33\ "SHADERS"=%PIXIEHOME%\shaders "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "windir"=%SystemRoot% -----------------EOF-----------------

bonjour Gof, je te post le mbam-log et je redemarre l'ordi comme demander par le logiciel. Malwarebytes' Anti-Malware 1.34 Version de la base de données: 1868 Windows 5.1.2600 Service Pack 3 19/03/2009 07:13:10 mbam-log-2009-03-19 (07-13-10).txt Type de recherche: Examen complet (C:\|F:\|J:\|K:\|L:\|) Eléments examinés: 269404 Temps écoulé: 3 hour(s), 7 minute(s), 0 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 1 Valeur(s) du Registre infectée(s): 1 Elément(s) de données du Registre infecté(s): 1 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 6 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\c:/windows/downloaded program files/uninst.bat (Trojan.Agent) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\Downloaded Program Files\uninst.bat (Trojan.Agent) -> Quarantined and deleted successfully. Elément(s) de données du Registre infecté(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\downld\29832656.exe.vir (Worm.Bagle) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP2\A0000480.exe (Worm.Bagle) -> Quarantined and deleted successfully. C:\WINDOWS\Downloaded Program Files\uninst.bat (Trojan.Agent) -> Quarantined and deleted successfully. C:\Program Files\corona.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\Program Files\ogg.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully. C:\Program Files\vorbis.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.

"Supprime les éléments suivants (si souci, me le rapporter) : C:\Program Files\RegCure <= ce répertoire c:\program files\Defenza <= ce répertoire C:\WINDOWS\tasks\RegCure Program Check.job <= ce fichier C:\WINDOWS\tasks\RegCure.job <= ce fichier" je ne trouve pas ces repertoires et fichiers

norton etait de base à l'achat mais je ai plus renouvellé la license (on ne rit pas stp) depuis 3 ans. voici le rapport RSIT info.txt logfile of random's system information tool 1.05 2009-03-18 17:14:31 ======Uninstall list====== -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1} 2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419} Adobe AIR-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F} Adobe Flash Player 9 ActiveX-->MsiExec.exe /X{58BAA8D0-404E-4585-9FD3-ED1BB72AC2EE} Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Media Player-->C:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.amp 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 Adobe Media Player-->MsiExec.exe /I{1EBB57D4-63FF-87CC-A0F0-D73982CF6008} Adobe Reader 8.1.3-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81300000003} Adobe Shockwave Player 11-->C:\WINDOWS\system32\adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543} Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4} ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean Auto Gordian Knot 2.45-->C:\Program Files\AutoGK\uninst.exe AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe" Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3} Brickshooter Egypt-->"C:\Program Files\Brickshooter Egypt\unins000.exe" Canon i560-->C:\WINDOWS\system32\CNMCP58.exe "-PRINTERNAMECanon i560" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon i560 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon i560 Installer\Inst2\cnmi040c.dll" CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" Coffret de pilotes Logitech Legacy USB Camera-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\10.51.2023\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\legacyqcam\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"legacyqcam_10.51" /clone_wait /hide_progress Coffret de pilotes Logitech QuickCam-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\11.80.1048\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"lvdrivers_11.80" /clone_wait /hide_progress Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe" dBpoweramp DSP Effects-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp DSP Effects.dat dBpoweramp Musepack Codec-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Musepack Codec.dat dBpoweramp Music Converter-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Music Converter.dat dBpoweramp WavPack Codec-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp WavPack Codec.dat Defenza-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5B3AA536-2193-4D9B-812A-DE45C4D57AD1}\Setup.exe" -l0x9 Détecteur de flux Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{EFFCB0F1-CFEC-48D4-B793-EBFCAE852976} DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN DVDFab Platinum 3.0.9.8-->"C:\Program Files\DVDFab Platinum 3\unins000.exe" e-Carte Bleue Banque Populaire-->"C:\Program Files\InstallShield Installation Information\{B0900CB5-8EC0-43B4-9DAC-A32FE52DC864}\setup.exe" -runfromtemp -l0x040c -removeonly eMule Applejuice-->C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\eMule Applejuice\uninstall.exe EncFlac 1.1.2-->"C:\Program Files\Winamp\EncFlac-Uninstall.exe" EncVorbis 1.1-->"C:\Program Files\Winamp\EncVorbis-Uninstall.exe" ESET Online Scanner-->C:\WINDOWS\system32\OnlineScannerUninstaller.exe Extension de Windows Live Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{0CA6047C-D28B-4295-834A-07C52BA20C2D} FLAC 1.1.4b (remove only)-->C:\Program Files\FLAC\uninstall.exe foobar2000 v0.9.5.6-->"C:\Program Files\foobar2000\uninstall.exe" Furnish Pro-->C:\WINDOWS\unvise32.exe C:\Program Files\Furnish Pro\Furnish Pro uninstal.log HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall iTunes-->MsiExec.exe /I{585776BC-4BD6-4BD2-A19A-1D6CB44A403B} Java 6 Update 12-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF} Java 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020} Java 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030} Java 6 Update 4-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160040} Java 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050} Java 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070} Java SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010} LG PC Suite-->C:\Program Files\InstallShield Installation Information\{993960EE-CA4D-443F-8F88-E24260DD5FD2}\setup.exe -runfromtemp -l0x040c -removeonly LG USB Modem driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C3ABE126-2BB2-4246-BFE1-6797679B3579}\setup.exe" -l0x40c LG -removeonly Logitech QuickCam-->MsiExec.exe /X{3AF8FCCD-F51A-4014-9002-F195E1CBC876} Logitech Updater-->MsiExec.exe /I{53735ECE-E461-4FD0-B742-23A352436D3A} Luxor 3-->C:\PROGRA~1\GAMEHO~1\LUXOR3~1\UNWISE.EXE /U C:\PROGRA~1\GAMEHO~1\LUXOR3~1\INSTALL.LOG Ma-Config.com plugin-->MsiExec.exe /I{6F06A42D-525C-49ED-8622-E16790956CD8} Macromedia Flash Player 8-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5 Menus intelligents (Windows Live Toolbar)-->MsiExec.exe /X{0CC70FEF-5068-4CD5-B4DE-86FFD98EC929} Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 1-->MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783} Microsoft Baseline Security Analyzer 2.1-->MsiExec.exe /I{6AF5CAB9-FD0A-494F-8AA6-784D4B5D06C5} Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE} Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE} Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB} Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE} Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE} Microsoft Office Professional 2007-->MsiExec.exe /X{91120000-0014-0000-0000-0000000FF1CE} Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE} Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE} Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE} Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE} Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE} Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE} Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE} Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE} Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE} Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft Word 2002-->MsiExec.exe /I{911B040C-6000-11D3-8CFE-0050048383C9} Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe" MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E} Multi Virus Cleaner 2008-->"C:\Program Files\AxBx\Multi Virus Cleaner 2008\unins000.exe" Navigation par onglets (Windows Live Toolbar)-->MsiExec.exe /X{E916E61F-DE9D-4EAF-91E1-CEB50016326A} Neuf - Media Center-->C:\Program Files\Neuf\Media Center\uninstall.exe OpenOffice.org 2.4-->MsiExec.exe /I{1E0FF527-971B-4BBF-83D1-987E8DEE437D} Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe" Pixie 1.4.1-->"C:\Program Files\Pixie\unins000.exe" QuickTime-->MsiExec.exe /I{1838C5A2-AB32-4145-85C1-BB9B8DFA24CD} RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 RegCure 1.5.0.1-->C:\Program Files\RegCure\uninst.exe Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85} Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7} Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2} Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B} Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77} Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85} Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F} Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC} Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C} Security Update for Visio 2007 (KB947590)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {6BAD036C-261F-4BEF-96CF-C20678D07A41} SFR - Kit de connexion-->C:\Program Files\Neuf\Kit\uninstall.exe Spybot - Search & Destroy 1.5.2.20-->"C:\WINDOWS\unins000.exe" SUPER © Version 2007.bld.23 (July 4, 2007)-->C:\PROGRA~1\ERIGHT~1\SUPER\Setup.exe /remove /q0 TuneUp Utilities 2008-->MsiExec.exe /I{5888428E-699C-4E71-BF71-94EE06B497DA} UnzipThemAll 1.3-->"C:\Program Files\UnzipThemAll\unins000.exe" Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756} Update for Office 2007 (KB946691)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278} Update for Outlook 2007 Junk Email Filter (kb962871)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {297857BF-4011-449B-BD74-DB64D182821C} Version d'évaluation de Microsoft Office Professional 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROR /dll OSETUP.DLL VideoLAN VLC media player 0.8.6d-->C:\Program Files\VideoLAN\VLC\uninstall.exe VirusKeeper 2009 Pro Evaluation-->"C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\unins000.exe" VobSub v2.23 (Remove Only)-->"C:\Program Files\Gabest\VobSub\uninstall.exe" Winamp Essentials Pack v5.34-->C:\Program Files\Winamp\UninstallWinampEssentials.exe Winamp Toolbar for Firefox-->"C:\Documents and Settings\christophe.SN1006475\Application Data\Mozilla\Firefox\Profiles\pl9g7xxp.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}\uninstall.exe" Winamp-->"C:\Program Files\Winamp\UninstWA.exe" Windows Defender-->MsiExec.exe /I{A06275F4-324B-4E85-95E6-87B2CD729401} Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411} Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {0A8C97AD-DEED-4894-B446-3ABA95A77D0D} Windows Live Toolbar-->MsiExec.exe /X{0A8C97AD-DEED-4894-B446-3ABA95A77D0D} Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" WOT for Internet Explorer-->MsiExec.exe /X{08E16CBF-7029-4881-83DF-D0B3A63030B4} Xvid 1.1.2 final uninstall-->"C:\Program Files\Xvid\unins001.exe" XviD MPEG4 Video Codec (remove only)-->"C:\WINDOWS\system32\xvid-uninstall.exe" Yahoo! Anti-Spy-->C:\PROGRA~1\Yahoo!\Common\unypsr.exe Yahoo! Toolbar avec bloqueur de fenêtres pop-up-->C:\PROGRA~1\Yahoo!\Common\unyt.exe ======Security center information====== AV: Norton AntiVirus FW: Norton AntiVirus System event log Computer Name: SN100647590008 Event Code: 7009 Message: Délai (30000 millisecondes) d'attente pour une connexion du service LiveUpdate. Record Number: 2049097 Source Name: Service Control Manager Time Written: 20090315184344.000000+060 Event Type: erreur User: Computer Name: SN100647590008 Event Code: 10005 Message: DCOM a reçu l'erreur "%1053" lors de la mise en route du service LiveUpdate avec les arguments "" pour démarrer le serveur : {03E0E6C2-363B-11D3-B536-00902771A435} Record Number: 2049096 Source Name: DCOM Time Written: 20090315184340.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 7000 Message: Le service LiveUpdate n'a pas pu démarrer en raison de l'erreur : Le service n'a pas répondu assez vite à la demande de lancement ou de contrôle. Record Number: 2049095 Source Name: Service Control Manager Time Written: 20090315183826.000000+060 Event Type: erreur User: Computer Name: SN100647590008 Event Code: 7009 Message: Délai (30000 millisecondes) d'attente pour une connexion du service LiveUpdate. Record Number: 2049094 Source Name: Service Control Manager Time Written: 20090315183825.000000+060 Event Type: erreur User: Computer Name: SN100647590008 Event Code: 10005 Message: DCOM a reçu l'erreur "%1053" lors de la mise en route du service LiveUpdate avec les arguments "" pour démarrer le serveur : {03E0E6C2-363B-11D3-B536-00902771A435} Record Number: 2049093 Source Name: DCOM Time Written: 20090315183820.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Application event log Computer Name: SN100647590008 Event Code: 101 Message: Niveau d'information : success Retour à la planification précédente. L'exécution interviendra approximativement à 2:32 AM. Record Number: 115522 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090317022704.000000+060 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Niveau d'information : error LiveUpdate n'a pas pu poursuivre car certains fichiers binaires ne sont pas signés par Symantec. Il se peut qu'il y ait eu falsification. Record Number: 115521 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090317022704.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Niveau d'information : error L'initialisation du sous-système COM a échoué. Code d'erreur : 0x8007041D Record Number: 115520 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090317022659.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Niveau d'information : success Retour à la planification précédente. L'exécution interviendra approximativement à 2:26 AM. Record Number: 115519 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090317022149.000000+060 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: SN100647590008 Event Code: 101 Message: Niveau d'information : error LiveUpdate n'a pas pu poursuivre car certains fichiers binaires ne sont pas signés par Symantec. Il se peut qu'il y ait eu falsification. Record Number: 115518 Source Name: Automatic LiveUpdate Scheduler Time Written: 20090317022149.000000+060 Event Type: erreur User: AUTORITE NT\SYSTEM ======Environment variables====== "CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip "ComSpec"=%SystemRoot%\system32\cmd.exe "FP_NO_HOST_CHECK"=NO "NUMBER_OF_PROCESSORS"=1 "OS"=Windows_NT "Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\ATI Technologies\ATI Control Panel;C:\PROGRA~1\FICHIE~1\TVNAVI~1;C:\Program Files\Fichiers communs\Roxio Shared\DLLShared;C:\Program Files\Fichiers communs\Roxio Shared\9.0\DLLShared;%PIXIEHOME%\bin;C:\Program Files\QuickTime Alternative\QTSystem "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "PIXIEHOME"=C:\Program Files\Pixie "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 10 Stepping 0, AuthenticAMD "PROCESSOR_LEVEL"=6 "PROCESSOR_REVISION"=0a00 "QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip "RoxioCentral"=C:\Program Files\Fichiers communs\Roxio Shared\9.0\Roxio Central33\ "SHADERS"=%PIXIEHOME%\shaders "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "windir"=%SystemRoot% -----------------EOF----------------- et la suite Logfile of random's system information tool 1.05 (written by random/random) Run by christophe.SN1006475 at 2009-03-18 18:25:49 Microsoft Windows XP Édition familiale Service Pack 3 System drive C: has 10 GB (9%) free of 111 GB Total RAM: 1023 MB (55% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:25:53, on 18/03/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16791) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\System32\dllhost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe C:\WINDOWS\System32\vssvc.exe C:\WINDOWS\wanmpsvc.exe C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe C:\WINDOWS\system32\ctfmon.exe C:\apps\ABoard\ABoard.exe C:\apps\ABoard\AOSD.exe C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Neuf\Media Center\MediaCenter.exe C:\Program Files\Neuf\Media Center\httpd\httpd.exe C:\Program Files\Neuf\Media Center\httpd\httpd.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\christophe.SN1006475\Bureau\RSIT.exe C:\Program Files\trend micro\christophe.SN1006475.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.neufportail.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O2 - BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - (no file) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - (no file) O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [VirusKeeper] C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\VirusKeeper.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [Neuf Media Center] "C:\Program Files\Neuf\Media Center\MediaCenter.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm O15 - Trusted Zone: http://www.eset.com O15 - Trusted Zone: http://www.java.com O15 - Trusted Zone: http://www.secuser.com O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase6662.