Fullzx14r

L'antivirus c'est OK RAS Tune up RAS Ccleaner RAS Malwarebyte signale un logiciel concurrent comme infection. je ne sais pas ce que tu en penses. voir ci dessous Je m'étonne de voir autant de 018 dans le log hijackthis avec logitech desktop messenger ? Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Version de la base de données: 4058 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 13/05/2010 10:40:09 mbam-log-2010-05-13 (10-40-09).txt Type d'examen: Examen rapide Elément(s) analysé(s): 123926 Temps écoulé: 4 minute(s), 39 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 1 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\RnSafe (Rogue.SpywareCleaner2009) -> No action taken. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)

Bonjour après un contrôle du PC par l'outil windows de surveillance de logiciel malveillant j'ai constaté qu'il y avait eu des choses de détectée et des actions faites par l'outil. Ne sachant pas s'il reste des traces de cette attaque, je fais appel aux spécialistes pour une aide. Merci d'avance pour votre support Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 09:12:52, on 13/05/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe C:\WINDOWS\system32\HPZipm12.exe C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe C:\Program Files\Serveur Media\bgtrans.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\Serveur Media\TwonkyMediaServer.exe C:\Program Files\Serveur Media\rmm.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Avira\AntiVir Desktop\avmailc.exe C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\system32\LVCOMSX.EXE C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Serveur Media\twonkymediaserverconfig.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe C:\Program Files\Spamihilator\spamihilator.exe C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\SearchProtocolHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\Connexion Internet Orange\SearchURLHook\SearchPageURL.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [MaxMenuMgr] "C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Logitech . Enregistrement du produit.lnk = C:\Program Files\Logitech\Logitech WebCam Software\eReg.exe O4 - Startup: Spamihilator.lnk = C:\Program Files\Spamihilator\spamihilator.exe O4 - Global Startup: Agent Serveur Média.lnk = C:\Program Files\Serveur Media\twonkymediaserverconfig.exe O4 - Global Startup: APC UPS Status.lnk = ? O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O4 - Global Startup: PHOTOfunSTUDIO -viewer-.lnk = C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} (Détection de dispositifs) - http://www.logitech.com/devicedetector/plu...Detection32.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1271271993062 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: bw+0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe O23 - Service: Seagate Service (FreeAgentGoNext Service) - Seagate Technology LLC - C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Serveur Média - Unknown owner - C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- End of file - 24274 bytes

Information complémentaire pour GOF Si je ne pouvais me connecter par le browser à winupdate, les tééchargements automatiques fonctionnaient. Windows télécharger un outil de surveillanc des logiciels malveillants verion mai 2010. Celui-ci s'est exécuté et a trouver des fichiers à réparer. Un analysecomplete a trouvé un virus. Désolé je ne sait pas son nom. Il a été éliminé. Maintenant un accès par le browser à winupdate est possible. Je constate aussi qu'il est possible de faire une analyse de log hijackthis ou de le poster ce qui était impossible avant puisque je me retrouvais systématiquement sur une page bloquée. Il y a donc eu un progrès même si tout n'est peut-être pas soldé. As tu besoin d'un examen complémentaire pour revoir l'état des lieux du PC

Bonjour Gof J'ai relancé un rapport Gmer hier soir. Le voila. Est ce que cela te parle un peu mieuxque le précédent ? Il semble cette fois indiquer plus de choses. Merci pour tes conseils Fullzx14r GMER 1.0.15.15281 - http://www.gmer.net Rootkit scan 2010-05-11 07:30:42 Windows 5.1.2600 Service Pack 3 Running: fz8hn8o9.exe; Driver: C:\DOCUME~1\QUESNE~1\LOCALS~1\Temp\fxrdypob.sys ---- System - GMER 1.0.15 ---- SSDT BA79619E ZwCreateKey SSDT BA796194 ZwCreateThread SSDT BA7961A3 ZwDeleteKey SSDT BA7961AD ZwDeleteValueKey SSDT BA7961B2 ZwLoadKey SSDT BA796180 ZwOpenProcess SSDT BA796185 ZwOpenThread SSDT BA7961BC ZwReplaceKey SSDT BA7961B7 ZwRestoreKey SSDT BA7961A8 ZwSetValueKey SSDT BA79618F ZwTerminateProcess ---- Kernel code sections - GMER 1.0.15 ---- .rsrc C:\WINDOWS\system32\drivers\disk.sys entry point in ".rsrc" section [0xBA100514] .text C:\WINDOWS\system32\DRIVERS\ati2mtag.sys section is writeable [0xB8734000, 0x19DA46, 0xE8000020] ---- User code sections - GMER 1.0.15 ---- ? C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe[140] C:\WINDOWS\system32\WININET.dll IMAGE_DOS_SIGNATURE not found; .text C:\WINDOWS\Explorer.EXE[156] ntdll.dll!NtProtectVirtualMemory 7C91D6EE 5 Bytes JMP 00B6000A .text C:\WINDOWS\Explorer.EXE[156] ntdll.dll!NtWriteVirtualMemory 7C91DFAE 5 Bytes JMP 00C0000A .text C:\WINDOWS\Explorer.EXE[156] ntdll.dll!KiUserExceptionDispatcher 7C91E47C 5 Bytes JMP 00B5000C .text C:\WINDOWS\System32\svchost.exe[452] ntdll.dll!NtProtectVirtualMemory 7C91D6EE 5 Bytes JMP 0099000A .text C:\WINDOWS\System32\svchost.exe[452] ntdll.dll!NtWriteVirtualMemory 7C91DFAE 5 Bytes JMP 009A000A .text C:\WINDOWS\System32\svchost.exe[452] ntdll.dll!KiUserExceptionDispatcher 7C91E47C 5 Bytes JMP 0098000C .text C:\WINDOWS\System32\svchost.exe[452] USER32.dll!GetCursorPos 7E3A974E 5 Bytes JMP 01A4000A .text C:\WINDOWS\System32\svchost.exe[452] ole32.dll!CoCreateInstance 774C057E 5 Bytes JMP 0103000A .text C:\Program Files\Microsoft Office\Office14\WINWORD.EXE[1424] kernel32.dll!SetUnhandledExceptionFilter 7C84495D 5 Bytes JMP 39007ED6 C:\Program Files\Fichiers communs\Microsoft Shared\office14\mso.dll (Microsoft Office 2010 component/Microsoft Corporation) .text C:\WINDOWS\system32\SearchIndexer.exe[2936] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 00585C0C C:\WINDOWS\system32\MSSRCH.DLL (mssrch.dll/Microsoft Corporation) ---- Files - GMER 1.0.15 ---- File C:\WINDOWS\system32\drivers\disk.sys suspicious modification ---- EOF - GMER 1.0.15 ----

Non ils n'étaient pas cochés

Bonjour Gof Je rentre du WE et je constate que tu es toujours occupé ailleurs. Quand tu auras un moment jette n coup d'oeil aux réponses que j'ai pu donner et fait moi part de tes commentaires. Bon courage pour le reste Bruno

Bonsoir Gof. J'ai fait deux posts pour répondre à tes demandes. Quelle est la suite après le rapport gmer ? Y vois tu quelque chose de bizarre. J'ai un doute si j'ai bien fait ta procédure. Le rapport m semble bien court Bruno

Cela me semble bizarre pour un truc qui a tourné 1h et demi qu'il n'y ai que ça dans le rapport mais c'est ainsi GMER 1.0.15.15281 - http://www.gmer.net Rootkit scan 2010-05-06 09:26:47 Windows 5.1.2600 Service Pack 3 Running: 4xx06uug.exe; Driver: C:\DOCUME~1\QUESNE~1\LOCALS~1\Temp\fxrdypob.sys ---- System - GMER 1.0.15 ---- SSDT BA7BD2C6 ZwCreateKey SSDT BA7BD2BC ZwCreateThread SSDT BA7BD2CB ZwDeleteKey SSDT BA7BD2D5 ZwDeleteValueKey SSDT BA7BD2DA ZwLoadKey SSDT BA7BD2A8 ZwOpenProcess SSDT BA7BD2AD ZwOpenThread SSDT BA7BD2E4 ZwReplaceKey SSDT BA7BD2DF ZwRestoreKey SSDT BA7BD2D0 ZwSetValueKey SSDT BA7BD2B7 ZwTerminateProcess ---- EOF - GMER 1.0.15 ----