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1145507999330 O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichier...on_2_0_4_13.cab O16 - DPF: {9D3AA934-55FA-4373-96FD-ED7787E4F161} (MouseHooker Class) - https://collectionsbmu.ville-ge.ch/Componen...ndowsHooker.dll O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_fr_dl.cab O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - (no file) O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Fichiers communs\Sonic Shared\RoxioUPnPRenderer9.exe O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Fichiers communs\Sonic Shared\RoxioUpnpService9.exe O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe O23 - Service: VirusKeeper antivirus/antispyware (vkservice) - AxBx - C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe O24 - Desktop Component 0: (no name) - C:\Documents and Settings\christophe.SN1006475\Mes documents\Mes images\DSC00877.JPG O24 - Desktop Component 1: (no name) - C:\Documents and Settings\christophe.SN1006475\Mes documents\Mes images\DSC00874.JPG O24 - Desktop Component 2: (no name) - C:\Documents and Settings\christophe.SN1006475\Mes documents\Mes images\DSC00840.JPG -- End of file - 12177 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\AppleSoftwareUpdate.job C:\WINDOWS\tasks\Maintenance en 1 clic.job C:\WINDOWS\tasks\MP Scheduled Scan.job C:\WINDOWS\tasks\Norton AntiVirus - Analyse système complète - christophe.SN1006475.job C:\WINDOWS\tasks\RegCure Program Check.job C:\WINDOWS\tasks\RegCure.job C:\WINDOWS\tasks\User_Feed_Synchronization-{1050FBD2-23BA-4551-831E-6B72F17466F3}.job C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll [2006-10-26 440384] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2E03C0FD-4C48-43A7-9A54-00240C70FF16}] ECarteBleueBrowserHelper Class - C:\WINDOWS\system32\BhoECart.dll [2003-05-14 69632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-07-07 324416] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - c:\program files\google\googletoolbar3.dll [2007-01-19 2436160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}] Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C920E44A-7F78-4E64-BDD7-A57026E7FEB7}] WOT Helper [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-17 35840] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-17 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll [2006-10-26 440384] {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2003-04-28 360448] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar3.dll [2007-01-19 2436160] {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320] {71576546-354D-41c9-AAE8-31F2EC22BF0D} - [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "ACTIVBOARD"=c:\apps\ABoard\ABoard.exe [2003-05-02 24576] "OFFICEKB"=C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE [2007-01-04 401920] "FLMOFFICE4DMOUSE"=C:\Program Files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe [2007-01-04 370176] "ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184] "LogitechCommunicationsManager"=C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe [2008-08-14 565008] "LogitechQuickCamRibbon"=C:\Program Files\Logitech\QuickCam\Quickcam.exe [2008-08-14 2407184] "QuickTime Task"=C:\Program Files\QuickTime Alternative\qttask.exe [2008-03-28 413696] "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-05-01 185896] "MMTray"=C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe [2006-01-19 110592] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792] "WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-07-09 36352] "VirusKeeper"=C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\VirusKeeper.exe [2009-03-16 3824512] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-17 148888] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Neuf Media Center"=C:\Program Files\Neuf\Media Center\MediaCenter.exe [2007-10-15 1025264] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "ccleaner"=C:\Program Files\CCleaner\ccleaner.exe [2009-02-19 1471728] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe [2003-08-12 335872] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp] C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe [2009-03-14 115816] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccRegVfy] C:\Program Files\Fichiers communs\Symantec Shared\ccRegVfy.exe [2002-11-19 59056] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DMXLauncher] C:\Program Files\Roxio\Media Experience\DMXLauncher.exe [2006-08-14 102400] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe [2006-01-19 11776] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray] C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe [2006-01-19 110592] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck] C:\Program Files\Norton AntiVirus\osCheck.exe [2009-03-16 26248] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe [2007-09-28 443968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc] C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe [2006-07-31 1116920] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray] C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [2006-08-10 221184] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-05-01 185896] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] C:\Program Files\Winamp\winampa.exe [2008-07-09 36352] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^DSLMON.lnk] C:\PROGRA~1\SAGEM\SAGEMF~1\dslmon.exe [2006-07-07 839680] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Boonty Games"=3 "SymAppCore"=2 "Symantec Core LC"=3 "LiveUpdate Notice Service"=2 "LiveUpdate Notice Ex"=2 "LiveUpdate"=3 "ISPwdSvc"=3 "CLTNetCnService"=2 "ccSetMgr"=2 "ccEvtMgr"=2 C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2007-02-15 236928] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=323 "NoDriveAutoRun"=67108863 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"= "NoDriveAutoRun"= "HonorAutoRunSetting"= "NoDriveTypeAutoRun"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealOne Player" "C:\Program Files\DivX\DivX Player\DivX Player.exe"="C:\Program Files\DivX\DivX Player\DivX Player.exe:*:Enabled:DivX Player" "C:\Program Files\Fichiers communs\aolshare\sysinfo\sinf.exe"="C:\Program Files\Fichiers communs\aolshare\sysinfo\sinf.exe:*:Enabled:AOL - Informations sur le système" "C:\WINDOWS\system32\mmc.exe"="C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console" "C:\Program Files\Shareaza\Shareaza.exe"="C:\Program Files\Shareaza\Shareaza.exe:*:Enabled:Shareaza" "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\emule.exe"="C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\emule.exe:*:Enabled:eMule" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\eMule Applejuice\emule.exe"="C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1\eMule Applejuice\emule.exe:*:Enabled:eMule" "C:\Program Files\Neuf\Media Center\httpd\httpd.exe"="C:\Program Files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel)" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" ======List of files/folders created in the last 1 months====== 2009-03-18 17:14:17 ----D---- C:\Program Files\trend micro 2009-03-18 06:24:46 ----AC---- C:\ComboFix.txt 2009-03-18 06:02:44 ----D---- C:\WINDOWS\LastGood 2009-03-18 05:06:04 ----A---- C:\WINDOWS\NIRCMD.exe 2009-03-18 05:06:01 ----A---- C:\WINDOWS\SWREG.exe 2009-03-18 05:06:00 ----A---- C:\WINDOWS\zip.exe 2009-03-18 05:05:57 ----A---- C:\WINDOWS\grep.exe 2009-03-18 05:05:56 ----A---- C:\WINDOWS\sed.exe 2009-03-18 05:05:55 ----A---- C:\WINDOWS\fdsv.exe 2009-03-18 05:05:53 ----A---- C:\WINDOWS\VFIND.exe 2009-03-18 05:05:51 ----A---- C:\WINDOWS\SWSC.exe 2009-03-18 05:05:49 ----A---- C:\WINDOWS\SWXCACLS.exe 2009-03-18 05:02:41 ----D---- C:\WINDOWS\ERDNT 2009-03-18 05:00:21 ----DC---- C:\Qoobox 2009-03-17 00:06:44 ----DC---- C:\rsit 2009-03-11 18:44:15 ----D---- C:\Program Files\EsetOnlineScanner 2009-03-11 12:41:28 ----A---- C:\WINDOWS\system32\Machnm1.exe 2009-03-11 12:41:18 ----D---- C:\Program Files\Defenza 2009-03-11 10:51:18 ----D---- C:\WINDOWS\avxoscan 2009-03-11 09:42:44 ----A---- C:\WINDOWS\system32\javaws.exe 2009-03-11 09:42:44 ----A---- C:\WINDOWS\system32\javaw.exe 2009-03-11 09:42:44 ----A---- C:\WINDOWS\system32\java.exe 2009-03-11 09:23:29 ----D---- C:\Program Files\WOT 2009-03-11 02:34:00 ----D---- C:\Program Files\Windows Defender 2009-03-11 02:26:01 ----DC---- C:\fsaua.data 2009-03-11 02:22:01 ----D---- C:\Program Files\Update Services 2009-03-11 01:48:34 ----D---- C:\Program Files\Microsoft Baseline Security Analyzer 2 2009-03-11 01:45:22 ----D---- C:\Program Files\McafeeRootkitDetective 2009-03-10 18:51:09 ----DC---- C:\756ebbc6acbbe51a509140b77c43 2009-03-10 18:20:44 ----DC---- C:\679180b666ef33bd1acd4a13ce81605e 2009-03-09 18:39:45 ----DC---- C:\MFT 143762 2009-03-09 18:39:31 ----DC---- C:\MFT 123117 2009-03-09 13:56:24 ----D---- C:\Program Files\AxBx 2009-03-09 11:03:26 ----DC---- C:\00c1dd6213e4481ea3 2009-03-09 11:02:24 ----DC---- C:\f30a645f33c1db201701c677 2009-02-21 08:24:12 ----DC---- C:\lgupload 2009-02-21 08:20:58 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\LG Electronics 2009-02-21 08:13:19 ----D---- C:\Program Files\LG Electronics 2009-02-21 08:09:37 ----D---- C:\Program Files\LG PC Suite 2 2009-02-21 08:09:01 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\InstallShield ======List of files/folders modified in the last 1 months====== 2009-03-18 17:14:30 ----D---- C:\WINDOWS\Prefetch 2009-03-18 17:14:17 ----D---- C:\Program Files 2009-03-18 06:24:50 ----HD---- C:\WINDOWS\system32\drivers 2009-03-18 06:24:50 ----D---- C:\WINDOWS\system32 2009-03-18 06:24:49 ----D---- C:\WINDOWS\Temp 2009-03-18 06:24:47 ----D---- C:\WINDOWS 2009-03-18 06:14:02 ----AC---- C:\WINDOWS\system.ini 2009-03-18 06:13:43 ----D---- C:\WINDOWS\Debug 2009-03-18 06:03:30 ----HD---- C:\WINDOWS\inf 2009-03-18 06:02:59 ----HD---- C:\WINDOWS\$hf_mig$ 2009-03-18 06:02:42 ----D---- C:\WINDOWS\system32\CatRoot2 2009-03-18 06:00:10 ----D---- C:\WINDOWS\Registration 2009-03-18 05:57:42 ----D---- C:\WINDOWS\system32\config 2009-03-18 05:55:02 ----D---- C:\WINDOWS\AppPatch 2009-03-18 05:54:56 ----D---- C:\Program Files\Fichiers communs 2009-03-18 05:48:57 ----D---- C:\Program Files\Internet Explorer 2009-03-18 05:48:18 ----N---- C:\WINDOWS\SchedLgU.Txt 2009-03-18 05:05:43 ----D---- C:\WINDOWS\system32\Restore 2009-03-18 05:05:42 ----SHD---- C:\System Volume Information 2009-03-12 07:07:29 ----SD---- C:\WINDOWS\Downloaded Program Files 2009-03-11 14:11:28 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\OpenOffice.org2 2009-03-11 13:27:43 ----HDC---- C:\BJPrinter 2009-03-11 12:41:18 ----HD---- C:\Program Files\InstallShield Installation Information 2009-03-11 11:49:40 ----D---- C:\Program Files\Spybot - Search & Destroy 2009-03-11 11:49:38 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2009-03-11 09:43:03 ----SHD---- C:\WINDOWS\Installer 2009-03-11 09:42:40 ----D---- C:\Program Files\Java 2009-03-11 08:16:09 ----D---- C:\Program Files\Windows Live Safety Center 2009-03-11 07:41:09 ----SD---- C:\WINDOWS\Tasks 2009-03-11 04:16:52 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec 2009-03-11 04:13:51 ----D---- C:\Program Files\Fichiers communs\Symantec Shared 2009-03-11 02:34:00 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2009-03-10 23:59:46 ----SD---- C:\WINDOWS\system32\Microsoft 2009-03-10 23:57:46 ----SD---- C:\Documents and Settings\christophe.SN1006475\Application Data\Microsoft 2009-03-10 23:57:37 ----DC---- C:\WINDOWS\system32\DRVSTORE 2009-03-10 18:51:05 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2009-03-10 18:34:53 ----D---- C:\WINDOWS\Minidump 2009-03-10 06:19:35 ----D---- C:\Program Files\CCleaner 2009-03-09 16:42:11 ----RSD---- C:\WINDOWS\assembly 2009-03-09 16:17:16 ----D---- C:\WINDOWS\Microsoft.NET 2009-03-09 12:20:21 ----D---- C:\WINDOWS\SxsCaPendDel 2009-03-09 12:15:12 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI 2009-03-09 12:14:32 ----D---- C:\WINDOWS\WinSxS 2009-03-06 18:25:06 ----D---- C:\Program Files\TuneUp Utilities 2008 2009-03-06 10:21:18 ----AC---- C:\WINDOWS\NeroDigital.ini 2009-03-05 03:06:08 ----D---- C:\Program Files\PeerGuardian2 2009-03-04 15:26:11 ----AD---- C:\Program Files\eMule.v0.48a.Applejuice.v2.0.1 2009-02-27 14:55:09 ----D---- C:\Program Files\Microsoft Silverlight 2009-02-25 21:03:25 ----RSHD---- C:\WINDOWS\system32\dllcache 2009-02-25 12:55:00 ----AC---- C:\WINDOWS\system32\MRT.exe 2009-02-23 10:07:42 ----D---- C:\Documents and Settings\christophe.SN1006475\Application Data\Media Player Classic ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-14 41856] R1 Asapi;Asapi; C:\WINDOWS\system32\drivers\Asapi.sys [2002-08-06 11264] R1 c2scsi;c2scsi; C:\WINDOWS\system32\drivers\c2scsi.sys [2006-03-04 241664] R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2006-08-01 12952] R1 DLARTL_M;DLARTL_M; C:\WINDOWS\System32\Drivers\DLARTL_M.SYS [2006-08-01 28216] R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys [] R1 SRTSP;SRTSP; C:\WINDOWS\System32\Drivers\SRTSP.SYS [2007-01-12 247608] R1 SRTSPX;SRTSPX; C:\WINDOWS\System32\Drivers\SRTSPX.SYS [2007-01-12 25400] R1 SYMTDI;SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [2006-09-02 186048] R1 vcsmpdrv;vcsmpdrv; C:\WINDOWS\System32\DRIVERS\vcsmpdrv.sys [2002-06-07 49232] R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244] R2 DLABMFSM;DLABMFSM; C:\WINDOWS\System32\DLA\DLABMFSM.SYS [2006-08-08 35128] R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2006-08-08 32504] R2 DLADResM;DLADResM; C:\WINDOWS\System32\DLA\DLADResM.SYS [2006-08-08 9464] R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2006-08-08 104504] R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2006-08-08 26136] R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2006-08-08 14552] R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2006-08-08 97880] R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2006-08-08 94680] R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2006-08-01 51800] R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2003-08-14 404736] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2003-08-21 462940] R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800] R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2006-05-03 1540608] R3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\System32\DRIVERS\fetnd5b.sys [2003-04-24 41984] R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2008-07-26 25624] R3 NAVENG;NAVENG; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20070720.016\NAVENG.SYS [] R3 NAVEX15;NAVEX15; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20070720.016\NAVEX15.SYS [] R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824] R3 Pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\Pcouffin.sys [2007-04-05 47360] R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [] R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Concentrateur USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-08-04 33588] S1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [] S1 InCDRm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys [] S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14720] S2 ADILOADER;General Purpose USB Driver (adildr.sys); C:\WINDOWS\System32\Drivers\adildr.sys [2004-03-02 50007] S3 adiusbaw;USB ADSL WAN Adapter; C:\WINDOWS\System32\DRIVERS\adiusbaw.sys [2005-09-19 126489] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [] S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-05-09 41888] S3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\System32\DRIVERS\Mtlmnt5.sys [2003-01-21 210024] S3 Mtlstrm;Mtlstrm; C:\WINDOWS\System32\DRIVERS\Mtlstrm.sys [2003-01-21 1290312] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 NtMtlFax;NtMtlFax; C:\WINDOWS\System32\DRIVERS\NtMtlFax.sys [2003-01-17 162136] S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2004-08-03 1897408] S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2007-05-09 14112] S3 pgfilter;pgfilter; \??\C:\Program Files\PeerGuardian2\pgfilter.sys [] S3 PID_08A0;QuickCam IM(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2005-01-31 912768] S3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\WINDOWS\system32\DRIVERS\LV302V32.SYS [2007-05-09 1276832] S3 RecAgent;recagent; \??\C:\WINDOWS\System32\DRIVERS\RecAgent.sys [] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 Slntamr;SmartLink AMR_PCI Driver; C:\WINDOWS\System32\DRIVERS\slntamr.sys [2003-01-17 507008] S3 SlNtHal;SlNtHal; C:\WINDOWS\System32\DRIVERS\Slnthal.sys [2003-01-21 84784] S3 SlWdmSup;SlWdmSup; C:\WINDOWS\System32\DRIVERS\SlWdmSup.sys [2003-01-17 39348] S3 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys [] S3 SRTSPL;SRTSPL; C:\WINDOWS\System32\Drivers\SRTSPL.SYS [2007-01-12 276792] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 SYMDNS;SYMDNS; C:\WINDOWS\System32\Drivers\SYMDNS.SYS [2006-09-02 11968] S3 SYMFW;SYMFW; C:\WINDOWS\System32\Drivers\SYMFW.SYS [2006-09-02 144832] S3 SYMIDS;SYMIDS; C:\WINDOWS\System32\Drivers\SYMIDS.SYS [2006-09-02 39104] S3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\IDS-DI~1\20070709.002\SymIDSCo.sys [] S3 SYMNDIS;SYMNDIS; C:\WINDOWS\System32\Drivers\SYMNDIS.SYS [2006-09-02 33216] S3 SYMREDRV;SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2006-09-02 26432] S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2007-07-11 12416] S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2007-07-11 19840] S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2007-07-11 21632] S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S4 InCDFs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [] S4 RxFilter;RxFilter; C:\WINDOWS\system32\DRIVERS\RxFilter.sys [2006-08-09 50688] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592] R2 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-17 152984] R2 LVCOMSer;LVCOMSer; C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe [2008-07-26 186904] R2 LVPrcSrv;Process Monitor; C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe [2008-07-26 150040] R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2003-06-20 322120] R2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [2006-09-08 198336] R2 RoxWatch9;Roxio Hard Drive Watcher 9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [2006-08-10 159744] R2 UxTuneUp;TuneUp Extension de thème; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] R2 VCSSecS;Virtual CD v4 Security service (SDK - Version); C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe [2002-05-16 139264] R2 vkservice;VirusKeeper antivirus/antispyware; C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe [2008-09-26 1119584] R2 WANMiniportService;WAN Miniport (ATW) Service; C:\WINDOWS\wanmpsvc.exe [2003-08-04 65536] R3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-08-10 880640] S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192] S2 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S2 Roxio Upnp Server 9;Roxio Upnp Server 9; C:\Program Files\Fichiers communs\Sonic Shared\RoxioUpnpService9.exe [2006-08-10 294912] S2 RoxLiveShare9;LiveShare P2P Server 9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe [2006-08-10 303104] S2 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2003-01-17 45056] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864] S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-26 138168] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256] S3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104] S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE [2006-09-08 2528960] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776] S3 Roxio UPnP Renderer 9;Roxio UPnP Renderer 9; C:\Program Files\Fichiers communs\Sonic Shared\RoxioUPnPRenderer9.exe [2006-08-10 57344] S3 stllssvr;stllssvr; C:\Program Files\Fichiers communs\SureThing Shared\stllssvr.exe [2006-07-20 73728] S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2008-03-04 307968] S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S4 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696] S4 ccEvtMgr;Symantec Event Manager; C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe [2007-01-09 108648] S4 ccSetMgr;Symantec Settings Manager; C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe [2007-01-09 108648] S4 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe [2007-01-09 108648] S4 ISPwdSvc;Validation de mot de passe Symantec IS; C:\Program Files\Norton AntiVirus\isPwdSvc.exe [2009-03-16 79496] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880] S4 Symantec Core LC;Symantec Core LC; C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe [2009-03-14 1087680] S4 SymAppCore;Symantec AppCore Service; C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe [2006-09-01 46736] S4 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592] -----------------EOF-----------------