Merci pour la reprise de contact. Pas de problème je surveillais si tu revenait sur ce post et je sais ce qu'est une activité soutenue. Il faut parfois accepter qu'on ne fait pas ce qu'on veux Le HD principal a lâcher il y a 3 semaines. J'ai du réinstaller un HD neuf et faire une réinstallation compléte du PC. Ayant des sauvegardes des mes datas sur d'autres disques, celles-ci ont été remises en place. Par contre WinXP +tous les logiciel que j'avais ont été réinstallés à neuf. Les paramètres de connexion IE avaient été regardés. Ils étaient comme tu le recommandais. Je n'ai donc rien changé. Par contre je viens de vérifier à nouveau et le paramètre Détecter automatiquement les paramètres de connexion était décoché. Je l'ai recoché et redémarré le PC. Je reviens donc ensuite pour répondre à la suite de ton message

Hélas plus de news pour m'aider à régler mon souci. Peut-être bientôt ?? On patiente

Slt Toujours rien suite à mon rapport malwarebyte. Je reste zen et en attente.

Pas de news on patiente. A demain

Je pense que vu l'heure on continuera demain soir pour les MAJ. @plus

Pour info. Je n'ai toujours pas accès à certaines pages IE comme winupdate et je ne peux pas envoyer de log hijackthis sur le site de zebulon. Je suis systématiquement sur une page qui dit Internet ne peut pas afficher cette page web. idem avec un autre browser comme firefox par exemple Par contre la mise à jour windows automatique semble fonctionner car 2 MAJ se sont faites tout à l'heure. Bizarre

Voilà désolé c'est un peu chaotique car j'ai mes enfants à la maison pour fêter 3 anniversaires. Rapport Malware Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Version de la base de données: 4058 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 02/05/2010 14:09:34 mbam-log-2010-05-02 (14-09-34).txt Type d'examen: Examen complet (C:\|D:\|M:\|N:\|O:\|) Elément(s) analysé(s): 292654 Temps écoulé: 1 heure(s), 37 minute(s), 29 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 1 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 6 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\RnSafe (Rogue.SpywareCleaner2009) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): C:\System Volume Information\_restore{8071731A-5EDF-44D7-BDD1-43047E95F0A3}\RP87\A0013225.exe (Hoax.BadJoke) -> Quarantined and deleted successfully. M:\Documents\Mes fichiers reçus\logiciel\Advance MP3 Catalog Pro\amcpro.exe (Adware.UCMore) -> Quarantined and deleted successfully. M:\Documents\Mes fichiers reçus\logiciel\Tuneup\TuneUp.Utilities.2009-keygen.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully. O:\System Volume Information\_restore{8071731A-5EDF-44D7-BDD1-43047E95F0A3}\RP84\A0012050.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully. O:\Telechargement Utorrent\Megaupload\TU10\Keygen v2010.exe (Trojan.Agent.CK) -> Quarantined and deleted successfully. C:\Documents and Settings\QUESNEL Bruno\Application Data\wiaservg.log (Malware.Trace) -> Quarantined and deleted successfully.