salut à toi ô grand Gof Suprème, et encore merci de consacrer ton temps à mon pb. je n'a tjrs pas reinstaller d'antivirus...j'ai cru comprendre qu'Antivir +spybot etait une bonne combinaison? voici le rapport combo-fix ComboFix 09-03-15.01 - christophe.SN1006475 2009-03-18 23:20:03.2 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.1023.563 [GMT 1:00] Lancé depuis: c:\documents and settings\christophe.SN1006475\Bureau\Combo-Fix.exe AV: Norton AntiVirus *On-access scanning enabled* (Updated) FW: Norton AntiVirus *enabled* . ((((((((((((((((((((((((((((( Fichiers créés du 2009-02-18 au 2009-03-18 )))))))))))))))))))))))))))))))))))) . 2009-03-18 17:14 . 2009-03-18 18:25 <REP> d-------- c:\program files\trend micro 2009-03-18 06:02 . 2009-03-18 06:02 <REP> d-------- c:\windows\LastGood 2009-03-17 00:06 . 2009-03-18 18:26 <REP> d----c--- C:\rsit 2009-03-11 18:44 . 2009-03-12 07:09 <REP> d-------- c:\program files\EsetOnlineScanner 2009-03-11 12:41 . 2009-03-11 12:41 <REP> d-------- c:\program files\Defenza 2009-03-11 12:41 . 1996-08-20 20:37 15,840 --a------ c:\windows\system32\Machnm1.exe 2009-03-11 12:41 . 2005-09-25 16:37 5,632 --a------ c:\windows\system32\Machnm64.sys 2009-03-11 12:41 . 2009-03-11 12:41 3,120 --a------ c:\windows\system32\118290.54 2009-03-11 12:41 . 2009-03-11 12:41 3,120 --a------ c:\windows\118294.78 2009-03-11 12:41 . 2003-08-13 00:27 2,304 --a------ c:\windows\system32\Machnm32.sys 2009-03-11 10:51 . 2009-03-11 12:11 <REP> d-------- c:\windows\avxoscan 2009-03-11 09:23 . 2009-03-11 09:23 <REP> d-------- c:\program files\WOT 2009-03-11 02:34 . 2009-03-11 02:34 <REP> d-------- c:\program files\Windows Defender 2009-03-11 02:26 . 2009-03-11 02:26 <REP> d----c--- C:\fsaua.data 2009-03-11 02:22 . 2009-03-11 02:22 <REP> d-------- c:\program files\Update Services 2009-03-11 01:50 . 2009-03-11 11:30 <REP> d-------- c:\documents and settings\christophe.SN1006475\SecurityScans 2009-03-11 01:48 . 2009-03-11 01:48 <REP> d-------- c:\program files\Microsoft Baseline Security Analyzer 2 2009-03-11 01:45 . 2009-03-11 01:45 <REP> d-------- c:\program files\McafeeRootkitDetective 2009-03-10 18:51 . 2009-03-10 20:44 <REP> d----c--- C:\756ebbc6acbbe51a509140b77c43 2009-03-10 18:20 . 2009-03-10 18:20 <REP> d----c--- C:\679180b666ef33bd1acd4a13ce81605e 2009-03-09 18:39 . 2009-03-09 18:39 <REP> d----c--- C:\MFT 143762 2009-03-09 18:39 . 2009-03-09 18:39 <REP> d----c--- C:\MFT 123117 2009-03-09 13:56 . 2009-03-09 14:00 <REP> d-------- c:\program files\AxBx 2009-03-09 11:03 . 2009-03-09 11:03 <REP> d----c--- C:\00c1dd6213e4481ea3 2009-03-09 11:02 . 2009-03-09 11:03 <REP> d----c--- C:\f30a645f33c1db201701c677 2009-02-21 08:24 . 2009-02-21 08:24 <REP> d----c--- C:\lgupload 2009-02-21 08:20 . 2009-02-21 08:20 <REP> d-------- c:\documents and settings\christophe.SN1006475\Application Data\LG Electronics 2009-02-21 08:13 . 2009-02-21 08:13 <REP> d-------- c:\program files\LG Electronics 2009-02-21 08:13 . 2007-07-11 10:45 21,632 --a------ c:\windows\system32\drivers\lgusbmodem.sys 2009-02-21 08:13 . 2007-07-11 15:51 19,840 --a------ c:\windows\system32\drivers\lgusbdiag.sys 2009-02-21 08:13 . 2007-07-11 10:40 12,416 --a------ c:\windows\system32\drivers\lgusbbus.sys 2009-02-21 08:09 . 2009-02-21 08:10 <REP> d-------- c:\program files\LG PC Suite 2 2009-02-21 08:09 . 2009-02-21 08:09 <REP> d-------- c:\documents and settings\christophe.SN1006475\Application Data\InstallShield 2009-02-18 11:09 . 2009-02-18 11:10 <REP> d-------- c:\documents and settings\SOPHIE.SN100647590008\Application Data\Winamp . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2009-03-11 13:11 --------- d-----w c:\documents and settings\christophe.SN1006475\Application Data\OpenOffice.org2 2009-03-11 11:41 --------- d--h--w c:\program files\InstallShield Installation Information 2009-03-11 10:49 --------- d-----w c:\program files\Spybot - Search & Destroy 2009-03-11 10:49 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2009-03-11 08:42 --------- d-----w c:\program files\Java 2009-03-11 07:16 --------- d-----w c:\program files\Windows Live Safety Center 2009-03-11 03:16 --------- d-----w c:\documents and settings\All Users\Application Data\Symantec 2009-03-11 03:13 --------- d-----w c:\program files\Fichiers communs\Symantec Shared 2009-03-10 17:51 --------- d-----w c:\documents and settings\All Users\Application Data\Microsoft Help 2009-03-10 05:19 --------- d-----w c:\program files\CCleaner 2009-03-06 17:25 --------- d-----w c:\program files\TuneUp Utilities 2008 2009-03-05 02:06 --------- d-----w c:\program files\PeerGuardian2 2009-03-04 14:26 --------- d---a-w c:\program files\eMule.v0.48a.Applejuice.v2.0.1 2009-02-27 13:55 --------- d-----w c:\program files\Microsoft Silverlight 2009-02-23 09:07 --------- d-----w c:\documents and settings\christophe.SN1006475\Application Data\Media Player Classic 2009-02-22 13:25 --------- d-----w c:\documents and settings\SOPHIE.SN100647590008\Application Data\OpenOffice.org2 2009-01-29 22:35 --------- d-----w c:\program files\Fichiers communs\Adobe 2009-01-26 17:15 --------- d-----w c:\program files\Fichiers communs\Logitech 2009-01-17 12:29 410,984 ----a-w c:\windows\system32\deploytk.dll 2009-01-16 20:15 3,594,752 ----a-w c:\windows\system32\dllcache\mshtml.dll 2008-12-20 22:47 826,368 ----a-w c:\windows\system32\wininet.dll 2008-12-20 22:47 826,368 ----a-w c:\windows\system32\dllcache\wininet.dll 2008-12-20 22:47 671,232 ----a-w c:\windows\system32\dllcache\mstime.dll 2008-12-20 22:47 477,696 ----a-w c:\windows\system32\dllcache\mshtmled.dll 2008-12-20 22:47 44,544 ----a-w c:\windows\system32\dllcache\pngfilt.dll 2008-12-20 22:47 233,472 ------w c:\windows\system32\dllcache\webcheck.dll 2008-12-20 22:47 193,024 ----a-w c:\windows\system32\dllcache\msrating.dll 2008-12-20 22:47 105,984 ------w c:\windows\system32\dllcache\url.dll 2008-12-20 22:47 102,912 ------w c:\windows\system32\dllcache\occache.dll 2008-12-20 22:47 1,160,192 ----a-w c:\windows\system32\dllcache\urlmon.dll 2008-12-19 09:11 70,656 ----a-w c:\windows\system32\dllcache\ie4uinit.exe 2008-12-19 09:10 13,824 ------w c:\windows\system32\dllcache\ieudinit.exe 2008-12-19 05:25 634,024 ------w c:\windows\system32\dllcache\iexplore.exe 2008-12-19 05:23 161,792 ----a-w c:\windows\system32\dllcache\ieakui.dll 2008-10-31 20:47 2,853,682 ----a-w c:\program files\foobar2000_0.9.5.6.exe 2008-07-13 16:55 91,280 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\GDIPFONTCACHEV1.DAT 2007-04-05 05:39 87,608 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\ezpinst.exe 2007-04-05 05:39 47,360 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\pcouffin.sys 2006-11-30 15:34 57,115,310 -c--a-w c:\program files\openofficeorg3.cab 2006-11-30 15:34 3,293,189 -c--a-w c:\program files\openofficeorg4.cab 2006-11-30 15:25 15,519,277 -c--a-w c:\program files\openofficeorg2.cab 2006-11-30 15:22 18,447,022 -c--a-w c:\program files\openofficeorg1.cab 2006-11-30 15:17 5,298,688 -c--a-w c:\program files\openofficeorg21.msi 2006-11-30 15:17 217 -c--a-w c:\program files\setup.ini 2006-11-04 19:36 758,272 -c--a-w c:\program files\VirtualDub.exe 2006-11-04 19:36 120,328 -c--a-w c:\program files\VirtualDub.vdi 2006-11-04 19:35 7,738 -c--a-w c:\program files\vdub.exe 2006-11-04 19:34 210,423 -c--a-w c:\program files\VirtualDub.chm 2005-08-25 21:44 14,545 -c--a-w c:\program files\Codecs.ini 2005-08-25 20:17 929,280 -c--a-w c:\program files\VirtualDubMod.exe 2005-08-25 20:17 137,733 -c--a-w c:\program files\VirtualDubMod.vdi 2005-08-25 20:10 9,804 -c--a-w c:\program files\vdremote.dll 2005-08-25 20:10 40,960 -c--a-w c:\program files\AuxSetup.exe 2005-08-25 20:10 11,340 -c--a-w c:\program files\vdicmdrv.dll 2005-08-25 20:09 7,244 -c--a-w c:\program files\vdsvrlnk.dll 2004-09-12 11:22 615 -c--a-w c:\program files\VirtualDubMod.exe.manifest 2003-12-03 19:26 210,415 -c--a-w c:\program files\VirtualDubMod.chm 2003-12-01 22:11 74,186 -c--a-w c:\program files\VirtualDub.vdhelp 2003-10-01 16:31 18,321 -c--a-w c:\program files\copying 2003-04-25 22:29 146,944 -c--a-w c:\program files\SciLexer.dll 2003-03-17 19:41 1,263 -c--a-w c:\program files\readme_virtualdubmod_dlls.txt 2003-03-11 21:50 48,640 -c--a-w c:\program files\vorbis.dll 2003-03-11 21:10 20,992 -c--a-w c:\program files\ogg.dll 2003-03-10 15:42 125,440 -c--a-w c:\program files\corona.dll 2002-11-14 17:55 56,832 -c--a-w c:\program files\AviSynthLexer.lexer 2002-05-22 04:18 860 -c--a-w c:\program files\license_corona.txt 2002-03-11 09:06 1,822,520 -c--a-w c:\program files\instmsiw.exe 2002-03-11 08:45 1,708,856 -c--a-w c:\program files\instmsia.exe 2007-01-19 03:50 60,518 -c--a-w c:\program files\mozilla firefox\components\jar50.dll 2007-01-19 03:51 49,248 -c--a-w c:\program files\mozilla firefox\components\jsd3250.dll 2007-01-19 03:50 165,992 -c--a-w c:\program files\mozilla firefox\components\xpinstal.dll 2005-05-13 16:12 217,073 -csha-r c:\windows\meta4.exe 2007-01-16 18:30 56 -csh--r c:\windows\system32\1701ED2D90.sys 2005-07-14 11:31 27,648 -csha-r c:\windows\system32\AVSredirect.dll 2005-06-26 14:32 616,448 -csha-r c:\windows\system32\cygwin1.dll 2005-06-21 21:37 45,568 -csha-r c:\windows\system32\cygz.dll 2006-05-03 09:06 163,328 -csh--r c:\windows\system32\flvDX.dll 2004-01-24 23:00 70,656 --sha-r c:\windows\system32\i420vfw.dll 2007-07-22 07:30 848 -csha-w c:\windows\system32\KGyGaAvL.sys 2007-02-21 10:47 31,232 -csh--r c:\windows\system32\msfDX.dll 2005-02-28 12:16 240,128 -csha-r c:\windows\system32\x.264.exe 2004-01-25 16:18 70,656 -csha-w c:\windows\system32\yv12vfw.dll 2008-06-07 20:42 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008060720080608\index.dat . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Neuf Media Center"="c:\program files\Neuf\Media Center\MediaCenter.exe" [2007-10-15 1025264] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "ccleaner"="c:\program files\CCleaner\ccleaner.exe" [2009-02-19 1471728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ACTIVBOARD"="c:\apps\ABoard\ABoard.exe" [2003-05-02 24576] "OFFICEKB"="c:\program files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE" [2007-01-04 401920] "FLMOFFICE4DMOUSE"="c:\program files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe" [2007-01-04 370176] "ISUSPM Startup"="c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 221184] "LogitechCommunicationsManager"="c:\program files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" [2008-08-14 565008] "LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam\Quickcam.exe" [2008-08-14 2407184] "QuickTime Task"="c:\program files\QuickTime Alternative\qttask.exe" [2008-03-28 413696] "TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-05-01 185896] "MMTray"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" [2006-01-19 110592] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792] "WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-07-09 36352] "VirusKeeper"="c:\program files\AxBx\VirusKeeper 2009 Pro Evaluation\VirusKeeper.exe" [2009-03-16 3824512] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-17 148888] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] "Picasa Media Detector"="c:\program files\Picasa2\PicasaMediaDetector.exe" [2007-09-28 443968] c:\documents and settings\SOPHIE.SN100647590008\Menu D‚marrer\Programmes\D‚marrage\ OpenOffice.org 2.4.lnk - c:\program files\OpenOffice.org 2.4\program\quickstart.exe [2008-01-21 393216] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Logitech Desktop Messenger.lnk - c:\program files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2006-12-28 450560] [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0] Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00877.JPG FriendlyName= [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\1] Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00874.JPG FriendlyName= [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\2] Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00840.JPG FriendlyName= [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.I420"= i420vfw.dll "vidc.3ivx"= 3ivxVfWCodec.dll "vidc.3iv2"= 3ivxVfWCodec.dll "msacm.divxa32"= divxa32.acm "VIDC.HFYU"= huffyuv.dll "VIDC.i263"= i263_32.drv "msacm.imc"= imc32.acm "VIDC.VP31"= vp31vfw.dll "vidc.X264"= x264vfw.dll "msacm.avis"= ff_acm.acm [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0stera [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^DSLMON.lnk] backup=c:\windows\pss\DSLMON.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] --a--c--- 2003-08-12 20:10 335872 c:\ati technologies\ATI Control Panel\atiptaxx.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp] --a--c--- 2009-03-14 10:56 115816 c:\program files\Fichiers communs\Symantec Shared\ccApp.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccRegVfy] --a--c--- 2002-11-19 15:24 59056 c:\program files\Fichiers communs\Symantec Shared\ccRegVfy.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DMXLauncher] --a--c--- 2006-08-14 01:07 102400 c:\program files\Roxio\Media Experience\DMXLauncher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MimBoot] --a--c--- 2006-01-19 11:06 11776 c:\progra~1\MUSICM~1\MUSICM~1\mimboot.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray] --a------ 2006-01-19 11:06 110592 c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a--c--- 2007-01-19 12:55 5674352 c:\program files\MSN Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck] --a--c--- 2009-03-16 01:57 26248 c:\program files\Norton AntiVirus\osCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector] --a------ 2007-09-28 02:17 443968 c:\program files\Picasa2\PicasaMediaDetector.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc] --a--c--- 2006-07-31 09:00 1116920 c:\program files\Roxio\Drag-to-Disc\DrgToDsc.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray] --a--c--- 2006-08-10 12:10 221184 c:\program files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] --a------ 2008-05-01 17:31 185896 c:\program files\Fichiers communs\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] --a------ 2008-07-09 22:33 36352 c:\program files\Winamp\winampa.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Boonty Games"=3 (0x3) "SymAppCore"=2 (0x2) "Symantec Core LC"=3 (0x3) "LiveUpdate Notice Service"=2 (0x2) "LiveUpdate Notice Ex"=2 (0x2) "LiveUpdate"=3 (0x3) "ISPwdSvc"=3 (0x3) "CLTNetCnService"=2 (0x2) "ccSetMgr"=2 (0x2) "ccEvtMgr"=2 (0x2) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" "ctfmon.exe"=c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "eCarteBleue-BP"="c:\program files\e-Carte Bleue\Banque Populaire\ECB-BP.exe" /dontopenmycards "mm_server"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_server.exe" "ISUSScheduler"="c:\program files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start "ISUSPM Startup"=c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup "SoundMan"=SOUNDMAN.EXE "TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot "MMTray"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"= "c:\\Program Files\\DivX\\DivX Player\\DivX Player.exe"= "c:\\Program Files\\Fichiers communs\\aolshare\\sysinfo\\sinf.exe"= "c:\\WINDOWS\\system32\\mmc.exe"= "c:\\Program Files\\Shareaza\\Shareaza.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\eMule.v0.48a.Applejuice.v2.0.1\\emule.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "c:\\Program Files\\MSN Messenger\\livecall.exe"= "c:\\Program Files\\eMule.v0.48a.Applejuice.v2.0.1\\eMule Applejuice\\emule.exe"= "c:\program files\Neuf\Media Center\httpd\httpd.exe"= c:\program files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "57438:TCP"= 57438:TCP:Azureus "57438:UDP"= 57438:UDP:Azureus "22974:TCP"= 22974:TCP:eMule TCP "9547:TCP"= 9547:TCP:eMule UDP R1 Asapi;Asapi;c:\windows\system32\drivers\asapi.sys [2003-10-07 11264] R1 c2scsi;c2scsi;c:\windows\system32\drivers\c2scsi.sys [2007-08-05 241664] R1 vcsmpdrv;vcsmpdrv;c:\windows\system32\drivers\vcsmpdrv.sys [2003-10-07 49232] R2 VCSSecS;Virtual CD v4 Security service (SDK - Version);c:\program files\Virtual CD v4 SDK\System\vcssecs.exe [2003-10-07 139264] R2 vkservice;VirusKeeper antivirus/antispyware;c:\program files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe [2008-09-26 1119584] S4 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [2006-11-03 13592] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Contenu du dossier 'Tâches planifiées' 2009-03-14 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 13:57] 2009-03-18 c:\windows\Tasks\Maintenance en 1 clic.job - c:\program files\TuneUp Utilities 2008\OneClickStarter.exe [2008-03-03 09:42] 2009-03-18 c:\windows\Tasks\MP Scheduled Scan.job - c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 19:20] 2009-03-18 c:\windows\Tasks\Norton AntiVirus - Analyse système complète - christophe.SN1006475.job - c:\progra~1\NORTON~1\Navw32.exe [2009-03-17 01:06] 2009-03-18 c:\windows\Tasks\RegCure Program Check.job - c:\program files\RegCure\RegCure.exe [2008-04-21 22:21] 2009-03-12 c:\windows\Tasks\RegCure.job - c:\program files\RegCure\RegCure.exe [2008-04-21 22:21] 2009-03-18 c:\windows\Tasks\User_Feed_Synchronization-{1050FBD2-23BA-4551-831E-6B72F17466F3}.job - c:\windows\system32\msfeedssync.exe [2007-08-13 17:36] 2009-03-18 c:\windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job - c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 11:20] . . ------- Examen supplémentaire ------- . uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uStart Page = hxxp://www.neufportail.fr/ uInternet Settings,ProxyOverride = localhost;*.local uSearchURL,(Default) = hxxp://www.google.com/search?q=%s Trusted Zone: eset.com\www Trusted Zone: java.com\www Trusted Zone: secuser.com\www DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab DPF: {9D3AA934-55FA-4373-96FD-ED7787E4F161} - hxxps://collectionsbmu.ville-ge.ch/Components/WindowsHooker.dll FF - ProfilePath - ---- PARAMETRES FIREFOX ---- c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.cookie.p3plevel", 1); // 0=low, 1=medium, 2=high, 3=custom c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.enablePad", false); // Allow client to do proxy autodiscovery c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.default", "chrome://branding/content/searchconfig.properties"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.custom", "chrome://branding/content/searchconfig.properties"); . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-03-18 23:21:46 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_USERS\S-1-5-21-2307018245-1465403579-252423984-1007\Software\Microsoft\SystemCertificates\AddressBook*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) @SACL= [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{53c1be49-d401-41c2-b7c0-cd34ec48a086}] @Denied: (Full) (Everyone) "Model"=dword:00000020 "Therad"=dword:0000001e "MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26, 38,95,44,ff,25,5b,70,e9,89,02,32,a1,dc,95,7b,71,fe,7a,d3,75,c0,90,48,62,87,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}] @Denied: (Full) (Everyone) "scansk"=hex(0):4e,ff,5e,b3,e1,4f,64,5b,7e,e1,b9,28,dd,33,c0,0c,52,df,02,8e,25, 74,ee,dd,2c,2c,fa,22,ef,66,f1,9a,5f,1c,0f,74,6c,ce,30,b5,00,00,00,00,00,00,\ . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'winlogon.exe'(676) c:\windows\system32\Ati2evxx.dll . Heure de fin: 2009-03-18 23:25:09 ComboFix-quarantined-files.txt 2009-03-18 22:24:18 ComboFix2.txt 2009-03-18 05:24:46 Avant-CF: 10 904 829 952 octets libres Après-CF: 10,893,619,200 octets libres 343 --- E O F --- 2009-03-18 05:02:35

Bonjour Gof, désolé du delais mais Combo-Fix n'a pas voulu démarré du 1er coup et jai patienté , puis au 3e essai j'ai eu un message win 32 pis finalement l'invite et l'analyse jointe ainsi que l'analyse RSIT . encore merci de me consacrer du temps je te joins egalemnent la dernière analyse de ESET on line scanner de Nod32, analyse que j'ai interrompu au bout de 3 jours de PC qui rame # version=4 # OnlineScanner.ocx=1.0.0.635 # OnlineScannerDLLA.dll=1, 0, 0, 79 # OnlineScannerDLLW.dll=1, 0, 0, 78 # OnlineScannerUninstaller.exe=1, 0, 0, 49 # vers_standard_module=3929 (20090311) # vers_arch_module=1.064 (20080214) # vers_adv_heur_module=1.066 (20070917) # EOSSerial=7f40966d3f376641b36829d3b4fa9873 # end=stopped # remove_checked=true # unwanted_checked=true # utc_time=2009-03-16 08:57:22 # local_time=2009-03-16 09:57:22 (+0100, Paris, Madrid) # country="France" # osver=5.1.2600 NT Service Pack 3 # scanned=818491 # found=23 # scan_time=53187 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\4WM6N236\b64[1].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\4WM6N236\b64[2].jpg Win32/Bagle.PF worm (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\4WM6N236\b64[3].jpg Win32/TrojanDownloader.Bagle.NBG trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\4WM6N236\b64_3[1].jpg Win32/Bagle.QI worm (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\4WM6N236\b64_6[1].jpg Win32/TrojanDownloader.Small.OLG trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64[1].jpg Win32/TrojanDownloader.Bagle.NBG trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64[2].jpg Win32/Bagle.QP worm (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64[3].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64[4].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64[5].jpg Win32/TrojanDownloader.Bagle.NBG trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64_2[1].jpg Win32/Bagle.OD worm (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64_3[1].jpg Win32/Bagle.QI worm (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\MQHW88Y1\b64_6[1].jpg Win32/TrojanDownloader.Small.OLG trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\O4JO7PWQ\b64[1].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\O4JO7PWQ\b64[2].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\O4JO7PWQ\b64_2[1].jpg Win32/Bagle.QM worm (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\O4JO7PWQ\b64_6[1].jpg Win32/TrojanDownloader.Small.OLG trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\O4JO7PWQ\b64_6[2].jpg Win32/TrojanDownloader.Small.OLG trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\VC2PB1P9\b64[1].jpg Win32/Bagle.QP worm (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\VC2PB1P9\b64[2].jpg a variant of Win32/TrojanDownloader.Bagle trojan (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\VC2PB1P9\b64_2[1].jpg Win32/Bagle.OD worm (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\VC2PB1P9\b64_2[2].jpg Win32/Bagle.QM worm (unable to clean - deleted) 00000000000000000000000000000000 C:\Documents and Settings\christophe.SN1006475\Local Settings\Temporary Internet Files\Content.IE5\VC2PB1P9\b64_3[1].jpg Win32/Bagle.QI worm (unable to clean - deleted) 00000000000000000000000000000000 ComboFix 09-03-15.01 - christophe.SN1006475 2009-03-18 5:48:38.1 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.1023.678 [GMT 1:00] Lancé depuis: c:\documents and settings\christophe.SN1006475\Bureau\Combo-Fix.exe . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\christophe.SN1006475\Application Data\m c:\documents and settings\christophe.SN1006475\Application Data\m\data.oct c:\documents and settings\christophe.SN1006475\Application Data\m\flec006.exe c:\documents and settings\christophe.SN1006475\Application Data\m\list.oct c:\documents and settings\christophe.SN1006475\Application Data\m\shared\3D Shamrock Fairy 3.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\6 in 1 FLV Downloader 1.00.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Aimersoft Pocket PC Converter Suite 1.1.64.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\All-In Hold 'Em 1.5.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\AnVir Virus Destroyer 3.7.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\AnyBase Converter 1.0.2.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Aspose.Slides for .NET 2.9.0.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Atom Time Synchronizer 3.9 (Crack).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Authentication Image 1.2 Build 20070303.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\AutoTable for MicroStation Excel 3.33.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\AVG.Anti-Virus.Professional.Edition.7.5.433.Build.904.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Avg.Antivirus.Professional.v7.1.371a669.Multilanguage.Keygen.Full.Zongo.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\AVOne Gold Converter 4.15.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\BanishCD 1.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Battlefield 1942 - Killer Commando beta mod.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Best of Hawaii 2 1.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Blast Radius 1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Chat Interface for Operator 1.4 [Key+Serial].zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Christmas Adventure Screensaver 1.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\clipShow Beta 1.0.0706.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Comma Separated Values File Tester 1.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Crime Cities demo.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Cross 3.03.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\CS-RCS Basic 5.1 Build 285.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Desert Combat (Battlefield 1942) - Hopeless map.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Deskloops 1.3.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\DevGuru WML Quick Reference Guide 1.2.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Dictionary English - Portuguese 1.8.33.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Digital Image Tool 1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Dragon Island Nokia 6280.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\eLineStudio Site Composer CMS 2.6.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Enclave gameclips 4 (low - MOV).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Enterprise Mail Server 3.03.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Event Minder 1.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Expletive Deleted 1.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\EZ MP4 iPod Converter 1.0 Key.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\FileZilla Password Recovery 1.0.150.2006.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\G-Lock Email Processor 1.98.700 [Cracked].zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Gantt Chart for Workgroup 1.6.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\GoldfishHD PSP Video Converter 2.02 (Key).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Gui4fmpeg 3.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\HexDump32 1.0.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Home Daycare Plus 1.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\ID Disk Creator 1.2.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\iDVDsoft iPod 3GP PSP MP4 Converter 1.01 [Crack].zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Image2PDF(PDF E-Book Maker) 3.2.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\ImTOO DVD Copy Express 1.1.21.0727 [Cracked].zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Internet Website.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\IP Appmon 4.5.13.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\iYas.com's Multi Clipboard 1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Jammin' Racer 1.3.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\JavaScript Horizontal Image Slider Ex 1.3.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Judy's TenKey 4.5.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\KeepSafe 1.1 (Cracked).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\LanMail 2.1.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\LiteServe 2.81.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Lockdown Plus PC 4.0.372.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Look Around Celtic Ireland Screensaver 1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Map Suite - Winforms Edition 0.95 (Key).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MB Free Personal Aspects Number 1.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MB5-554 Practice Exam Testing Engine Software 1.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\McAfee SiteAdvisor for Internet Explorer 2.8.0.292.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Media Machine 1.0 [Crack].zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Microsas DuzenleXP 1.0.0.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Microsoft InkSeine 1.1.222.0 Beta.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MM3-ProxySwitch 2007.20.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Mobile File Manager (Patch).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MonitorWare Console 3.0.2470.25794 With Crack.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MoreAmp 0.1.22.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Movie Converter 1.41 (Key).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MoviePlay 4.76.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MSC Wave Killer 2.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\MuchFX2 Winamp Plug-in 0.99 (Crack).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\My World Time 1.3.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\myFMbutler SHoebox SDK for Lasso 3.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\NewLive Mpeg to AVI DIVX VCD DVD Converter 3.5 Cracked.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\NOD32-2.70.23-standard.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Offline Email Extractor 2.0 (Crack).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\OtsTurntables Free 1.00.012.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Password Power 2.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\PDF2Tiff DLL for VB 1.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Photos of Motor Trend - Small 2.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Photovista Virtual Tour 3.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\PictureRiver 1.6.2.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\PMPro Mobile Phone Video Converter 2.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Poly Pro 1.11.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Popup Video! 1.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Post It Note Genie 2.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\PressKey 1.0 [Key].zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Prestwood Ping Server 1.21.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Proggybar 1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Psychonauts demo v1.01 patch.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\QuickFI 1.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Qwizdom Interact 1.2.2.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Registry Repair 3.01.17.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Sacred Egyptian Cobra 3D Screensaver 1.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SamLogic CD-Menu Creator 6.0.3.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SDR Audio Convertor 1.0 [Key+Serial].zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Security Task Manager 1.7e.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Serai Puzzle 1.36.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SI Lookup 1.0 Pre-Beta 1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SiSky Enterprise Edition 2.2.0.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Smarty Uninstaller 2008 Pro 2.0.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Spark 2.5.3.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SpeedingHound 3.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\SplitMe 1.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Springboard 0.88 Build 1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\StormChaser 1.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Student's Guide to MLA Style 1.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Swiftpage for Peachtree 1.7.9.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\The New English-German Dictionary 3.8.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Time Watcher 2.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Timecard 2.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Tinysoar iPhone Video Converter 1.6.2.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\tinySpell 1.4 build 1.4.011.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Tunafish VST Sequencer 1.8.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\TurboSplit 1.2 [Key].zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\uCertify Collection for test 70-210 .zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Unreal Tournament 2004 Ego2004 map.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\User Manager 1.0 (KeyGen).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\WebGrid - The plug and play datagrid 1.9 (Patch).zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\WinOnTop 2.0.01.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Winterscapes 2.0.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\Workspace Macro 4.6.1.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\XFile 2.012 Cracked.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\YASA WMV Video Converter 4.3.87.1826 Key+Serial.zip c:\documents and settings\christophe.SN1006475\Application Data\m\shared\ZylBattery 1.20 Crack.zip c:\documents and settings\christophe.SN1006475\Application Data\m\srvlist.oct c:\program files\\setup.exe c:\program files\Internet Explorer\fxavx.ini c:\windows\system32\ban_list.txt c:\windows\system32\drivers\down c:\windows\system32\drivers\downld c:\windows\system32\drivers\downld\1003718.exe c:\windows\system32\drivers\downld\102910328.exe c:\windows\system32\drivers\downld\102919562.exe c:\windows\system32\drivers\downld\102943656.exe c:\windows\system32\drivers\downld\102977187.exe c:\windows\system32\drivers\downld\103005640.exe c:\windows\system32\drivers\downld\103070828.exe c:\windows\system32\drivers\downld\103100484.exe c:\windows\system32\drivers\downld\103113062.exe c:\windows\system32\drivers\downld\103155640.exe c:\windows\system32\drivers\downld\103166109.exe c:\windows\system32\drivers\downld\103181796.exe c:\windows\system32\drivers\downld\103608312.exe c:\windows\system32\drivers\downld\103631296.exe c:\windows\system32\drivers\downld\103664328.exe c:\windows\system32\drivers\downld\103726312.exe c:\windows\system32\drivers\downld\103736265.exe c:\windows\system32\drivers\downld\103767765.exe c:\windows\system32\drivers\downld\103781640.exe c:\windows\system32\drivers\downld\103830812.exe c:\windows\system32\drivers\downld\103843890.exe c:\windows\system32\drivers\downld\103854437.exe c:\windows\system32\drivers\downld\1108203.exe c:\windows\system32\drivers\downld\118277515.exe c:\windows\system32\drivers\downld\118291125.exe c:\windows\system32\drivers\downld\118319843.exe c:\windows\system32\drivers\downld\118387796.exe c:\windows\system32\drivers\downld\118411890.exe c:\windows\system32\drivers\downld\118420312.exe c:\windows\system32\drivers\downld\118460328.exe c:\windows\system32\drivers\downld\118477328.exe c:\windows\system32\drivers\downld\118489703.exe c:\windows\system32\drivers\downld\1198343.exe c:\windows\system32\drivers\downld\1246953.exe c:\windows\system32\drivers\downld\1247750.exe c:\windows\system32\drivers\downld\1261734.exe c:\windows\system32\drivers\downld\1289671.exe c:\windows\system32\drivers\downld\1322203.exe c:\windows\system32\drivers\downld\132910343.exe c:\windows\system32\drivers\downld\132934765.exe c:\windows\system32\drivers\downld\132970343.exe c:\windows\system32\drivers\downld\133035343.exe c:\windows\system32\drivers\downld\133053250.exe c:\windows\system32\drivers\downld\133074781.exe c:\windows\system32\drivers\downld\133084781.exe c:\windows\system32\drivers\downld\133125281.exe c:\windows\system32\drivers\downld\133142640.exe c:\windows\system32\drivers\downld\133154843.exe c:\windows\system32\drivers\downld\1383203.exe c:\windows\system32\drivers\downld\1413265.exe c:\windows\system32\drivers\downld\1416187.exe c:\windows\system32\drivers\downld\1433500.exe c:\windows\system32\drivers\downld\1439578.exe c:\windows\system32\drivers\downld\147586203.exe c:\windows\system32\drivers\downld\147604500.exe c:\windows\system32\drivers\downld\147645921.exe c:\windows\system32\drivers\downld\147654046.exe c:\windows\system32\drivers\downld\147665687.exe c:\windows\system32\drivers\downld\147685906.exe c:\windows\system32\drivers\downld\147693578.exe c:\windows\system32\drivers\downld\147730250.exe c:\windows\system32\drivers\downld\147744078.exe c:\windows\system32\drivers\downld\147753609.exe c:\windows\system32\drivers\downld\15053859.exe c:\windows\system32\drivers\downld\1508156.exe c:\windows\system32\drivers\downld\15087796.exe c:\windows\system32\drivers\downld\15088515.exe c:\windows\system32\drivers\downld\15104437.exe c:\windows\system32\drivers\downld\15105421.exe c:\windows\system32\drivers\downld\15122390.exe c:\windows\system32\drivers\downld\15134359.exe c:\windows\system32\drivers\downld\15139171.exe c:\windows\system32\drivers\downld\15145390.exe c:\windows\system32\drivers\downld\15161218.exe c:\windows\system32\drivers\downld\15161281.exe c:\windows\system32\drivers\downld\1518593.exe c:\windows\system32\drivers\downld\1518625.exe c:\windows\system32\drivers\downld\15195734.exe c:\windows\system32\drivers\downld\15201000.exe c:\windows\system32\drivers\downld\15204921.exe c:\windows\system32\drivers\downld\15206359.exe c:\windows\system32\drivers\downld\15206921.exe c:\windows\system32\drivers\downld\15222328.exe c:\windows\system32\drivers\downld\15222859.exe c:\windows\system32\drivers\downld\15245734.exe c:\windows\system32\drivers\downld\15256218.exe c:\windows\system32\drivers\downld\15273578.exe c:\windows\system32\drivers\downld\15281343.exe c:\windows\system32\drivers\downld\15288109.exe c:\windows\system32\drivers\downld\15296718.exe c:\windows\system32\drivers\downld\15298687.exe c:\windows\system32\drivers\downld\15301796.exe c:\windows\system32\drivers\downld\15314140.exe c:\windows\system32\drivers\downld\15324765.exe c:\windows\system32\drivers\downld\15332265.exe c:\windows\system32\drivers\downld\15354796.exe c:\windows\system32\drivers\downld\15368828.exe c:\windows\system32\drivers\downld\15478296.exe c:\windows\system32\drivers\downld\1559265.exe c:\windows\system32\drivers\downld\15657328.exe c:\windows\system32\drivers\downld\1569781.exe c:\windows\system32\drivers\downld\1573328.exe c:\windows\system32\drivers\downld\1583156.exe c:\windows\system32\drivers\downld\1588968.exe c:\windows\system32\drivers\downld\15900765.exe c:\windows\system32\drivers\downld\15923984.exe c:\windows\system32\drivers\downld\16056359.exe c:\windows\system32\drivers\downld\16097406.exe c:\windows\system32\drivers\downld\162173296.exe c:\windows\system32\drivers\downld\162211078.exe c:\windows\system32\drivers\downld\16249093.exe c:\windows\system32\drivers\downld\162548593.exe c:\windows\system32\drivers\downld\162558093.exe c:\windows\system32\drivers\downld\162596625.exe c:\windows\system32\drivers\downld\162619906.exe c:\windows\system32\drivers\downld\162631718.exe c:\windows\system32\drivers\downld\16273515.exe c:\windows\system32\drivers\downld\16321421.exe c:\windows\system32\drivers\downld\16364921.exe c:\windows\system32\drivers\downld\16407609.exe c:\windows\system32\drivers\downld\177083796.exe c:\windows\system32\drivers\downld\177115359.exe c:\windows\system32\drivers\downld\177135937.exe c:\windows\system32\drivers\downld\177140546.exe c:\windows\system32\drivers\downld\177177656.exe c:\windows\system32\drivers\downld\177179359.exe c:\windows\system32\drivers\downld\177193906.exe c:\windows\system32\drivers\downld\177205953.exe c:\windows\system32\drivers\downld\191644250.exe c:\windows\system32\drivers\downld\191660765.exe c:\windows\system32\drivers\downld\191716250.exe c:\windows\system32\drivers\downld\191758343.exe c:\windows\system32\drivers\downld\191781453.exe c:\windows\system32\drivers\downld\191789703.exe c:\windows\system32\drivers\downld\191828062.exe c:\windows\system32\drivers\downld\191833421.exe c:\windows\system32\drivers\downld\191847875.exe c:\windows\system32\drivers\downld\191863140.exe c:\windows\system32\drivers\downld\1946734.exe c:\windows\system32\drivers\downld\1950578.exe c:\windows\system32\drivers\downld\1956750.exe c:\windows\system32\drivers\downld\1962593.exe c:\windows\system32\drivers\downld\1976546.exe c:\windows\system32\drivers\downld\206371734.exe c:\windows\system32\drivers\downld\206390625.exe c:\windows\system32\drivers\downld\206433390.exe c:\windows\system32\drivers\downld\206456718.exe c:\windows\system32\drivers\downld\206468828.exe c:\windows\system32\drivers\downld\206510578.exe c:\windows\system32\drivers\downld\206512328.exe c:\windows\system32\drivers\downld\206550437.exe c:\windows\system32\drivers\downld\206561468.exe c:\windows\system32\drivers\downld\221065812.exe c:\windows\system32\drivers\downld\221078703.exe c:\windows\system32\drivers\downld\221123468.exe c:\windows\system32\drivers\downld\221137093.exe c:\windows\system32\drivers\downld\221183453.exe c:\windows\system32\drivers\downld\221193765.exe c:\windows\system32\drivers\downld\221238265.exe c:\windows\system32\drivers\downld\221252484.exe c:\windows\system32\drivers\downld\221264015.exe c:\windows\system32\drivers\downld\235762687.exe c:\windows\system32\drivers\downld\235791421.exe c:\windows\system32\drivers\downld\235836125.exe c:\windows\system32\drivers\downld\235869062.exe c:\windows\system32\drivers\downld\235881984.exe c:\windows\system32\drivers\downld\235925703.exe c:\windows\system32\drivers\downld\235940609.exe