Rapport de OTL demandé hier à 18h50. Désolé pour une réponse si tardive. J'ai eu du monde en fin de journée. All processes killed ========== OTL ========== Service upnphostVSS stopped successfully! Service upnphostVSS deleted successfully! File C:\Documents and Settings\QUESNEL Bruno\Menu Démarrer\Programmes\Démarrage\mgjwin32.exe not found. C:\WINDOWS\tlrbctv45emqvrsl3hnslnnj.ini moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: Administrateur ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 5708449 bytes User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 4580620 bytes ->Flash cache emptied: 1994 bytes User: QUESNEL Bruno ->Temp folder emptied: 7560987 bytes ->Temporary Internet Files folder emptied: 20256475 bytes ->Java cache emptied: 0 bytes ->Flash cache emptied: 1173 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 2195330 bytes %systemroot%\System32 .tmp files removed: 2957048 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 4422 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 12986530 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 54,00 mb OTL by OldTimer - Version 3.2.4.0 log created on 05022010_103514 Files\Folders moved on Reboot... File\Folder C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temp\fla5DA.tmp not found! File\Folder C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temp\fla5DD.tmp not found! File\Folder C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temp\fla5DE.tmp not found! File\Folder C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temp\~DFF305.tmp not found! File\Folder C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temp\~DFF396.tmp not found! File\Folder C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temp\~DFF41E.tmp not found! File\Folder C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temp\~DFF438.tmp not found! File\Folder C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temp\~DFF489.tmp not found! File\Folder C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temp\~DFF4A3.tmp not found! C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\Content.IE5\YHO430TU\ads[2].htm moved successfully. C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\Content.IE5\YHO430TU\infection-bdc-momibot89088b-t176262[1].htm moved successfully. C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\Content.IE5\UFQTKJUH\iframe[1].htm moved successfully. C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\Content.IE5\UFQTKJUH\povh[1].htm moved successfully. C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\Content.IE5\NMS9R0XS\img[1].htm moved successfully. C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\Content.IE5\ETIF4UIL\hp[1].htm moved successfully. C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\Content.IE5\EDIV4LWZ\ban_728x90[1].htm moved successfully. C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\Content.IE5\7HPB3J1R\img[2].htm moved successfully. C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\Content.IE5\360I8R8R\rectangle_300x250[1].htm moved successfully. C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully. C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temporary Internet Files\SuggestedSites.dat moved successfully. Registry entries deleted on Reboot...

Zut J'ai perdu mon assistant Gof

Voila le log OTL logfile created on: 01/05/2010 16:48:33 - Run 1 OTL by OldTimer - Version 3.2.4.0 Folder = C:\Documents and Settings\QUESNEL Bruno\Bureau Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 70,00% Memory free 5,00 Gb Paging File | 4,00 Gb Available in Paging File | 78,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 97,65 Gb Total Space | 75,62 Gb Free Space | 77,44% Space Free | Partition Type: NTFS Drive D: | 200,43 Gb Total Space | 132,25 Gb Free Space | 65,99% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Drive M: | 465,76 Gb Total Space | 347,06 Gb Free Space | 74,52% Space Free | Partition Type: NTFS Drive N: | 1397,26 Gb Total Space | 1034,66 Gb Free Space | 74,05% Space Free | Partition Type: NTFS Drive O: | 465,76 Gb Total Space | 394,33 Gb Free Space | 84,66% Space Free | Partition Type: NTFS Computer Name: FUJITSU Current User Name: QUESNEL Bruno Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard ========== Processes (SafeList) ========== PRC - [2010/05/01 16:47:10 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\QUESNEL Bruno\Bureau\OTL.exe PRC - [2010/04/16 08:33:40 | 000,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe PRC - [2010/04/15 00:38:28 | 001,512,448 | ---- | M] (Michel Krämer) -- C:\Program Files\Spamihilator\spamihilator.exe PRC - [2010/04/14 23:44:12 | 000,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe PRC - [2010/04/14 23:43:57 | 000,434,945 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe PRC - [2010/04/14 23:43:56 | 000,466,689 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avscan.exe PRC - [2010/04/14 23:43:55 | 000,194,817 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avmailc.exe PRC - [2010/04/14 23:43:54 | 000,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe PRC - [2010/04/14 23:43:53 | 000,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe PRC - [2010/04/14 20:26:12 | 000,032,768 | ---- | M] (Logitech) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe PRC - [2010/02/25 12:40:58 | 000,716,616 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe PRC - [2010/02/25 12:38:42 | 001,047,880 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe PRC - [2010/02/19 17:01:00 | 000,108,176 | ---- | M] () -- C:\Program Files\Serveur Media\rmm.exe PRC - [2010/02/19 17:00:58 | 000,554,640 | ---- | M] () -- C:\Program Files\Serveur Media\bgtrans.exe PRC - [2010/02/19 17:00:58 | 000,149,136 | ---- | M] () -- C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe PRC - [2010/02/19 17:00:56 | 000,235,152 | ---- | M] (PacketVideo) -- C:\Program Files\Serveur Media\twonkymediaserverconfig.exe PRC - [2010/02/19 17:00:52 | 001,173,136 | ---- | M] () -- C:\Program Files\Serveur Media\twonkymediaserver.exe PRC - [2009/11/13 13:31:14 | 000,092,008 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe PRC - [2009/11/04 11:35:26 | 015,765,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE PRC - [2009/09/26 04:28:22 | 004,639,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE PRC - [2009/09/23 13:38:18 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe PRC - [2009/08/24 12:22:34 | 000,069,632 | ---- | M] (France Telecom SA) -- C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe PRC - [2009/05/01 14:35:54 | 000,202,024 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\MaxSync.exe PRC - [2009/05/01 14:35:54 | 000,181,544 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe PRC - [2009/05/01 14:35:10 | 000,185,640 | ---- | M] (Seagate LLC) -- C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe PRC - [2009/02/19 00:33:08 | 000,809,488 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe PRC - [2009/02/19 00:28:52 | 000,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.exe PRC - [2008/05/26 22:19:14 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Desktop Search\WindowsSearch.exe PRC - [2008/04/14 04:34:03 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007/11/16 14:43:16 | 000,040,960 | ---- | M] (Matsushita Electric Industrial Co., Ltd.) -- C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe PRC - [2007/08/09 09:27:52 | 000,073,728 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe PRC - [2005/12/12 15:03:54 | 000,417,855 | ---- | M] (American Power Conversion Corporation) -- C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe PRC - [2005/12/12 15:02:24 | 000,176,193 | ---- | M] (American Power Conversion Corporation) -- C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe PRC - [2005/12/09 15:37:42 | 000,081,920 | ---- | M] (Logitech Inc.) -- c:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcSrv.exe PRC - [2005/12/09 15:32:18 | 000,225,280 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\LVCOMSX.EXE PRC - [2005/11/07 22:16:58 | 000,266,338 | ---- | M] () -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe PRC - [2005/11/07 22:16:38 | 001,081,344 | ---- | M] (Cyberlink) -- C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe PRC - [2005/10/24 15:45:00 | 000,090,112 | R--- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE PRC - [2004/11/01 17:22:22 | 000,262,144 | ---- | M] (Logitech Inc.) -- C:\WINDOWS\system32\ElkCtrl.exe ========== Modules (SafeList) ========== MOD - [2010/05/01 16:47:10 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\QUESNEL Bruno\Bureau\OTL.exe MOD - [2010/04/14 20:26:12 | 000,024,613 | ---- | M] (BackWeb) -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Temp\IadHide5.dll MOD - [2009/07/12 01:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll MOD - [2009/02/19 00:31:16 | 000,045,584 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\lgscroll.dll MOD - [2008/04/14 04:32:02 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2005/12/09 15:37:42 | 000,086,016 | ---- | M] (Logitech Inc.) -- C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll ========== Win32 Services (SafeList) ========== SRV - File not found [Auto | Stopped] -- -- (upnphostVSS) SRV - [2010/04/16 08:33:40 | 000,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2010/04/15 20:58:24 | 000,435,016 | ---- | M] (TuneUp Software) [On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe -- (TuneUp.Defrag) SRV - [2010/04/14 23:44:12 | 000,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2010/04/14 23:43:57 | 000,434,945 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE -- (AntiVirWebService) SRV - [2010/04/14 23:43:55 | 000,194,817 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avmailc.exe -- (AntiVirMailService) SRV - [2010/04/14 23:43:54 | 000,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2010/04/14 23:11:57 | 000,069,632 