c:\windows\system32\drivers\downld\235950953.exe c:\windows\system32\drivers\downld\23732062.exe c:\windows\system32\drivers\downld\23733718.exe c:\windows\system32\drivers\downld\23735906.exe c:\windows\system32\drivers\downld\23737796.exe c:\windows\system32\drivers\downld\23739718.exe c:\windows\system32\drivers\downld\23741968.exe c:\windows\system32\drivers\downld\23743093.exe c:\windows\system32\drivers\downld\23744500.exe c:\windows\system32\drivers\downld\23746500.exe c:\windows\system32\drivers\downld\23747390.exe c:\windows\system32\drivers\downld\23748812.exe c:\windows\system32\drivers\downld\23750875.exe c:\windows\system32\drivers\downld\23752765.exe c:\windows\system32\drivers\downld\23753875.exe c:\windows\system32\drivers\downld\23755921.exe c:\windows\system32\drivers\downld\23758781.exe c:\windows\system32\drivers\downld\23761718.exe c:\windows\system32\drivers\downld\23763593.exe c:\windows\system32\drivers\downld\23763859.exe c:\windows\system32\drivers\downld\23765828.exe c:\windows\system32\drivers\downld\23766687.exe c:\windows\system32\drivers\downld\23768203.exe c:\windows\system32\drivers\downld\23770015.exe c:\windows\system32\drivers\downld\23772093.exe c:\windows\system32\drivers\downld\23774265.exe c:\windows\system32\drivers\downld\23775296.exe c:\windows\system32\drivers\downld\23777484.exe c:\windows\system32\drivers\downld\23778968.exe c:\windows\system32\drivers\downld\23781078.exe c:\windows\system32\drivers\downld\23783984.exe c:\windows\system32\drivers\downld\23786093.exe c:\windows\system32\drivers\downld\23787546.exe c:\windows\system32\drivers\downld\23789718.exe c:\windows\system32\drivers\downld\23792281.exe c:\windows\system32\drivers\downld\23794781.exe c:\windows\system32\drivers\downld\23799875.exe c:\windows\system32\drivers\downld\23801906.exe c:\windows\system32\drivers\downld\23804812.exe c:\windows\system32\drivers\downld\23807171.exe c:\windows\system32\drivers\downld\23809828.exe c:\windows\system32\drivers\downld\23811937.exe c:\windows\system32\drivers\downld\23813515.exe c:\windows\system32\drivers\downld\23816343.exe c:\windows\system32\drivers\downld\23818484.exe c:\windows\system32\drivers\downld\23819921.exe c:\windows\system32\drivers\downld\23822093.exe c:\windows\system32\drivers\downld\23824109.exe c:\windows\system32\drivers\downld\23824906.exe c:\windows\system32\drivers\downld\23826406.exe c:\windows\system32\drivers\downld\23828578.exe c:\windows\system32\drivers\downld\23830671.exe c:\windows\system32\drivers\downld\23834953.exe c:\windows\system32\drivers\downld\23837125.exe c:\windows\system32\drivers\downld\23840437.exe c:\windows\system32\drivers\downld\23841437.exe c:\windows\system32\drivers\downld\23843500.exe c:\windows\system32\drivers\downld\23844296.exe c:\windows\system32\drivers\downld\23846390.exe c:\windows\system32\drivers\downld\23848578.exe c:\windows\system32\drivers\downld\23850000.exe c:\windows\system32\drivers\downld\23852218.exe c:\windows\system32\drivers\downld\23854187.exe c:\windows\system32\drivers\downld\23856062.exe c:\windows\system32\drivers\downld\23878375.exe c:\windows\system32\drivers\downld\23880609.exe c:\windows\system32\drivers\downld\23882046.exe c:\windows\system32\drivers\downld\23884218.exe c:\windows\system32\drivers\downld\23886234.exe c:\windows\system32\drivers\downld\23888000.exe c:\windows\system32\drivers\downld\23889281.exe c:\windows\system32\drivers\downld\23890625.exe c:\windows\system32\drivers\downld\23892796.exe c:\windows\system32\drivers\downld\23894984.exe c:\windows\system32\drivers\downld\23896875.exe c:\windows\system32\drivers\downld\23898843.exe c:\windows\system32\drivers\downld\23901671.exe c:\windows\system32\drivers\downld\23904250.exe c:\windows\system32\drivers\downld\23905703.exe c:\windows\system32\drivers\downld\23907828.exe c:\windows\system32\drivers\downld\23910015.exe c:\windows\system32\drivers\downld\23912218.exe c:\windows\system32\drivers\downld\23914234.exe c:\windows\system32\drivers\downld\2391484.exe c:\windows\system32\drivers\downld\2393515.exe c:\windows\system32\drivers\downld\23936328.exe c:\windows\system32\drivers\downld\23938421.exe c:\windows\system32\drivers\downld\23939859.exe c:\windows\system32\drivers\downld\23941796.exe c:\windows\system32\drivers\downld\2394187.exe c:\windows\system32\drivers\downld\23943875.exe c:\windows\system32\drivers\downld\2394531.exe c:\windows\system32\drivers\downld\23946328.exe c:\windows\system32\drivers\downld\2394750.exe c:\windows\system32\drivers\downld\23948437.exe c:\windows\system32\drivers\downld\2394953.exe c:\windows\system32\drivers\downld\23950656.exe c:\windows\system32\drivers\downld\23952812.exe c:\windows\system32\drivers\downld\23954906.exe c:\windows\system32\drivers\downld\23957093.exe c:\windows\system32\drivers\downld\23959703.exe c:\windows\system32\drivers\downld\2396000.exe c:\windows\system32\drivers\downld\23961359.exe c:\windows\system32\drivers\downld\23963296.exe c:\windows\system32\drivers\downld\23964312.exe c:\windows\system32\drivers\downld\23965671.exe c:\windows\system32\drivers\downld\23967656.exe c:\windows\system32\drivers\downld\23968578.exe c:\windows\system32\drivers\downld\2396953.exe c:\windows\system32\drivers\downld\23969968.exe c:\windows\system32\drivers\downld\23972203.exe c:\windows\system32\drivers\downld\23974281.exe c:\windows\system32\drivers\downld\23976187.exe c:\windows\system32\drivers\downld\23978171.exe c:\windows\system32\drivers\downld\23978640.exe c:\windows\system32\drivers\downld\23980750.exe c:\windows\system32\drivers\downld\23982578.exe c:\windows\system32\drivers\downld\23983640.exe c:\windows\system32\drivers\downld\2398578.exe c:\windows\system32\drivers\downld\23985906.exe c:\windows\system32\drivers\downld\23987218.exe c:\windows\system32\drivers\downld\23989296.exe c:\windows\system32\drivers\downld\23990109.exe c:\windows\system32\drivers\downld\23991546.exe c:\windows\system32\drivers\downld\23993703.exe c:\windows\system32\drivers\downld\23995875.exe c:\windows\system32\drivers\downld\23998000.exe c:\windows\system32\drivers\downld\24000187.exe c:\windows\system32\drivers\downld\2400859.exe c:\windows\system32\drivers\downld\2403140.exe c:\windows\system32\drivers\downld\2406156.exe c:\windows\system32\drivers\downld\2408203.exe c:\windows\system32\drivers\downld\2410375.exe c:\windows\system32\drivers\downld\2414062.exe c:\windows\system32\drivers\downld\2416531.exe c:\windows\system32\drivers\downld\2418781.exe c:\windows\system32\drivers\downld\2421609.exe c:\windows\system32\drivers\downld\2424468.exe c:\windows\system32\drivers\downld\2428015.exe c:\windows\system32\drivers\downld\2430671.exe c:\windows\system32\drivers\downld\2432453.exe c:\windows\system32\drivers\downld\2434671.exe c:\windows\system32\drivers\downld\2437343.exe c:\windows\system32\drivers\downld\2439093.exe c:\windows\system32\drivers\downld\2441765.exe c:\windows\system32\drivers\downld\2444234.exe c:\windows\system32\drivers\downld\2446390.exe c:\windows\system32\drivers\downld\2448796.exe c:\windows\system32\drivers\downld\2450968.exe c:\windows\system32\drivers\downld\2453203.exe c:\windows\system32\drivers\downld\2455437.exe c:\windows\system32\drivers\downld\2457609.exe c:\windows\system32\drivers\downld\2459906.exe c:\windows\system32\drivers\downld\2461375.exe c:\windows\system32\drivers\downld\2463609.exe c:\windows\system32\drivers\downld\2466343.exe c:\windows\system32\drivers\downld\2468875.exe c:\windows\system32\drivers\downld\2471203.exe c:\windows\system32\drivers\downld\2474296.exe c:\windows\system32\drivers\downld\2476781.exe c:\windows\system32\drivers\downld\2478937.exe c:\windows\system32\drivers\downld\2481375.exe c:\windows\system32\drivers\downld\2483546.exe c:\windows\system32\drivers\downld\2486406.exe c:\windows\system32\drivers\downld\2488609.exe c:\windows\system32\drivers\downld\2490828.exe c:\windows\system32\drivers\downld\2493078.exe c:\windows\system32\drivers\downld\2495296.exe c:\windows\system32\drivers\downld\2497937.exe c:\windows\system32\drivers\downld\2501421.exe c:\windows\system32\drivers\downld\250364218.exe c:\windows\system32\drivers\downld\250460156.exe c:\windows\system32\drivers\downld\250505015.exe c:\windows\system32\drivers\downld\250549234.exe c:\windows\system32\drivers\downld\2505625.exe c:\windows\system32\drivers\downld\250564593.exe c:\windows\system32\drivers\downld\250598203.exe c:\windows\system32\drivers\downld\250606187.exe c:\windows\system32\drivers\downld\250654296.exe c:\windows\system32\drivers\downld\250680984.exe c:\windows\system32\drivers\downld\250703390.exe c:\windows\system32\drivers\downld\2510031.exe c:\windows\system32\drivers\downld\2514609.exe c:\windows\system32\drivers\downld\2520000.exe c:\windows\system32\drivers\downld\2526968.exe c:\windows\system32\drivers\downld\2529640.exe c:\windows\system32\drivers\downld\2532000.exe c:\windows\system32\drivers\downld\2536265.exe c:\windows\system32\drivers\downld\2539593.exe c:\windows\system32\drivers\downld\2542937.exe c:\windows\system32\drivers\downld\2546562.exe c:\windows\system32\drivers\downld\2547937.exe c:\windows\system32\drivers\downld\2548140.exe c:\windows\system32\drivers\downld\2559328.exe c:\windows\system32\drivers\downld\2564062.exe c:\windows\system32\drivers\downld\2572265.exe c:\windows\system32\drivers\downld\2576531.exe c:\windows\system32\drivers\downld\2578812.exe c:\windows\system32\drivers\downld\2581968.exe c:\windows\system32\drivers\downld\2584875.exe c:\windows\system32\drivers\downld\2586781.exe c:\windows\system32\drivers\downld\2587937.exe c:\windows\system32\drivers\downld\2590250.exe c:\windows\system32\drivers\downld\2591812.exe c:\windows\system32\drivers\downld\2594265.exe c:\windows\system32\drivers\downld\2595140.exe c:\windows\system32\drivers\downld\2598750.exe c:\windows\system32\drivers\downld\2601718.exe c:\windows\system32\drivers\downld\2608031.exe c:\windows\system32\drivers\downld\2611812.exe c:\windows\system32\drivers\downld\2620265.exe c:\windows\system32\drivers\downld\2626234.exe c:\windows\system32\drivers\downld\2631437.exe c:\windows\system32\drivers\downld\2633890.exe c:\windows\system32\drivers\downld\2638359.exe c:\windows\system32\drivers\downld\2640046.exe c:\windows\system32\drivers\downld\2642390.exe c:\windows\system32\drivers\downld\265126640.exe c:\windows\system32\drivers\downld\265139671.exe c:\windows\system32\drivers\downld\265165921.exe c:\windows\system32\drivers\downld\265241015.exe c:\windows\system32\drivers\downld\265255250.exe c:\windows\system32\drivers\downld\265327937.exe c:\windows\system32\drivers\downld\265341015.exe c:\windows\system32\drivers\downld\265386531.exe c:\windows\system32\drivers\downld\265401218.exe c:\windows\system32\drivers\downld\265416015.exe c:\windows\system32\drivers\downld\2666921.exe c:\windows\system32\drivers\downld\2670750.exe c:\windows\system32\drivers\downld\2674609.exe c:\windows\system32\drivers\downld\2677609.exe c:\windows\system32\drivers\downld\2679296.exe c:\windows\system32\drivers\downld\2682281.exe c:\windows\system32\drivers\downld\2684750.exe c:\windows\system32\drivers\downld\2688109.exe c:\windows\system32\drivers\downld\2689406.exe c:\windows\system32\drivers\downld\2690984.exe c:\windows\system32\drivers\downld\2693328.exe c:\windows\system32\drivers\downld\2696375.exe c:\windows\system32\drivers\downld\2698578.exe c:\windows\system32\drivers\downld\2700328.exe c:\windows\system32\drivers\downld\2702578.exe c:\windows\system32\drivers\downld\2705687.exe c:\windows\system32\drivers\downld\2707250.exe c:\windows\system32\drivers\downld\2709578.exe c:\windows\system32\drivers\downld\2711953.exe c:\windows\system32\drivers\downld\2715000.exe c:\windows\system32\drivers\downld\2718875.exe c:\windows\system32\drivers\downld\2721843.exe c:\windows\system32\drivers\downld\2723515.exe c:\windows\system32\drivers\downld\2725875.exe c:\windows\system32\drivers\downld\2728234.exe c:\windows\system32\drivers\downld\2732281.exe c:\windows\system32\drivers\downld\2733531.exe c:\windows\system32\drivers\downld\2735843.exe c:\windows\system32\drivers\downld\2738187.exe c:\windows\system32\drivers\downld\2740468.exe c:\windows\system32\drivers\downld\2744281.exe c:\windows\system32\drivers\downld\2746687.exe c:\windows\system32\drivers\downld\2749671.exe c:\windows\system32\drivers\downld\2752031.exe c:\windows\system32\drivers\downld\2755875.exe c:\windows\system32\drivers\downld\2758875.exe c:\windows\system32\drivers\downld\279861218.exe c:\windows\system32\drivers\downld\279894937.exe c:\windows\system32\drivers\downld\279919078.exe c:\windows\system32\drivers\downld\279927375.exe c:\windows\system32\drivers\downld\279965328.exe c:\windows\system32\drivers\downld\279980250.exe c:\windows\system32\drivers\downld\279989984.exe c:\windows\system32\drivers\downld\294438906.exe c:\windows\system32\drivers\downld\294496328.exe c:\windows\system32\drivers\downld\294519921.exe c:\windows\system32\drivers\downld\294533890.exe c:\windows\system32\drivers\downld\294578000.exe c:\windows\system32\drivers\downld\294598390.exe c:\windows\system32\drivers\downld\294607500.exe c:\windows\system32\drivers\downld\296500.exe c:\windows\system32\drivers\downld\29708343.exe c:\windows\system32\drivers\downld\29746281.exe c:\windows\system32\drivers\downld\29762234.exe c:\windows\system32\drivers\downld\29762984.exe c:\windows\system32\drivers\downld\29782125.exe c:\windows\system32\drivers\downld\29826031.exe c:\windows\system32\drivers\downld\29832656.exe c:\windows\system32\drivers\downld\29860921.exe c:\windows\system32\drivers\downld\29878562.exe c:\windows\system32\drivers\downld\29881812.exe c:\windows\system32\drivers\downld\29882656.exe c:\windows\system32\drivers\downld\29883390.exe c:\windows\system32\drivers\downld\29899984.exe c:\windows\system32\drivers\downld\29915921.exe c:\windows\system32\drivers\downld\29917343.exe c:\windows\system32\drivers\downld\29926765.exe c:\windows\system32\drivers\downld\29935046.exe c:\windows\system32\drivers\downld\29947687.exe c:\windows\system32\drivers\downld\29972375.exe c:\windows\system32\drivers\downld\29978859.exe c:\windows\system32\drivers\downld\29983296.exe c:\windows\system32\drivers\downld\30015921.exe c:\windows\system32\drivers\downld\30031968.exe c:\windows\system32\drivers\downld\30044125.exe c:\windows\system32\drivers\downld\30057078.exe c:\windows\system32\drivers\downld\300968.exe c:\windows\system32\drivers\downld\30109359.exe c:\windows\system32\drivers\downld\30126640.exe c:\windows\system32\drivers\downld\30182250.exe c:\windows\system32\drivers\downld\30200875.exe c:\windows\system32\drivers\downld\30214562.exe c:\windows\system32\drivers\downld\309045031.exe c:\windows\system32\drivers\downld\309063484.exe c:\windows\system32\drivers\downld\309083453.exe c:\windows\system32\drivers\downld\309106359.exe c:\windows\system32\drivers\downld\309121296.exe c:\windows\system32\drivers\downld\309168843.exe c:\windows\system32\drivers\downld\309173375.exe c:\windows\system32\drivers\downld\309213390.exe c:\windows\system32\drivers\downld\309243234.exe c:\windows\system32\drivers\downld\309254078.exe c:\windows\system32\drivers\downld\323265.exe c:\windows\system32\drivers\downld\323705625.exe c:\windows\system32\drivers\downld\323725171.exe c:\windows\system32\drivers\downld\323797796.exe c:\windows\system32\drivers\downld\323845546.exe c:\windows\system32\drivers\downld\323862937.exe c:\windows\system32\drivers\downld\323905859.exe c:\windows\system32\drivers\downld\323923406.exe c:\windows\system32\drivers\downld\323940562.exe c:\windows\system32\drivers\downld\338392031.exe c:\windows\system32\drivers\downld\338408359.exe c:\windows\system32\drivers\downld\338442656.exe c:\windows\system32\drivers\downld\338457515.exe c:\windows\system32\drivers\downld\338474562.exe c:\windows\system32\drivers\downld\338487765.exe c:\windows\system32\drivers\downld\338527687.exe c:\windows\system32\drivers\downld\338535968.exe c:\windows\system32\drivers\downld\338573468.exe c:\windows\system32\drivers\downld\338587468.exe c:\windows\system32\drivers\downld\338595890.exe c:\windows\system32\drivers\downld\353030406.exe c:\windows\system32\drivers\downld\353049046.exe c:\windows\system32\drivers\downld\353077390.exe c:\windows\system32\drivers\downld\353119765.exe c:\windows\system32\drivers\downld\353177140.exe c:\windows\system32\drivers\downld\353211125.exe c:\windows\system32\drivers\downld\353220031.exe c:\windows\system32\drivers\downld\353255453.exe c:\windows\system32\drivers\downld\353270656.exe c:\windows\system32\drivers\downld\353281234.exe c:\windows\system32\drivers\downld\3555843.exe c:\windows\system32\drivers\downld\356031.exe c:\windows\system32\drivers\downld\360140.exe c:\windows\system32\drivers\downld\361015.exe c:\windows\system32\drivers\downld\362968.exe c:\windows\system32\drivers\downld\364609.exe c:\windows\system32\drivers\downld\367156.exe c:\windows\system32\drivers\downld\367745609.exe c:\windows\system32\drivers\downld\367778250.exe c:\windows\system32\drivers\downld\367801640.exe c:\windows\system32\drivers\downld\367809312.exe c:\windows\system32\drivers\downld\367845890.exe c:\windows\system32\drivers\downld\367860734.exe c:\windows\system32\drivers\downld\367871828.exe c:\windows\system32\drivers\downld\369593.exe c:\windows\system32\drivers\downld\369625.exe c:\windows\system32\drivers\downld\372859.exe c:\windows\system32\drivers\downld\374718.exe c:\windows\system32\drivers\downld\377281.exe c:\windows\system32\drivers\downld\379937.exe c:\windows\system32\drivers\downld\380734.exe c:\windows\system32\drivers\downld\381515.exe c:\windows\system32\drivers\downld\382290937.exe c:\windows\system32\drivers\downld\382303421.exe c:\windows\system32\drivers\downld\382325218.exe c:\windows\system32\drivers\downld\382396765.exe c:\windows\system32\drivers\downld\382407375.exe c:\windows\system32\drivers\downld\382451562.exe c:\windows\system32\drivers\downld\382464531.exe c:\windows\system32\drivers\downld\382500.exe c:\windows\system32\drivers\downld\382501796.exe c:\windows\system32\drivers\downld\382516328.exe c:\windows\system32\drivers\downld\382541140.exe c:\windows\system32\drivers\downld\383000.exe c:\windows\system32\drivers\downld\383453.exe c:\windows\system32\drivers\downld\383531.exe c:\windows\system32\drivers\downld\383890.exe c:\windows\system32\drivers\downld\38402203.exe c:\windows\system32\drivers\downld\38403781.exe c:\windows\system32\drivers\downld\38405671.exe c:\windows\system32\drivers\downld\38407578.exe c:\windows\system32\drivers\downld\38408078.exe c:\windows\system32\drivers\downld\38410015.exe c:\windows\system32\drivers\downld\38411031.exe c:\windows\system32\drivers\downld\38412390.exe c:\windows\system32\drivers\downld\38414546.exe c:\windows\system32\drivers\downld\38416562.exe c:\windows\system32\drivers\downld\38418390.exe c:\windows\system32\drivers\downld\38418875.exe c:\windows\system32\drivers\downld\38420812.exe c:\windows\system32\drivers\downld\38421796.exe c:\windows\system32\drivers\downld\38423156.exe c:\windows\system32\drivers\downld\38425140.exe c:\windows\system32\drivers\downld\38425359.exe c:\windows\system32\drivers\downld\38427531.exe c:\windows\system32\drivers\downld\38429437.exe c:\windows\system32\drivers\downld\38429656.exe c:\windows\system32\drivers\downld\38431578.exe c:\windows\system32\drivers\downld\38431859.exe c:\windows\system32\drivers\downld\38433968.exe c:\windows\system32\drivers\downld\38435984.exe c:\windows\system32\drivers\downld\38436875.exe c:\windows\system32\drivers\downld\38438312.exe c:\windows\system32\drivers\downld\38440218.exe c:\windows\system32\drivers\downld\38441140.exe c:\windows\system32\drivers\downld\38442625.exe c:\windows\system32\drivers\downld\38444734.exe c:\windows\system32\drivers\downld\38446687.exe c:\windows\system32\drivers\downld\38447671.exe c:\windows\system32\drivers\downld\38449093.exe c:\windows\system32\drivers\downld\38451078.exe c:\windows\system32\drivers\downld\38452718.exe c:\windows\system32\drivers\downld\38453484.exe c:\windows\system32\drivers\downld\38455484.exe c:\windows\system32\drivers\downld\38456875.exe c:\windows\system32\drivers\downld\38459031.exe c:\windows\system32\drivers\downld\38461109.exe c:\windows\system32\drivers\downld\38463671.exe c:\windows\system32\drivers\downld\38467953.exe c:\windows\system32\drivers\downld\38470125.exe c:\windows\system32\drivers\downld\38472125.exe c:\windows\system32\drivers\downld\38473078.exe c:\windows\system32\drivers\downld\38474437.exe c:\windows\system32\drivers\downld\38476406.exe c:\windows\system32\drivers\downld\38477375.exe c:\windows\system32\drivers\downld\38478734.exe c:\windows\system32\drivers\downld\38480578.exe c:\windows\system32\drivers\downld\38481562.exe c:\windows\system32\drivers\downld\38483046.exe c:\windows\system32\drivers\downld\38484984.exe c:\windows\system32\drivers\downld\38485984.exe c:\windows\system32\drivers\downld\38487390.exe c:\windows\system32\drivers\downld\38489218.exe c:\windows\system32\drivers\downld\38490265.exe c:\windows\system32\drivers\downld\38491703.exe c:\windows\system32\drivers\downld\38493546.exe c:\windows\system32\drivers\downld\38493828.exe c:\windows\system32\drivers\downld\38495937.exe c:\windows\system32\drivers\downld\38496750.exe c:\windows\system32\drivers\downld\38498203.exe c:\windows\system32\drivers\downld\38521312.exe c:\windows\system32\drivers\downld\38521593.exe c:\windows\system32\drivers\downld\38523718.exe c:\windows\system32\drivers\downld\38525734.exe c:\windows\system32\drivers\downld\38526515.exe c:\windows\system32\drivers\downld\38528062.exe c:\windows\system32\drivers\downld\38530125.exe c:\windows\system32\drivers\downld\38530875.exe c:\windows\system32\drivers\downld\38532375.exe c:\windows\system32\drivers\downld\385343.exe c:\windows\system32\drivers\downld\38534375.exe c:\windows\system32\drivers\downld\38535296.exe c:\windows\system32\drivers\downld\38536671.exe c:\windows\system32\drivers\downld\38538546.exe c:\windows\system32\drivers\downld\38539531.exe c:\windows\system32\drivers\downld\38540968.exe c:\windows\system32\drivers\downld\38542875.exe c:\windows\system32\drivers\downld\38543156.exe c:\windows\system32\drivers\downld\38545015.exe c:\windows\system32\drivers\downld\38546046.exe c:\windows\system32\drivers\downld\38568640.exe c:\windows\system32\drivers\downld\38570593.exe c:\windows\system32\drivers\downld\38571515.exe c:\windows\system32\drivers\downld\38573062.exe c:\windows\system32\drivers\downld\38575937.exe c:\windows\system32\drivers\downld\38577343.exe c:\windows\system32\drivers\downld\38579125.exe c:\windows\system32\drivers\downld\38580265.exe c:\windows\system32\drivers\downld\38581656.exe c:\windows\system32\drivers\downld\38583578.exe c:\windows\system32\drivers\downld\38584531.exe c:\windows\system32\drivers\downld\38585968.exe c:\windows\system32\drivers\downld\38587765.exe c:\windows\system32\drivers\downld\38588937.exe c:\windows\system32\drivers\downld\38590312.exe c:\windows\system32\drivers\downld\38592125.exe c:\windows\system32\drivers\downld\38592468.exe c:\windows\system32\drivers\downld\38594484.exe c:\windows\system32\drivers\downld\38595359.exe c:\windows\system32\drivers\downld\38596750.exe c:\windows\system32\drivers\downld\38598593.exe c:\windows\system32\drivers\downld\38599515.exe c:\windows\system32\drivers\downld\38601125.exe c:\windows\system32\drivers\downld\38603031.exe c:\windows\system32\drivers\downld\38605390.exe c:\windows\system32\drivers\downld\38607375.exe c:\windows\system32\drivers\downld\38608484.exe c:\windows\system32\drivers\downld\38609718.exe c:\windows\system32\drivers\downld\38611625.exe c:\windows\system32\drivers\downld\38613546.exe c:\windows\system32\drivers\downld\38614031.exe c:\windows\system32\drivers\downld\38616078.exe c:\windows\system32\drivers\downld\38616906.exe c:\windows\system32\drivers\downld\386171.exe c:\windows\system32\drivers\downld\38618312.exe c:\windows\system32\drivers\downld\38620265.exe c:\windows\system32\drivers\downld\38620515.exe c:\windows\system32\drivers\downld\387453.exe c:\windows\system32\drivers\downld\388843.exe c:\windows\system32\drivers\downld\389171.exe c:\windows\system32\drivers\downld\390453.exe c:\windows\system32\drivers\downld\390656.exe c:\windows\system32\drivers\downld\391468.exe c:\windows\system32\drivers\downld\391734.exe c:\windows\system32\drivers\downld\392203.exe c:\windows\system32\drivers\downld\392437.exe c:\windows\system32\drivers\downld\392578.exe c:\windows\system32\drivers\downld\392843.exe c:\windows\system32\drivers\downld\393109.exe c:\windows\system32\drivers\downld\394328.exe c:\windows\system32\drivers\downld\394562.exe c:\windows\system32\drivers\downld\396046.exe c:\windows\system32\drivers\downld\396093.exe c:\windows\system32\drivers\downld\396988921.exe c:\windows\system32\drivers\downld\397020359.exe c:\windows\system32\drivers\downld\397066421.exe c:\windows\system32\drivers\downld\397145656.exe c:\windows\system32\drivers\downld\397163531.exe c:\windows\system32\drivers\downld\397224343.exe c:\windows\system32\drivers\downld\397234531.exe c:\windows\system32\drivers\downld\397285828.exe c:\windows\system32\drivers\downld\397300562.exe c:\windows\system32\drivers\downld\397312343.exe c:\windows\system32\drivers\downld\397718.exe c:\windows\system32\drivers\downld\398453.exe c:\windows\system32\drivers\downld\398546.exe c:\windows\system32\drivers\downld\398796.exe c:\windows\system32\drivers\downld\400140.exe c:\windows\system32\drivers\downld\400265.exe c:\windows\system32\drivers\downld\400453.exe c:\windows\system32\drivers\downld\401187.exe c:\windows\system32\drivers\downld\401484.exe c:\windows\system32\drivers\downld\401625.exe c:\windows\system32\drivers\downld\401640.exe c:\windows\system32\drivers\downld\401984.exe c:\windows\system32\drivers\downld\402281.exe c:\windows\system32\drivers\downld\402453.exe c:\windows\system32\drivers\downld\402828.exe c:\windows\system32\drivers\downld\403046.exe c:\windows\system32\drivers\downld\403109.exe c:\windows\system32\drivers\downld\403609.exe c:\windows\system32\drivers\downld\404671.exe c:\windows\system32\drivers\downld\405156.exe c:\windows\system32\drivers\downld\406906.exe c:\windows\system32\drivers\downld\407593.exe c:\windows\system32\drivers\downld\407843.exe c:\windows\system32\drivers\downld\408281.exe c:\windows\system32\drivers\downld\409015.exe c:\windows\system32\drivers\downld\410546.exe c:\windows\system32\drivers\downld\411468.exe c:\windows\system32\drivers\downld\411531.exe c:\windows\system32\drivers\downld\4125031.exe c:\windows\system32\drivers\downld\412593.exe c:\windows\system32\drivers\downld\4131453.exe c:\windows\system32\drivers\downld\4139546.exe c:\windows\system32\drivers\downld\414046.exe c:\windows\system32\drivers\downld\4143859.exe c:\windows\system32\drivers\downld\4158500.exe c:\windows\system32\drivers\downld\416328.exe c:\windows\system32\drivers\downld\4167031.exe c:\windows\system32\drivers\downld\4172671.exe c:\windows\system32\drivers\downld\417625.exe c:\windows\system32\drivers\downld\417921.exe c:\windows\system32\drivers\downld\4180484.exe c:\windows\system32\drivers\downld\4190656.exe c:\windows\system32\drivers\downld\419968.exe c:\windows\system32\drivers\downld\420015.exe c:\windows\system32\drivers\downld\4205750.exe c:\windows\system32\drivers\downld\420656.exe c:\windows\system32\drivers\downld\4212500.exe c:\windows\system32\drivers\downld\4223875.exe c:\windows\system32\drivers\downld\424015.exe c:\windows\system32\drivers\downld\424812.exe c:\windows\system32\drivers\downld\425125.exe c:\windows\system32\drivers\downld\425468.exe c:\windows\system32\drivers\downld\426171.exe c:\windows\system32\drivers\downld\4276734.exe c:\windows\system32\drivers\downld\428500.exe c:\windows\system32\drivers\downld\428921.exe c:\windows\system32\drivers\downld\431015.exe c:\windows\system32\drivers\downld\432453.exe c:\windows\system32\drivers\downld\435812.exe c:\windows\system32\drivers\downld\437500.exe c:\windows\system32\drivers\downld\437625.exe c:\windows\system32\drivers\downld\438625.exe c:\windows\system32\drivers\downld\440515.exe c:\windows\system32\drivers\downld\441875.exe c:\windows\system32\drivers\downld\443046.exe c:\windows\system32\drivers\downld\44371781.exe c:\windows\system32\drivers\downld\44380578.exe c:\windows\system32\drivers\downld\44406609.exe c:\windows\system32\drivers\downld\44415093.exe c:\windows\system32\drivers\downld\44488687.exe c:\windows\system32\drivers\downld\44496718.exe c:\windows\system32\drivers\downld\44518281.exe c:\windows\system32\drivers\downld\44519265.exe c:\windows\system32\drivers\downld\44533843.exe c:\windows\system32\drivers\downld\44573531.exe c:\windows\system32\drivers\downld\445796.exe c:\windows\system32\drivers\downld\44586187.exe c:\windows\system32\drivers\downld\44596078.exe c:\windows\system32\drivers\downld\446156.exe c:\windows\system32\drivers\downld\446171.exe c:\windows\system32\drivers\downld\446203.exe c:\windows\system32\drivers\downld\44626843.exe c:\windows\system32\drivers\downld\44655406.exe c:\windows\system32\drivers\downld\446640.exe c:\windows\system32\drivers\downld\44741406.exe c:\windows\system32\drivers\downld\44748875.exe c:\windows\system32\drivers\downld\44816890.exe c:\windows\system32\drivers\downld\44842843.exe c:\windows\system32\drivers\downld\44864687.exe c:\windows\system32\drivers\downld\449609.exe c:\windows\system32\drivers\downld\449718.exe c:\windows\system32\drivers\downld\451171.exe c:\windows\system32\drivers\downld\452390.exe c:\windows\system32\drivers\downld\453078.exe c:\windows\system32\drivers\downld\453312.exe c:\windows\system32\drivers\downld\454125.exe c:\windows\system32\drivers\downld\454156.exe c:\windows\system32\drivers\downld\454375.exe c:\windows\system32\drivers\downld\455000.exe c:\windows\system32\drivers\downld\455968.exe c:\windows\system32\drivers\downld\456984.exe c:\windows\system32\drivers\downld\458562.exe c:\windows\system32\drivers\downld\459140.exe c:\windows\system32\drivers\downld\459265.exe c:\windows\system32\drivers\downld\459718.exe c:\windows\system32\drivers\downld\462328.exe c:\windows\system32\drivers\downld\463046.exe c:\windows\system32\drivers\downld\463656.exe c:\windows\system32\drivers\downld\466125.exe c:\windows\system32\drivers\downld\467078.exe c:\windows\system32\drivers\downld\467250.exe c:\windows\system32\drivers\downld\467281.exe c:\windows\system32\drivers\downld\469515.exe c:\windows\system32\drivers\downld\470156.exe c:\windows\system32\drivers\downld\470875.exe c:\windows\system32\drivers\downld\471546.exe c:\windows\system32\drivers\downld\471906.exe c:\windows\system32\drivers\downld\472546.exe c:\windows\system32\drivers\downld\472687.exe c:\windows\system32\drivers\downld\473390.exe c:\windows\system32\drivers\downld\474781.exe c:\windows\system32\drivers\downld\475968.exe c:\windows\system32\drivers\downld\477296.exe c:\windows\system32\drivers\downld\478062.exe c:\windows\system32\drivers\downld\478093.exe c:\windows\system32\drivers\downld\480421.exe c:\windows\system32\drivers\downld\480687.exe c:\windows\system32\drivers\downld\480921.exe c:\windows\system32\drivers\downld\481187.exe c:\windows\system32\drivers\downld\482171.exe c:\windows\system32\drivers\downld\484312.exe c:\windows\system32\drivers\downld\484500.exe c:\windows\system32\drivers\downld\486109.exe c:\windows\system32\drivers\downld\486781.exe c:\windows\system32\drivers\downld\487078.exe c:\windows\system32\drivers\downld\487234.exe c:\windows\system32\drivers\downld\487781.exe c:\windows\system32\drivers\downld\489250.exe c:\windows\system32\drivers\downld\491296.exe c:\windows\system32\drivers\downld\491375.exe c:\windows\system32\drivers\downld\492421.exe c:\windows\system32\drivers\downld\493296.exe c:\windows\system32\drivers\downld\493843.exe c:\windows\system32\drivers\downld\496406.exe c:\windows\system32\drivers\downld\497062.exe c:\windows\system32\drivers\downld\497203.exe c:\windows\system32\drivers\downld\498187.exe c:\windows\system32\drivers\downld\498328.exe c:\windows\system32\drivers\downld\499718.exe c:\windows\system32\drivers\downld\499734.exe c:\windows\system32\drivers\downld\500421.exe c:\windows\system32\drivers\downld\500468.exe c:\windows\system32\drivers\downld\500734.exe c:\windows\system32\drivers\downld\502328.exe c:\windows\system32\drivers\downld\503234.exe c:\windows\system32\drivers\downld\504500.exe c:\windows\system32\drivers\downld\505750.exe c:\windows\system32\drivers\downld\505937.exe c:\windows\system32\drivers\downld\506921.exe c:\windows\system32\drivers\downld\507187.exe c:\windows\system32\drivers\downld\507359.exe c:\windows\system32\drivers\downld\508375.exe c:\windows\system32\drivers\downld\509906.exe c:\windows\system32\drivers\downld\510250.exe c:\windows\system32\drivers\downld\510812.exe c:\windows\system32\drivers\downld\511171.exe c:\windows\system32\drivers\downld\514046.exe c:\windows\system32\drivers\downld\514546.exe c:\windows\system32\drivers\downld\514875.exe c:\windows\system32\drivers\downld\516640.exe c:\windows\system32\drivers\downld\517296.exe c:\windows\system32\drivers\downld\517500.exe c:\windows\system32\drivers\downld\517671.exe c:\windows\system32\drivers\downld\517875.exe c:\windows\system32\drivers\downld\518843.exe c:\windows\system32\drivers\downld\520593.exe c:\windows\system32\drivers\downld\521234.exe c:\windows\system32\drivers\downld\521968.exe c:\windows\system32\drivers\downld\522671.exe c:\windows\system32\drivers\downld\523562.exe c:\windows\system32\drivers\downld\523859.exe c:\windows\system32\drivers\downld\524000.exe c:\windows\system32\drivers\downld\5247656.exe c:\windows\system32\drivers\downld\525296.exe c:\windows\system32\drivers\downld\525453.exe c:\windows\system32\drivers\downld\525718.exe c:\windows\system32\drivers\downld\5259250.exe c:\windows\system32\drivers\downld\5267125.exe c:\windows\system32\drivers\downld\526859.exe c:\windows\system32\drivers\downld\528562.exe c:\windows\system32\drivers\downld\529296.exe c:\windows\system32\drivers\downld\5296296.exe c:\windows\system32\drivers\downld\5301578.exe c:\windows\system32\drivers\downld\53022593.exe c:\windows\system32\drivers\downld\53023906.exe c:\windows\system32\drivers\downld\53026093.exe c:\windows\system32\drivers\downld\53027156.exe c:\windows\system32\drivers\downld\53029734.exe c:\windows\system32\drivers\downld\53031515.exe c:\windows\system32\drivers\downld\53034031.exe c:\windows\system32\drivers\downld\53036171.exe c:\windows\system32\drivers\downld\530375.exe c:\windows\system32\drivers\downld\53038468.exe c:\windows\system32\drivers\downld\53039046.exe c:\windows\system32\drivers\downld\53041328.exe c:\windows\system32\drivers\downld\53044062.exe c:\windows\system32\drivers\downld\530453.exe c:\windows\system32\drivers\downld\53046250.exe c:\windows\system32\drivers\downld\53048265.exe c:\windows\system32\drivers\downld\53049843.exe c:\windows\system32\drivers\downld\53051640.exe c:\windows\system32\drivers\downld\53053765.exe c:\windows\system32\drivers\downld\53055812.exe c:\windows\system32\drivers\downld\53056671.exe c:\windows\system32\drivers\downld\53058890.exe c:\windows\system32\drivers\downld\53060968.exe c:\windows\system32\drivers\downld\53062437.exe c:\windows\system32\drivers\downld\53064250.exe c:\windows\system32\drivers\downld\53066453.exe c:\windows\system32\drivers\downld\53069265.exe c:\windows\system32\drivers\downld\53071500.exe c:\windows\system32\drivers\downld\53073875.exe c:\windows\system32\drivers\downld\53075953.exe c:\windows\system32\drivers\downld\53078109.exe c:\windows\system32\drivers\downld\53079328.exe c:\windows\system32\drivers\downld\53081812.exe c:\windows\system32\drivers\downld\53084015.exe c:\windows\system32\drivers\downld\53085156.exe c:\windows\system32\drivers\downld\53088203.exe c:\windows\system32\drivers\downld\53089421.exe c:\windows\system32\drivers\downld\53091312.exe c:\windows\system32\drivers\downld\53092765.exe c:\windows\system32\drivers\downld\53094421.exe c:\windows\system32\drivers\downld\53096625.exe c:\windows\system32\drivers\downld\53098843.exe c:\windows\system32\drivers\downld\53100562.exe c:\windows\system32\drivers\downld\53102703.exe c:\windows\system32\drivers\downld\53104500.exe c:\windows\system32\drivers\downld\53106984.exe c:\windows\system32\drivers\downld\53109406.exe c:\windows\system32\drivers\downld\53111484.exe c:\windows\system32\drivers\downld\53112078.exe c:\windows\system32\drivers\downld\53114187.exe c:\windows\system32\drivers\downld\53115343.exe c:\windows\system32\drivers\downld\53117078.exe c:\windows\system32\drivers\downld\53119281.exe c:\windows\system32\drivers\downld\53119609.exe c:\windows\system32\drivers\downld\53121921.exe c:\windows\system32\drivers\downld\53124218.exe c:\windows\system32\drivers\downld\53125484.exe c:\windows\system32\drivers\downld\53127578.exe c:\windows\system32\drivers\downld\53129671.exe c:\windows\system32\drivers\downld\53131828.exe c:\windows\system32\drivers\downld\53132890.exe c:\windows\system32\drivers\downld\53134765.exe c:\windows\system32\drivers\downld\53136937.exe c:\windows\system32\drivers\downld\53137937.exe c:\windows\system32\drivers\downld\53139796.exe c:\windows\system32\drivers\downld\5316015.exe c:\windows\system32\drivers\downld\53163234.exe c:\windows\system32\drivers\downld\53165437.exe c:\windows\system32\drivers\downld\53167609.exe c:\windows\system32\drivers\downld\53168921.exe c:\windows\system32\drivers\downld\53170703.exe c:\windows\system32\drivers\downld\53172953.exe c:\windows\system32\drivers\downld\53175093.exe c:\windows\system32\drivers\downld\53176515.exe c:\windows\system32\drivers\downld\53178281.exe c:\windows\system32\drivers\downld\53180437.exe c:\windows\system32\drivers\downld\53181515.exe c:\windows\system32\drivers\downld\53183312.exe c:\windows\system32\drivers\downld\53185625.exe c:\windows\system32\drivers\downld\53187890.exe c:\windows\system32\drivers\downld\53189015.exe c:\windows\system32\drivers\downld\53190843.exe c:\windows\system32\drivers\downld\53193015.exe c:\windows\system32\drivers\downld\53195109.exe c:\windows\system32\drivers\downld\53195937.exe c:\windows\system32\drivers\downld\53219656.exe c:\windows\system32\drivers\downld\53221093.exe c:\windows\system32\drivers\downld\53223421.exe c:\windows\system32\drivers\downld\53225671.exe c:\windows\system32\drivers\downld\53226140.exe c:\windows\system32\drivers\downld\53228390.exe c:\windows\system32\drivers\downld\53230500.exe c:\windows\system32\drivers\downld\53232671.exe c:\windows\system32\drivers\downld\53234718.exe c:\windows\system32\drivers\downld\53236281.exe c:\windows\system32\drivers\downld\53238609.exe c:\windows\system32\drivers\downld\53240968.exe c:\windows\system32\drivers\downld\53242109.exe c:\windows\system32\drivers\downld\53243875.exe c:\windows\system32\drivers\downld\53246078.exe c:\windows\system32\drivers\downld\53248421.exe c:\windows\system32\drivers\downld\53249578.exe c:\windows\system32\drivers\downld\53251500.exe c:\windows\system32\drivers\downld\53255406.exe c:\windows\system32\drivers\downld\53257593.exe c:\windows\system32\drivers\downld\53258671.exe c:\windows\system32\drivers\downld\53260656.exe c:\windows\system32\drivers\downld\53262687.exe c:\windows\system32\drivers\downld\53264750.exe c:\windows\system32\drivers\downld\53266578.exe c:\windows\system32\drivers\downld\53268890.exe c:\windows\system32\drivers\downld\53271250.exe c:\windows\system32\drivers\downld\53274343.exe c:\windows\system32\drivers\downld\53279156.exe c:\windows\system32\drivers\downld\53280781.exe c:\windows\system32\drivers\downld\53283125.exe c:\windows\system32\drivers\downld\53285046.exe c:\windows\system32\drivers\downld\53287625.exe c:\windows\system32\drivers\downld\53293390.exe c:\windows\system32\drivers\downld\53296671.exe c:\windows\system32\drivers\downld\53300812.exe c:\windows\system32\drivers\downld\5332531.exe c:\windows\system32\drivers\downld\533546.exe