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service) SRV - [2010/02/25 12:38:42 | 001,047,880 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc) SRV - [2010/02/25 12:34:42 | 000,030,024 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp) SRV - [2010/02/19 17:00:58 | 000,149,136 | ---- | M] () [Auto | Running] -- C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe -- (Serveur Média) SRV - [2009/11/13 13:31:14 | 000,092,008 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService) SRV - [2009/09/26 04:28:22 | 004,639,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Fichiers communs\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc) SRV - [2009/09/26 03:31:58 | 000,149,336 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2009/09/23 13:38:18 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0) SRV - [2009/08/24 12:22:34 | 000,069,632 | ---- | M] (France Telecom SA) [Auto | Running] -- C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe -- (FTRTSVC) SRV - [2009/05/01 14:35:54 | 000,181,544 | ---- | M] (Seagate Technology LLC) [Auto | Running] -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service) SRV - [2009/02/19 00:30:20 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe -- (LBTServ) SRV - [2007/08/09 09:27:52 | 000,073,728 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12) SRV - [2005/12/12 15:02:24 | 000,176,193 | ---- | M] (American Power Conversion Corporation) [Auto | Running] -- C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe -- (APC UPS Service) SRV - [2005/12/09 15:37:42 | 000,081,920 | ---- | M] (Logitech Inc.) [Auto | Running] -- c:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv) SRV - [2005/11/07 22:16:58 | 000,266,338 | ---- | M] () [Auto | Running] -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe -- (CLCapSvc) CyberLink Background Capture Service (CBCS) SRV - [2005/11/07 22:16:58 | 000,114,784 | ---- | M] () [Auto | Stopped] -- C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe -- (CLSched) CyberLink Task Scheduler (CTS) SRV - [2005/11/07 22:16:38 | 001,081,344 | ---- | M] (Cyberlink) [Auto | Running] -- C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe -- (CyberLink Media Library Service) ========== Driver Services (SafeList) ========== DRV - [2010/04/14 23:44:25 | 000,096,104 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb) DRV - [2010/04/14 23:44:25 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv) DRV - [2010/04/14 23:44:24 | 000,056,816 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt) DRV - [2010/04/14 23:43:53 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio) DRV - [2009/10/14 07:24:44 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv) DRV - [2009/08/24 12:22:58 | 000,034,688 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcampr5.sys -- (PCAMPR5) DRV - [2009/08/24 12:22:58 | 000,032,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\pcandis5.sys -- (PCANDIS5) DRV - [2008/12/18 23:43:54 | 000,079,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE) DRV - [2008/12/18 23:43:12 | 000,063,248 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042mou.Sys -- (L8042mou) DRV - [2008/12/18 23:43:06 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd) DRV - [2008/07/04 08:33:32 | 003,230,720 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2008/05/21 01:53:36 | 000,093,696 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService) DRV - [2008/04/13 20:46:22 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mpe.sys -- (MPE) DRV - [2008/04/13 20:45:12 | 000,060,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Pilote USB audio (WDM) DRV - [2008/04/13 20:36:38 | 000,020,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hidbatt.sys -- (HidBatt) DRV - [2008/04/13 18:36:05 | 000,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2005/12/09 15:37:42 | 002,400,256 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LVMVdrv.sys -- (lvmvdrv) DRV - [2005/12/09 15:37:42 | 000,016,768 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVPrcMon.sys -- (LVPrcMon) DRV - [2005/12/09 15:35:54 | 002,174,464 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Lvckap.sys -- (Lvckap) DRV - [2005/12/06 05:30:19 | 000,916,096 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LV302AV.SYS -- (PID_08A0) QuickCam IM(PID_08A0) DRV - [2005/12/06 05:27:04 | 000,007,136 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\lv302af.sys -- (pepifilter) DRV - [2005/12/06 05:26:16 | 000,039,424 | R--- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LVUSBSta.sys -- (LVUSBSta) DRV - [2005/10/26 17:08:00 | 003,786,944 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005/08/18 17:52:06 | 000,093,568 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata) DRV - [2005/06/30 08:27:46 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2005/06/30 08:27:44 | 000,033,664 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2005/06/23 16:21:37 | 000,799,744 | R--- | M] (Philips Semiconductors GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\3xHybrid.sys -- (3xHybrid) DRV - [2005/06/20 09:12:00 | 000,215,040 | R--- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sis163u.sys -- (SIS163u) DRV - [2005/03/09 14:53:00 | 000,036,352 | R--- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2004/09/02 09:24:38 | 000,082,816 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus) DRV - [2003/07/16 14:27:40 | 000,043,264 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1547161642-562591055-725345543-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ IE - HKU\S-1-5-21-1547161642-562591055-725345543-1005\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\Connexion Internet Orange\SearchURLHook\SearchPageURL.dll () IE - HKU\S-1-5-21-1547161642-562591055-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [2010/05/01 10:54:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Mozilla\Extensions [2010/04/15 20:45:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Mozilla\Extensions\home2@tomtom.com O1 HOSTS File: ([2010/05/01 11:42:19 | 000,393,118 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.0scan.com O1 - Hosts: 127.0.0.1 0scan.com O1 - Hosts: 127.0.0.1 1000gratisproben.com O1 - Hosts: 127.0.0.1 www.1000gratisproben.com O1 - Hosts: 127.0.0.1 1001namen.com O1 - Hosts: 127.0.0.1 www.1001namen.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 127.0.0.1 www.1-2005-search.com O1 - Hosts: 127.0.0.1 1-2005-search.com O1 - Hosts: 13576 more lines... O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited) O3 - HKU\S-1-5-21-1547161642-562591055-725345543-1005\..