c:\windows\system32\drivers\downld\533609.exe c:\windows\system32\drivers\downld\534234.exe c:\windows\system32\drivers\downld\535750.exe c:\windows\system32\drivers\downld\535781.exe c:\windows\system32\drivers\downld\536234.exe c:\windows\system32\drivers\downld\536250.exe c:\windows\system32\drivers\downld\538328.exe c:\windows\system32\drivers\downld\538375.exe c:\windows\system32\drivers\downld\5390531.exe c:\windows\system32\drivers\downld\5402125.exe c:\windows\system32\drivers\downld\541109.exe c:\windows\system32\drivers\downld\541500.exe c:\windows\system32\drivers\downld\542218.exe c:\windows\system32\drivers\downld\5422203.exe c:\windows\system32\drivers\downld\542796.exe c:\windows\system32\drivers\downld\542843.exe c:\windows\system32\drivers\downld\5435578.exe c:\windows\system32\drivers\downld\545093.exe c:\windows\system32\drivers\downld\546140.exe c:\windows\system32\drivers\downld\546953.exe c:\windows\system32\drivers\downld\5471203.exe c:\windows\system32\drivers\downld\547968.exe c:\windows\system32\drivers\downld\549109.exe c:\windows\system32\drivers\downld\550234.exe c:\windows\system32\drivers\downld\5503468.exe c:\windows\system32\drivers\downld\550781.exe c:\windows\system32\drivers\downld\552093.exe c:\windows\system32\drivers\downld\552328.exe c:\windows\system32\drivers\downld\552734.exe c:\windows\system32\drivers\downld\553062.exe c:\windows\system32\drivers\downld\554859.exe c:\windows\system32\drivers\downld\556859.exe c:\windows\system32\drivers\downld\557765.exe c:\windows\system32\drivers\downld\558156.exe c:\windows\system32\drivers\downld\559109.exe c:\windows\system32\drivers\downld\560765.exe c:\windows\system32\drivers\downld\561343.exe c:\windows\system32\drivers\downld\561843.exe c:\windows\system32\drivers\downld\564140.exe c:\windows\system32\drivers\downld\564671.exe c:\windows\system32\drivers\downld\565687.exe c:\windows\system32\drivers\downld\567031.exe c:\windows\system32\drivers\downld\567046.exe c:\windows\system32\drivers\downld\567796.exe c:\windows\system32\drivers\downld\569609.exe c:\windows\system32\drivers\downld\571593.exe c:\windows\system32\drivers\downld\572359.exe c:\windows\system32\drivers\downld\572906.exe c:\windows\system32\drivers\downld\575078.exe c:\windows\system32\drivers\downld\575343.exe c:\windows\system32\drivers\downld\575781.exe c:\windows\system32\drivers\downld\576031.exe c:\windows\system32\drivers\downld\578296.exe c:\windows\system32\drivers\downld\578812.exe c:\windows\system32\drivers\downld\579765.exe c:\windows\system32\drivers\downld\580421.exe c:\windows\system32\drivers\downld\580515.exe c:\windows\system32\drivers\downld\580578.exe c:\windows\system32\drivers\downld\581031.exe c:\windows\system32\drivers\downld\583296.exe c:\windows\system32\drivers\downld\585531.exe c:\windows\system32\drivers\downld\585875.exe c:\windows\system32\drivers\downld\585953.exe c:\windows\system32\drivers\downld\588359.exe c:\windows\system32\drivers\downld\589515.exe c:\windows\system32\drivers\downld\590062.exe c:\windows\system32\drivers\downld\59117250.exe c:\windows\system32\drivers\downld\59133156.exe c:\windows\system32\drivers\downld\59159687.exe c:\windows\system32\drivers\downld\59201937.exe c:\windows\system32\drivers\downld\59220093.exe c:\windows\system32\drivers\downld\59225625.exe c:\windows\system32\drivers\downld\59264453.exe c:\windows\system32\drivers\downld\59276984.exe c:\windows\system32\drivers\downld\59286812.exe c:\windows\system32\drivers\downld\59292828.exe c:\windows\system32\drivers\downld\593046.exe c:\windows\system32\drivers\downld\59305515.exe c:\windows\system32\drivers\downld\59339437.exe c:\windows\system32\drivers\downld\59379546.exe c:\windows\system32\drivers\downld\59461046.exe c:\windows\system32\drivers\downld\59474625.exe c:\windows\system32\drivers\downld\59491671.exe c:\windows\system32\drivers\downld\595140.exe c:\windows\system32\drivers\downld\595328.exe c:\windows\system32\drivers\downld\59546171.exe c:\windows\system32\drivers\downld\59559046.exe c:\windows\system32\drivers\downld\59605187.exe c:\windows\system32\drivers\downld\59624062.exe c:\windows\system32\drivers\downld\59637875.exe c:\windows\system32\drivers\downld\597671.exe c:\windows\system32\drivers\downld\599640.exe c:\windows\system32\drivers\downld\599750.exe c:\windows\system32\drivers\downld\601640.exe c:\windows\system32\drivers\downld\602125.exe c:\windows\system32\drivers\downld\602406.exe c:\windows\system32\drivers\downld\602687.exe c:\windows\system32\drivers\downld\604796.exe c:\windows\system32\drivers\downld\605390.exe c:\windows\system32\drivers\downld\607703.exe c:\windows\system32\drivers\downld\608281.exe c:\windows\system32\drivers\downld\6083937.exe c:\windows\system32\drivers\downld\6090421.exe c:\windows\system32\drivers\downld\610640.exe c:\windows\system32\drivers\downld\612218.exe c:\windows\system32\drivers\downld\612453.exe c:\windows\system32\drivers\downld\612531.exe c:\windows\system32\drivers\downld\615171.exe c:\windows\system32\drivers\downld\615187.exe c:\windows\system32\drivers\downld\618828.exe c:\windows\system32\drivers\downld\618968.exe c:\windows\system32\drivers\downld\624718.exe c:\windows\system32\drivers\downld\624750.exe c:\windows\system32\drivers\downld\624968.exe c:\windows\system32\drivers\downld\628171.exe c:\windows\system32\drivers\downld\629031.exe c:\windows\system32\drivers\downld\629437.exe c:\windows\system32\drivers\downld\629546.exe c:\windows\system32\drivers\downld\630234.exe c:\windows\system32\drivers\downld\630390.exe c:\windows\system32\drivers\downld\630515.exe c:\windows\system32\drivers\downld\632718.exe c:\windows\system32\drivers\downld\633703.exe c:\windows\system32\drivers\downld\635140.exe c:\windows\system32\drivers\downld\636468.exe c:\windows\system32\drivers\downld\637703.exe c:\windows\system32\drivers\downld\637968.exe c:\windows\system32\drivers\downld\640093.exe c:\windows\system32\drivers\downld\640250.exe c:\windows\system32\drivers\downld\640515.exe c:\windows\system32\drivers\downld\640671.exe c:\windows\system32\drivers\downld\643531.exe c:\windows\system32\drivers\downld\643718.exe c:\windows\system32\drivers\downld\644093.exe c:\windows\system32\drivers\downld\644187.exe c:\windows\system32\drivers\downld\644203.exe c:\windows\system32\drivers\downld\644312.exe c:\windows\system32\drivers\downld\646031.exe c:\windows\system32\drivers\downld\646140.exe c:\windows\system32\drivers\downld\646812.exe c:\windows\system32\drivers\downld\647468.exe c:\windows\system32\drivers\downld\647796.exe c:\windows\system32\drivers\downld\648390.exe c:\windows\system32\drivers\downld\649250.exe c:\windows\system32\drivers\downld\651796.exe c:\windows\system32\drivers\downld\653234.exe c:\windows\system32\drivers\downld\653281.exe c:\windows\system32\drivers\downld\653328.exe c:\windows\system32\drivers\downld\654359.exe c:\windows\system32\drivers\downld\655078.exe c:\windows\system32\drivers\downld\655515.exe c:\windows\system32\drivers\downld\657062.exe c:\windows\system32\drivers\downld\657781.exe c:\windows\system32\drivers\downld\660328.exe c:\windows\system32\drivers\downld\661453.exe c:\windows\system32\drivers\downld\662968.exe c:\windows\system32\drivers\downld\664968.exe c:\windows\system32\drivers\downld\666437.exe c:\windows\system32\drivers\downld\666750.exe c:\windows\system32\drivers\downld\6671265.exe c:\windows\system32\drivers\downld\6680687.exe c:\windows\system32\drivers\downld\669890.exe c:\windows\system32\drivers\downld\670000.exe c:\windows\system32\drivers\downld\672031.exe c:\windows\system32\drivers\downld\673250.exe c:\windows\system32\drivers\downld\679125.exe c:\windows\system32\drivers\downld\680359.exe c:\windows\system32\drivers\downld\680468.exe c:\windows\system32\drivers\downld\681359.exe c:\windows\system32\drivers\downld\684625.exe c:\windows\system32\drivers\downld\685312.exe c:\windows\system32\drivers\downld\686593.exe c:\windows\system32\drivers\downld\688921.exe c:\windows\system32\drivers\downld\689609.exe c:\windows\system32\drivers\downld\689890.exe c:\windows\system32\drivers\downld\691140.exe c:\windows\system32\drivers\downld\692203.exe c:\windows\system32\drivers\downld\694515.exe c:\windows\system32\drivers\downld\694765.exe c:\windows\system32\drivers\downld\700250.exe c:\windows\system32\drivers\downld\701906.exe c:\windows\system32\drivers\downld\703734.exe c:\windows\system32\drivers\downld\704500.exe c:\windows\system32\drivers\downld\706031.exe c:\windows\system32\drivers\downld\709890.exe c:\windows\system32\drivers\downld\710375.exe c:\windows\system32\drivers\downld\714671.exe c:\windows\system32\drivers\downld\717687.exe c:\windows\system32\drivers\downld\719578.exe c:\windows\system32\drivers\downld\721250.exe c:\windows\system32\drivers\downld\722796.exe c:\windows\system32\drivers\downld\723000.exe c:\windows\system32\drivers\downld\726593.exe c:\windows\system32\drivers\downld\727000.exe c:\windows\system32\drivers\downld\730421.exe c:\windows\system32\drivers\downld\730515.exe c:\windows\system32\drivers\downld\733250.exe c:\windows\system32\drivers\downld\733703.exe c:\windows\system32\drivers\downld\733921.exe c:\windows\system32\drivers\downld\734984.exe c:\windows\system32\drivers\downld\737000.exe c:\windows\system32\drivers\downld\73708812.exe c:\windows\system32\drivers\downld\73718015.exe c:\windows\system32\drivers\downld\73742109.exe c:\windows\system32\drivers\downld\737640.exe c:\windows\system32\drivers\downld\73809421.exe c:\windows\system32\drivers\downld\73825390.exe c:\windows\system32\drivers\downld\73874984.exe c:\windows\system32\drivers\downld\73881156.exe c:\windows\system32\drivers\downld\73925984.exe c:\windows\system32\drivers\downld\73938609.exe c:\windows\system32\drivers\downld\73947875.exe c:\windows\system32\drivers\downld\739890.exe c:\windows\system32\drivers\downld\740250.exe c:\windows\system32\drivers\downld\740421.exe c:\windows\system32\drivers\downld\74088500.exe c:\windows\system32\drivers\downld\74116140.exe c:\windows\system32\drivers\downld\74164328.exe c:\windows\system32\drivers\downld\742531.exe c:\windows\system32\drivers\downld\74276515.exe c:\windows\system32\drivers\downld\74314156.exe c:\windows\system32\drivers\downld\74328796.exe c:\windows\system32\drivers\downld\743625.exe c:\windows\system32\drivers\downld\74380281.exe c:\windows\system32\drivers\downld\74395843.exe c:\windows\system32\drivers\downld\74410468.exe c:\windows\system32\drivers\downld\744828.exe c:\windows\system32\drivers\downld\746953.exe c:\windows\system32\drivers\downld\748406.exe c:\windows\system32\drivers\downld\749062.exe c:\windows\system32\drivers\downld\749187.exe c:\windows\system32\drivers\downld\749890.exe c:\windows\system32\drivers\downld\752250.exe c:\windows\system32\drivers\downld\753578.exe c:\windows\system32\drivers\downld\754234.exe c:\windows\system32\drivers\downld\755531.exe c:\windows\system32\drivers\downld\756703.exe c:\windows\system32\drivers\downld\758000.exe c:\windows\system32\drivers\downld\758250.exe c:\windows\system32\drivers\downld\761375.exe c:\windows\system32\drivers\downld\762718.exe c:\windows\system32\drivers\downld\763562.exe c:\windows\system32\drivers\downld\7638984.exe c:\windows\system32\drivers\downld\7650171.exe c:\windows\system32\drivers\downld\7656812.exe c:\windows\system32\drivers\downld\775296.exe c:\windows\system32\drivers\downld\782437.exe c:\windows\system32\drivers\downld\786031.exe c:\windows\system32\drivers\downld\786234.exe c:\windows\system32\drivers\downld\786828.exe c:\windows\system32\drivers\downld\788734.exe c:\windows\system32\drivers\downld\790578.exe c:\windows\system32\drivers\downld\791687.exe c:\windows\system32\drivers\downld\792484.exe c:\windows\system32\drivers\downld\793109.exe c:\windows\system32\drivers\downld\794406.exe c:\windows\system32\drivers\downld\796593.exe c:\windows\system32\drivers\downld\797250.exe c:\windows\system32\drivers\downld\797750.exe c:\windows\system32\drivers\downld\800671.exe c:\windows\system32\drivers\downld\800781.exe c:\windows\system32\drivers\downld\802484.exe c:\windows\system32\drivers\downld\803015.exe c:\windows\system32\drivers\downld\805109.exe c:\windows\system32\drivers\downld\805265.exe c:\windows\system32\drivers\downld\805375.exe c:\windows\system32\drivers\downld\807640.exe c:\windows\system32\drivers\downld\807734.exe c:\windows\system32\drivers\downld\807875.exe c:\windows\system32\drivers\downld\809109.exe c:\windows\system32\drivers\downld\810984.exe c:\windows\system32\drivers\downld\811078.exe c:\windows\system32\drivers\downld\811453.exe c:\windows\system32\drivers\downld\813015.exe c:\windows\system32\drivers\downld\814234.exe c:\windows\system32\drivers\downld\814781.exe c:\windows\system32\drivers\downld\817265.exe c:\windows\system32\drivers\downld\818343.exe c:\windows\system32\drivers\downld\818640.exe c:\windows\system32\drivers\downld\819484.exe c:\windows\system32\drivers\downld\821906.exe c:\windows\system32\drivers\downld\822125.exe c:\windows\system32\drivers\downld\824125.exe c:\windows\system32\drivers\downld\826296.exe c:\windows\system32\drivers\downld\826593.exe c:\windows\system32\drivers\downld\826906.exe c:\windows\system32\drivers\downld\828046.exe c:\windows\system32\drivers\downld\829515.exe c:\windows\system32\drivers\downld\830796.exe c:\windows\system32\drivers\downld\831406.exe c:\windows\system32\drivers\downld\832281.exe c:\windows\system32\drivers\downld\833781.exe c:\windows\system32\drivers\downld\834125.exe c:\windows\system32\drivers\downld\835843.exe c:\windows\system32\drivers\downld\836140.exe c:\windows\system32\drivers\downld\837343.exe c:\windows\system32\drivers\downld\839781.exe c:\windows\system32\drivers\downld\840750.exe c:\windows\system32\drivers\downld\842984.exe c:\windows\system32\drivers\downld\844250.exe c:\windows\system32\drivers\downld\845171.exe c:\windows\system32\drivers\downld\848265.exe c:\windows\system32\drivers\downld\848468.exe c:\windows\system32\drivers\downld\850359.exe c:\windows\system32\drivers\downld\850562.exe c:\windows\system32\drivers\downld\853218.exe c:\windows\system32\drivers\downld\854031.exe c:\windows\system32\drivers\downld\856828.exe c:\windows\system32\drivers\downld\857281.exe c:\windows\system32\drivers\downld\858656.exe c:\windows\system32\drivers\downld\861656.exe c:\windows\system32\drivers\downld\861968.exe c:\windows\system32\drivers\downld\864437.exe c:\windows\system32\drivers\downld\865062.exe c:\windows\system32\drivers\downld\866625.exe c:\windows\system32\drivers\downld\867296.exe c:\windows\system32\drivers\downld\868109.exe c:\windows\system32\drivers\downld\869406.exe c:\windows\system32\drivers\downld\872656.exe c:\windows\system32\drivers\downld\873718.exe c:\windows\system32\drivers\downld\874984.exe c:\windows\system32\drivers\downld\876125.exe c:\windows\system32\drivers\downld\877203.exe c:\windows\system32\drivers\downld\879828.exe c:\windows\system32\drivers\downld\880546.exe c:\windows\system32\drivers\downld\882218.exe c:\windows\system32\drivers\downld\88366750.exe c:\windows\system32\drivers\downld\883671.exe c:\windows\system32\drivers\downld\88407171.exe c:\windows\system32\drivers\downld\88426453.exe c:\windows\system32\drivers\downld\88432718.exe c:\windows\system32\drivers\downld\88468296.exe c:\windows\system32\drivers\downld\88480984.exe c:\windows\system32\drivers\downld\88490000.exe c:\windows\system32\drivers\downld\886937.exe c:\windows\system32\drivers\downld\887171.exe c:\windows\system32\drivers\downld\88832656.exe c:\windows\system32\drivers\downld\88849484.exe c:\windows\system32\drivers\downld\88861593.exe c:\windows\system32\drivers\downld\88902562.exe c:\windows\system32\drivers\downld\88914359.exe c:\windows\system32\drivers\downld\889328.exe c:\windows\system32\drivers\downld\88965625.exe c:\windows\system32\drivers\downld\88977375.exe c:\windows\system32\drivers\downld\89042015.exe c:\windows\system32\drivers\downld\89056515.exe c:\windows\system32\drivers\downld\89076265.exe c:\windows\system32\drivers\downld\892093.exe c:\windows\system32\drivers\downld\892625.exe c:\windows\system32\drivers\downld\894765.exe c:\windows\system32\drivers\downld\896375.exe c:\windows\system32\drivers\downld\898234.exe c:\windows\system32\drivers\downld\899687.exe c:\windows\system32\drivers\downld\9011109.exe c:\windows\system32\drivers\downld\901437.exe c:\windows\system32\drivers\downld\902109.exe c:\windows\system32\drivers\downld\9022796.exe c:\windows\system32\drivers\downld\9029250.exe c:\windows\system32\drivers\downld\9034125.exe c:\windows\system32\drivers\downld\9037750.exe c:\windows\system32\drivers\downld\9039984.exe c:\windows\system32\drivers\downld\9043796.exe c:\windows\system32\drivers\downld\9047718.exe c:\windows\system32\drivers\downld\9050640.exe c:\windows\system32\drivers\downld\9053421.exe c:\windows\system32\drivers\downld\905500.exe c:\windows\system32\drivers\downld\9057718.exe c:\windows\system32\drivers\downld\9062031.exe c:\windows\system32\drivers\downld\9088000.exe c:\windows\system32\drivers\downld\909156.exe c:\windows\system32\drivers\downld\9093875.exe c:\windows\system32\drivers\downld\9098265.exe c:\windows\system32\drivers\downld\9105640.exe c:\windows\system32\drivers\downld\9113828.exe c:\windows\system32\drivers\downld\911562.exe c:\windows\system32\drivers\downld\9122906.exe c:\windows\system32\drivers\downld\9127125.exe c:\windows\system32\drivers\downld\9132796.exe c:\windows\system32\drivers\downld\9137078.exe c:\windows\system32\drivers\downld\9139953.exe c:\windows\system32\drivers\downld\9143531.exe c:\windows\system32\drivers\downld\9146343.exe c:\windows\system32\drivers\downld\9147875.exe c:\windows\system32\drivers\downld\9150625.exe c:\windows\system32\drivers\downld\9154984.exe c:\windows\system32\drivers\downld\9159234.exe c:\windows\system32\drivers\downld\916359.exe c:\windows\system32\drivers\downld\9171375.exe c:\windows\system32\drivers\downld\9182734.exe c:\windows\system32\drivers\downld\9189859.exe c:\windows\system32\drivers\downld\920046.exe c:\windows\system32\drivers\downld\9217156.exe c:\windows\system32\drivers\downld\9218953.exe c:\windows\system32\drivers\downld\9222546.exe c:\windows\system32\drivers\downld\922390.exe c:\windows\system32\drivers\downld\9226828.exe c:\windows\system32\drivers\downld\9228937.exe c:\windows\system32\drivers\downld\9231812.exe c:\windows\system32\drivers\downld\9234796.exe c:\windows\system32\drivers\downld\9237562.exe c:\windows\system32\drivers\downld\9240750.exe c:\windows\system32\drivers\downld\9244015.exe c:\windows\system32\drivers\downld\9246796.exe c:\windows\system32\drivers\downld\924781.exe c:\windows\system32\drivers\downld\9252578.exe c:\windows\system32\drivers\downld\9258312.exe c:\windows\system32\drivers\downld\9261171.exe c:\windows\system32\drivers\downld\9263984.exe c:\windows\system32\drivers\downld\9267546.exe c:\windows\system32\drivers\downld\9271421.exe c:\windows\system32\drivers\downld\9273984.exe c:\windows\system32\drivers\downld\9276796.exe c:\windows\system32\drivers\downld\9280281.exe c:\windows\system32\drivers\downld\928062.exe c:\windows\system32\drivers\downld\9283312.exe c:\windows\system32\drivers\downld\9285390.exe c:\windows\system32\drivers\downld\9286921.exe c:\windows\system32\drivers\downld\9291875.exe c:\windows\system32\drivers\downld\929531.exe c:\windows\system32\drivers\downld\9295468.exe c:\windows\system32\drivers\downld\9298328.exe c:\windows\system32\drivers\downld\9300437.exe c:\windows\system32\drivers\downld\9302593.exe c:\windows\system32\drivers\downld\9306906.exe c:\windows\system32\drivers\downld\9311250.exe c:\windows\system32\drivers\downld\9315500.exe c:\windows\system32\drivers\downld\9319734.exe c:\windows\system32\drivers\downld\9322046.exe c:\windows\system32\drivers\downld\9324109.exe c:\windows\system32\drivers\downld\9326234.exe c:\windows\system32\drivers\downld\9328437.exe c:\windows\system32\drivers\downld\933812.exe c:\windows\system32\drivers\downld\938937.exe c:\windows\system32\drivers\downld\942312.exe c:\windows\system32\drivers\downld\943687.exe c:\windows\system32\drivers\downld\946109.exe c:\windows\system32\drivers\downld\950796.exe c:\windows\system32\drivers\downld\955531.exe c:\windows\system32\drivers\downld\957921.exe c:\windows\system32\drivers\downld\962578.exe c:\windows\system32\drivers\downld\964968.exe c:\windows\system32\drivers\downld\967343.exe c:\windows\system32\drivers\downld\970734.exe c:\windows\system32\drivers\hldrrr.exe c:\windows\system32\drivers\mdelk.exe c:\windows\system32\drivers\srosa.sys c:\windows\system32\MabryObj.dll c:\windows\system32\mdelk.exe c:\windows\system32\wintems.exe . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_SROSA -------\Legacy_SROSA -------\Legacy_BOONTY_GAMES -------\Service_Boonty Games ((((((((((((((((((((((((((((( Fichiers créés du 2009-02-18 au 2009-03-18 )))))))))))))))))))))))))))))))))))) . 2009-03-18 06:02 . 2009-03-18 06:02 <REP> d-------- c:\windows\LastGood 2009-03-17 00:06 . 2009-03-17 00:06 <REP> d----c--- C:\rsit 2009-03-11 18:44 . 2009-03-12 07:09 <REP> d-------- c:\program files\EsetOnlineScanner 2009-03-11 12:41 . 2009-03-11 12:41 <REP> d-------- c:\program files\Defenza 2009-03-11 12:41 . 1996-08-20 20:37 15,840 --a------ c:\windows\system32\Machnm1.exe 2009-03-11 12:41 . 2005-09-25 16:37 5,632 --a------ c:\windows\system32\Machnm64.sys 2009-03-11 12:41 . 2009-03-11 12:41 3,120 --a------ c:\windows\system32\118290.54 2009-03-11 12:41 . 2009-03-11 12:41 3,120 --a------ c:\windows\118294.78 2009-03-11 12:41 . 2003-08-13 00:27 2,304 --a------ c:\windows\system32\Machnm32.sys 2009-03-11 10:51 . 2009-03-11 12:11 <REP> d-------- c:\windows\avxoscan 2009-03-11 09:23 . 2009-03-11 09:23 <REP> d-------- c:\program files\WOT 2009-03-11 02:34 . 2009-03-11 02:34 <REP> d-------- c:\program files\Windows Defender 2009-03-11 02:26 . 2009-03-11 02:26 <REP> d----c--- C:\fsaua.data 2009-03-11 02:22 . 2009-03-11 02:22 <REP> d-------- c:\program files\Update Services 2009-03-11 01:50 . 2009-03-11 11:30 <REP> d-------- c:\documents and settings\christophe.SN1006475\SecurityScans 2009-03-11 01:48 . 2009-03-11 01:48 <REP> d-------- c:\program files\Microsoft Baseline Security Analyzer 2 2009-03-11 01:45 . 2009-03-11 01:45 <REP> d-------- c:\program files\McafeeRootkitDetective 2009-03-10 18:51 . 2009-03-10 20:44 <REP> d----c--- C:\756ebbc6acbbe51a509140b77c43 2009-03-10 18:20 . 2009-03-10 18:20 <REP> d----c--- C:\679180b666ef33bd1acd4a13ce81605e 2009-03-09 18:39 . 2009-03-09 18:39 <REP> d----c--- C:\MFT 143762 2009-03-09 18:39 . 2009-03-09 18:39 <REP> d----c--- C:\MFT 123117 2009-03-09 13:56 . 2009-03-09 14:00 <REP> d-------- c:\program files\AxBx 2009-03-09 11:03 . 2009-03-09 11:03 <REP> d----c--- C:\00c1dd6213e4481ea3 2009-03-09 11:02 . 2009-03-09 11:03 <REP> d----c--- C:\f30a645f33c1db201701c677 2009-02-21 08:24 . 2009-02-21 08:24 <REP> d----c--- C:\lgupload 2009-02-21 08:20 . 2009-02-21 08:20 <REP> d-------- c:\documents and settings\christophe.SN1006475\Application Data\LG Electronics 2009-02-21 08:13 . 2009-02-21 08:13 <REP> d-------- c:\program files\LG Electronics 2009-02-21 08:13 . 2007-07-11 10:45 21,632 --a------ c:\windows\system32\drivers\lgusbmodem.sys 2009-02-21 08:13 . 2007-07-11 15:51 19,840 --a------ c:\windows\system32\drivers\lgusbdiag.sys 2009-02-21 08:13 . 2007-07-11 10:40 12,416 --a------ c:\windows\system32\drivers\lgusbbus.sys 2009-02-21 08:09 . 2009-02-21 08:10 <REP> d-------- c:\program files\LG PC Suite 2 2009-02-21 08:09 . 2009-02-21 08:09 <REP> d-------- c:\documents and settings\christophe.SN1006475\Application Data\InstallShield 2009-02-18 11:09 . 2009-02-18 11:10 <REP> d-------- c:\documents and settings\SOPHIE.SN100647590008\Application Data\Winamp . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2009-03-11 13:11 --------- d-----w c:\documents and settings\christophe.SN1006475\Application Data\OpenOffice.org2 2009-03-11 11:41 --------- d--h--w c:\program files\InstallShield Installation Information 2009-03-11 10:49 --------- d-----w c:\program files\Spybot - Search & Destroy 2009-03-11 10:49 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2009-03-11 08:42 --------- d-----w c:\program files\Java 2009-03-11 07:16 --------- d-----w c:\program files\Windows Live Safety Center 2009-03-11 03:16 --------- d-----w c:\documents and settings\All Users\Application Data\Symantec 2009-03-11 03:13 --------- d-----w c:\program files\Fichiers communs\Symantec Shared 2009-03-10 17:51 --------- d-----w c:\documents and settings\All Users\Application Data\Microsoft Help 2009-03-10 05:19 --------- d-----w c:\program files\CCleaner 2009-03-06 17:25 --------- d-----w c:\program files\TuneUp Utilities 2008 2009-03-05 02:06 --------- d-----w c:\program files\PeerGuardian2 2009-03-04 14:26 --------- d---a-w c:\program files\eMule.v0.48a.Applejuice.v2.0.1 2009-02-27 13:55 --------- d-----w c:\program files\Microsoft Silverlight 2009-02-23 09:07 --------- d-----w c:\documents and settings\christophe.SN1006475\Application Data\Media Player Classic 2009-02-22 13:25 --------- d-----w c:\documents and settings\SOPHIE.SN100647590008\Application Data\OpenOffice.org2 2009-01-29 22:35 --------- d-----w c:\program files\Fichiers communs\Adobe 2009-01-26 17:15 --------- d-----w c:\program files\Fichiers communs\Logitech 2008-10-31 20:47 2,853,682 ----a-w c:\program files\foobar2000_0.9.5.6.exe 2008-07-13 16:55 91,280 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\GDIPFONTCACHEV1.DAT 2007-04-05 05:39 87,608 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\ezpinst.exe 2007-04-05 05:39 47,360 -c--a-w c:\documents and settings\christophe.SN1006475\Application Data\pcouffin.sys 2006-11-30 15:34 57,115,310 -c--a-w c:\program files\openofficeorg3.cab 2006-11-30 15:34 3,293,189 -c--a-w c:\program files\openofficeorg4.cab 2006-11-30 15:25 15,519,277 -c--a-w c:\program files\openofficeorg2.cab 2006-11-30 15:22 18,447,022 -c--a-w c:\program files\openofficeorg1.cab 2006-11-30 15:17 5,298,688 -c--a-w c:\program files\openofficeorg21.msi 2006-11-30 15:17 217 -c--a-w c:\program files\setup.ini 2006-11-04 19:36 758,272 -c--a-w c:\program files\VirtualDub.exe 2006-11-04 19:36 120,328 -c--a-w c:\program files\VirtualDub.vdi 2006-11-04 19:35 7,738 -c--a-w c:\program files\vdub.exe 2006-11-04 19:34 210,423 -c--a-w c:\program files\VirtualDub.chm 2005-08-25 21:44 14,545 -c--a-w c:\program files\Codecs.ini 2005-08-25 20:17 929,280 -c--a-w c:\program files\VirtualDubMod.exe 2005-08-25 20:17 137,733 -c--a-w c:\program files\VirtualDubMod.vdi 2005-08-25 20:10 9,804 -c--a-w c:\program files\vdremote.dll 2005-08-25 20:10 40,960 -c--a-w c:\program files\AuxSetup.exe 2005-08-25 20:10 11,340 -c--a-w c:\program files\vdicmdrv.dll 2005-08-25 20:09 7,244 -c--a-w c:\program files\vdsvrlnk.dll 2004-09-12 11:22 615 -c--a-w c:\program files\VirtualDubMod.exe.manifest 2003-12-03 19:26 210,415 -c--a-w c:\program files\VirtualDubMod.chm 2003-12-01 22:11 74,186 -c--a-w c:\program files\VirtualDub.vdhelp 2003-10-01 16:31 18,321 -c--a-w c:\program files\copying 2003-04-25 22:29 146,944 -c--a-w c:\program files\SciLexer.dll 2003-03-17 19:41 1,263 -c--a-w c:\program files\readme_virtualdubmod_dlls.txt 2003-03-11 21:50 48,640 -c--a-w c:\program files\vorbis.dll 2003-03-11 21:10 20,992 -c--a-w c:\program files\ogg.dll 2003-03-10 15:42 125,440 -c--a-w c:\program files\corona.dll 2002-11-14 17:55 56,832 -c--a-w c:\program files\AviSynthLexer.lexer 2002-05-22 04:18 860 -c--a-w c:\program files\license_corona.txt 2002-03-11 09:06 1,822,520 -c--a-w c:\program files\instmsiw.exe 2002-03-11 08:45 1,708,856 -c--a-w c:\program files\instmsia.exe 2007-01-19 03:50 60,518 -c--a-w c:\program files\mozilla firefox\components\jar50.dll 2007-01-19 03:51 49,248 -c--a-w c:\program files\mozilla firefox\components\jsd3250.dll 2007-01-19 03:50 165,992 -c--a-w c:\program files\mozilla firefox\components\xpinstal.dll 2005-05-13 16:12 217,073 -csha-r c:\windows\meta4.exe 2007-01-16 18:30 56 -csh--r c:\windows\system32\1701ED2D90.sys 2005-07-14 11:31 27,648 -csha-r c:\windows\system32\AVSredirect.dll 2005-06-26 14:32 616,448 -csha-r c:\windows\system32\cygwin1.dll 2005-06-21 21:37 45,568 -csha-r c:\windows\system32\cygz.dll 2006-05-03 09:06 163,328 -csh--r c:\windows\system32\flvDX.dll 2004-01-24 23:00 70,656 --sha-r c:\windows\system32\i420vfw.dll 2007-07-22 07:30 848 -csha-w c:\windows\system32\KGyGaAvL.sys 2007-02-21 10:47 31,232 -csh--r c:\windows\system32\msfDX.dll 2005-02-28 12:16 240,128 -csha-r c:\windows\system32\x.264.exe 2004-01-25 16:18 70,656 -csha-w c:\windows\system32\yv12vfw.dll 2008-06-07 20:42 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008060720080608\index.dat . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Neuf Media Center"="c:\program files\Neuf\Media Center\MediaCenter.exe" [2007-10-15 1025264] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "ccleaner"="c:\program files\CCleaner\ccleaner.exe" [2009-02-19 1471728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ACTIVBOARD"="c:\apps\ABoard\ABoard.exe" [2003-05-02 24576] "OFFICEKB"="c:\program files\Trust\DS-4500X Wireless Laser Deskset\Keyboard\kbdap32a.EXE" [2007-01-04 401920] "FLMOFFICE4DMOUSE"="c:\program files\Trust\DS-4500X Wireless Laser Deskset\Mouse\mouse32a.exe" [2007-01-04 370176] "ISUSPM Startup"="c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 221184] "LogitechCommunicationsManager"="c:\program files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" [2008-08-14 565008] "LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam\Quickcam.exe" [2008-08-14 2407184] "QuickTime Task"="c:\program files\QuickTime Alternative\qttask.exe" [2008-03-28 413696] "TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-05-01 185896] "MMTray"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" [2006-01-19 110592] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792] "WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-07-09 36352] "VirusKeeper"="c:\program files\AxBx\VirusKeeper 2009 Pro Evaluation\VirusKeeper.exe" [2009-03-16 3824512] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-17 148888] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] "Picasa Media Detector"="c:\program files\Picasa2\PicasaMediaDetector.exe" [2007-09-28 443968] c:\documents and settings\SOPHIE.SN100647590008\Menu D‚marrer\Programmes\D‚marrage\ OpenOffice.org 2.4.lnk - c:\program files\OpenOffice.org 2.4\program\quickstart.exe [2008-01-21 393216] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Logitech Desktop Messenger.lnk - c:\program files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2006-12-28 450560] [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0] Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00877.JPG FriendlyName= [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\1] Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00874.JPG FriendlyName= [HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\2] Source= c:\documents and settings\christophe.SN1006475\Mes documents\Mes images\DSC00840.JPG FriendlyName= [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.I420"= i420vfw.dll "vidc.3ivx"= 3ivxVfWCodec.dll "vidc.3iv2"= 3ivxVfWCodec.dll "msacm.divxa32"= divxa32.acm "VIDC.HFYU"= huffyuv.dll "VIDC.i263"= i263_32.drv "msacm.imc"= imc32.acm "VIDC.VP31"= vp31vfw.dll "vidc.X264"= x264vfw.dll "msacm.avis"= ff_acm.acm [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0stera [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^DSLMON.lnk] backup=c:\windows\pss\DSLMON.lnkCommon Startup HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LDM HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] --a--c--- 2003-08-12 20:10 335872 c:\ati technologies\ATI Control Panel\atiptaxx.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp] --a--c--- 2009-03-14 10:56 115816 c:\program files\Fichiers communs\Symantec Shared\ccApp.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccRegVfy] --a--c--- 2002-11-19 15:24 59056 c:\program files\Fichiers communs\Symantec Shared\ccRegVfy.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DMXLauncher] --a--c--- 2006-08-14 01:07 102400 c:\program files\Roxio\Media Experience\DMXLauncher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MimBoot] --a--c--- 2006-01-19 11:06 11776 c:\progra~1\MUSICM~1\MUSICM~1\mimboot.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray] --a------ 2006-01-19 11:06 110592 c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a--c--- 2007-01-19 12:55 5674352 c:\program files\MSN Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck] --a--c--- 2009-03-16 01:57 26248 c:\program files\Norton AntiVirus\osCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector] --a------ 2007-09-28 02:17 443968 c:\program files\Picasa2\PicasaMediaDetector.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxioDragToDisc] --a--c--- 2006-07-31 09:00 1116920 c:\program files\Roxio\Drag-to-Disc\DrgToDsc.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray] --a--c--- 2006-08-10 12:10 221184 c:\program files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] --a------ 2008-05-01 17:31 185896 c:\program files\Fichiers communs\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] --a------ 2008-07-09 22:33 36352 c:\program files\Winamp\winampa.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Boonty Games"=3 (0x3) "SymAppCore"=2 (0x2) "Symantec Core LC"=3 (0x3) "LiveUpdate Notice Service"=2 (0x2) "LiveUpdate Notice Ex"=2 (0x2) "LiveUpdate"=3 (0x3) "ISPwdSvc"=3 (0x3) "CLTNetCnService"=2 (0x2) "ccSetMgr"=2 (0x2) "ccEvtMgr"=2 (0x2) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" "ctfmon.exe"=c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "eCarteBleue-BP"="c:\program files\e-Carte Bleue\Banque Populaire\ECB-BP.exe" /dontopenmycards "mm_server"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_server.exe" "ISUSScheduler"="c:\program files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start "ISUSPM Startup"=c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup "SoundMan"=SOUNDMAN.EXE "TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot "MMTray"="c:\program files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusDisableNotify"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"= "c:\\Program Files\\DivX\\DivX Player\\DivX Player.exe"= "c:\\Program Files\\Fichiers communs\\aolshare\\sysinfo\\sinf.exe"= "c:\\WINDOWS\\system32\\mmc.exe"= "c:\\Program Files\\Shareaza\\Shareaza.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\eMule.v0.48a.Applejuice.v2.0.1\\emule.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\MSN Messenger\\msnmsgr.exe"= "c:\\Program Files\\MSN Messenger\\livecall.exe"= "c:\\Program Files\\eMule.v0.48a.Applejuice.v2.0.1\\eMule Applejuice\\emule.exe"= "c:\program files\Neuf\Media Center\httpd\httpd.exe"= c:\program files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "57438:TCP"= 57438:TCP:Azureus "57438:UDP"= 57438:UDP:Azureus "22974:TCP"= 22974:TCP:eMule TCP "9547:TCP"= 9547:TCP:eMule UDP R1 Asapi;Asapi;c:\windows\system32\drivers\asapi.sys [2003-10-07 11264] R1 c2scsi;c2scsi;c:\windows\system32\drivers\c2scsi.sys [2007-08-05 241664] R1 vcsmpdrv;vcsmpdrv;c:\windows\system32\drivers\vcsmpdrv.sys [2003-10-07 49232] R2 VCSSecS;Virtual CD v4 Security service (SDK - Version);c:\program files\Virtual CD v4 SDK\System\vcssecs.exe [2003-10-07 139264] R2 vkservice;VirusKeeper antivirus/antispyware;c:\program files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe [2008-09-26 1119584] S4 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [2006-11-03 13592] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Contenu du dossier 'Tâches planifiées' 2009-03-14 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 13:57] 2009-03-18 c:\windows\Tasks\Maintenance en 1 clic.job - c:\program files\TuneUp Utilities 2008\OneClickStarter.exe [2008-03-03 09:42] 2009-03-18 c:\windows\Tasks\MP Scheduled Scan.job - c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 19:20] 2009-03-16 c:\windows\Tasks\Norton AntiVirus - Analyse système complète - christophe.SN1006475.job - c:\progra~1\NORTON~1\Navw32.exe [2009-03-17 01:06] 2009-03-18 c:\windows\Tasks\RegCure Program Check.job - c:\program files\RegCure\RegCure.exe [2008-04-21 22:21] 2009-03-12 c:\windows\Tasks\RegCure.job - c:\program files\RegCure\RegCure.exe [2008-04-21 22:21] 2009-03-17 c:\windows\Tasks\User_Feed_Synchronization-{1050FBD2-23BA-4551-831E-6B72F17466F3}.job - c:\windows\system32\msfeedssync.exe [2007-08-13 17:36] 2009-03-18 c:\windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job - c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 11:20] . - - - - ORPHELINS SUPPRIMES - - - - HKCU-Run-LDM - c:\program files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe . ------- Examen supplémentaire ------- . uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uStart Page = hxxp://www.neufportail.fr/ uInternet Settings,ProxyOverride = localhost;*.local uSearchURL,(Default) = hxxp://www.google.com/search?q=%s Trusted Zone: eset.com\www Trusted Zone: java.com\www Trusted Zone: secuser.com\www DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab DPF: {9D3AA934-55FA-4373-96FD-ED7787E4F161} - hxxps://collectionsbmu.ville-ge.ch/Components/WindowsHooker.dll FF - ProfilePath - ---- PARAMETRES FIREFOX ---- c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.cookie.p3plevel", 1); // 0=low, 1=medium, 2=high, 3=custom c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.enablePad", false); // Allow client to do proxy autodiscovery c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.default", "chrome://branding/content/searchconfig.properties"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.custom", "chrome://branding/content/searchconfig.properties"); . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-03-18 06:13:56 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_USERS\S-1-5-21-2307018245-1465403579-252423984-1007\Software\Microsoft\SystemCertificates\AddressBook*] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) @SACL= [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{53c1be49-d401-41c2-b7c0-cd34ec48a086}] @Denied: (Full) (Everyone) "Model"=dword:00000020 "Therad"=dword:0000001e "MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26, 38,95,44,ff,25,5b,70,e9,89,02,32,a1,dc,95,7b,71,fe,7a,d3,75,c0,90,48,62,87,\ [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}] @Denied: (Full) (Everyone) "scansk"=hex(0):4e,ff,5e,b3,e1,4f,64,5b,7e,e1,b9,28,dd,33,c0,0c,52,df,02,8e,25, 74,ee,dd,2c,2c,fa,22,ef,66,f1,9a,5f,1c,0f,74,6c,ce,30,b5,00,00,00,00,00,00,\ . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'winlogon.exe'(676) c:\windows\system32\Ati2evxx.dll . ------------------------ Autres processus actifs ------------------------ . c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe c:\program files\Bonjour\mDNSResponder.exe c:\windows\system32\dllhost.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe c:\program files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe c:\program files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe c:\program files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE c:\program files\Symantec\LiveUpdate\AluSchedulerSvc.exe c:\program files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe c:\windows\system32\vssvc.exe c:\windows\wanmpsvc.exe c:\program files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe c:\apps\ABoard\AOSD.EXE c:\program files\Neuf\Media Center\httpd\httpd.exe c:\program files\Neuf\Media Center\httpd\httpd.exe c:\program files\Fichiers communs\LogiShrd\LQCVFX\COCIManager.exe . ************************************************************************** . Heure de fin: 2009-03-18 6:24:43 - La machine a redémarré ComboFix-quarantined-files.txt 2009-03-18 05:24:38 Avant-CF: 10,556,960,768 octets libres Après-CF: 10,897,301,504 octets libres 1964 --- E O F --- 2009-03-18 05:02:35 (...) Rapport CF en doublon : Edité par Gof. maitenant l'analyse RITS (...) Rapport CF en triple : Edité par Gof. encore désolé pour la l0ngeur.

systeme xp, desolé, j'ai oublié de preciser