\Toolbar\WebBrowser: (no name) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No CLSID value found. O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.) O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.) O4 - HKLM..\Run: [LogitechCameraService(E)] C:\WINDOWS\System32\ElkCtrl.exe (Logitech Inc.) O4 - HKLM..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe (Logitech Inc.) O4 - HKLM..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE (Logitech Inc.) O4 - HKLM..\Run: [MaxMenuMgr] C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe (Seagate LLC) O4 - HKLM..\Run: [ORAHSSSessionManager] C:\Program Files\Orange\Connexion Internet Orange\SessionManager\SessionManager.exe (France Telecom SA) O4 - HKLM..\Run: [soundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKU\S-1-5-21-1547161642-562591055-725345543-1005..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Agent Serveur Média.lnk = C:\Program Files\Serveur Media\twonkymediaserverconfig.exe (PacketVideo) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\APC UPS Status.lnk = C:\Program Files\APC\APC PowerChute Personal Edition\Display.exe (American Power Conversion Corporation) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe (Logitech) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech, Inc.) O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\PHOTOfunSTUDIO -viewer-.lnk = C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe (Matsushita Electric Industrial Co., Ltd.) O4 - Startup: C:\Documents and Settings\QUESNEL Bruno\Menu Démarrer\Programmes\Démarrage\mgjwin32.exe () O4 - Startup: C:\Documents and Settings\QUESNEL Bruno\Menu Démarrer\Programmes\Démarrage\Spamihilator.lnk = C:\Program Files\Spamihilator\spamihilator.exe (Michel Krämer) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1547161642-562591055-725345543-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: &Envoyer à OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm () O9 - Extra 'Tools' menuitem : Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\NPJPI150.dll (Sun Microsystems, Inc.) O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH) O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH) O15 - HKU\S-1-5-21-1547161642-562591055-725345543-1005\..Trusted Domains: microsoft.com ([update] http in Sites de confiance) O15 - HKU\S-1-5-21-1547161642-562591055-725345543-1005\..Trusted Domains: microsoft.com ([windowsupdate] http in Sites de confiance) O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} http://www.logitech.com/devicedetector/plu...Detection32.cab (Détection de dispositifs) O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/C/B.../OGAControl.cab (Office Genuine Advantage Validation Tool) O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5...heckControl.cab (Windows Genuine Advantage Validation Tool) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/...b?1271271993062 (WUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab (Java Plug-in 1.5.0) O16 - DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab (Java Plug-in 1.5.0) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\bw+0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw+0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw-0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw00 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw00s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw-0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw10 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw10s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw20 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw20s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw30 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw30s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw40 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw40s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw50 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw50s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw60 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw60s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw70 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw70s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw80 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw80s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw90 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bw90s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwa0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwa0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwb0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwb0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwc0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwc0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwd0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwd0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwe0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwe0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwf0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwf0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwg0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwg0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwh0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwh0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwi0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwi0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwj0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwj0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwk0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwk0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwl0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwl0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwm0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwm0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwn0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwn0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwo0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwo0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwp0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwp0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwq0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwq0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwr0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwr0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bws0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bws0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwt0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwt0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwu0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwu0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwv0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwv0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bww0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bww0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwx0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwx0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwy0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwy0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwz0 {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\bwz0s {8e4e33be-636e-44fc-a78c-a3a83b6ae8ab} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\offline-8876480 {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. ) O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll - c:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTWLgn.dll (Logitech, Inc.) O24 - Desktop Components:0 (Ma page d'accueil) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/04/14 19:31:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009/11/15 21:48:01 | 000,000,067 | ---- | M] () - M:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009/11/06 13:17:25 | 000,000,067 | ---- | M] () - N:\Autorun.inf -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2010/05/01 16:47:01 | 000,570,880 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\QUESNEL Bruno\Bureau\OTL.exe [2010/05/01 11:07:10 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy [2010/05/01 11:07:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy [2010/05/01 10:49:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\Mozilla [2010/05/01 10:02:27 | 000,000,000 | ---D | C] -- C:\Program Files\iTunesExport.UI-1.4 [2010/05/01 09:47:29 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2010/05/01 09:47:26 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes [2010/05/01 09:43:19 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour [2010/04/30 19:50:34 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro [2010/04/30 19:47:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage [2010/04/30 18:39:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Serveur Média [2010/04/30 18:39:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\twonkymedia-server-uploaded-data [2010/04/30 18:39:08 | 000,000,000 | ---D | C] -- C:\Program Files\Serveur Media [2010/04/30 17:56:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\f-secure [2010/04/30 17:30:02 | 000,065,536 | ---- | C] (France Telecom SA) -- C:\WINDOWS\System32\Autodial2000.dll [2010/04/30 17:29:54 | 000,094,208 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\w32n50.dll [2010/04/30 17:29:54 | 000,034,688 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\pcampr5.sys [2010/04/30 17:29:54 | 000,032,128 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\WINDOWS\System32\pcandis5.sys [2010/04/30 17:29:18 | 000,000,000 | ---D | C] -- C:\Program Files\Orange [2010/04/30 17:28:13 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\France Telecom [2010/04/29 23:22:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010/04/29 23:13:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\LogiShrd [2010/04/29 23:12:38 | 000,301,656 | ---- | C] (Broadcom Corporation.) -- C:\WINDOWS\System32\BtCoreIf.dll [2010/04/29 23:12:18 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Logishrd [2010/04/27 07:40:35 | 000,043,264 | ---- | C] (Prolific Technology Inc.) -- C:\WINDOWS\System32\drivers\ser2pl.sys [2010/04/27 07:40:21 | 000,000,000 | ---D | C] -- C:\Program Files\AlerteGPS [2010/04/23 22:12:44 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent [2010/04/23 22:11:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\uTorrent [2010/04/21 23:47:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\HP [2010/04/21 23:13:31 | 000,662,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCOMCT2.OCX [2010/04/21 23:13:31 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMAPI32.OCX [2010/04/21 23:13:29 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCMCFR.DLL [2010/04/21 23:13:29 | 000,119,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VB6FR.DLL [2010/04/21 23:13:29 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCC2FR.DLL [2010/04/21 23:13:29 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSMPIDE.DLL [2010/04/21 23:13:28 | 000,000,000 | ---D | C] -- C:\Program Files\PDFCreator [2010/04/20 23:10:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Adobe [2010/04/20 22:54:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NOS [2010/04/20 09:19:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple [2010/04/19 12:21:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia [2010/04/19 12:21:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe [2010/04/19 12:14:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2010/04/19 12:14:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Sun [2010/04/18 03:04:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2010/04/18 03:04:08 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2010/04/18 03:04:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2010/04/18 03:04:03 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2010/04/18 03:03:40 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll [2010/04/18 03:03:40 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll [2010/04/18 03:03:40 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe [2010/04/18 03:03:40 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll [2010/04/18 03:03:40 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll [2010/04/18 03:03:40 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll [2010/04/17 01:10:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\dvdcss [2010/04/17 01:10:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\vlc [2010/04/17 01:09:28 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2010/04/17 00:50:34 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft CAPICOM 2.1.0.2 [2010/04/17 00:41:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\DivX [2010/04/17 00:40:04 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\Mes vidéos [2010/04/15 23:00:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Nero [2010/04/15 22:47:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe [2010/04/15 22:35:34 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2010/04/15 22:35:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2010/04/15 22:35:17 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Nero [2010/04/15 22:34:59 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2010/04/15 22:11:51 | 000,000,000 | ---D | C] -- C:\Program Files\jv16 PowerTools 2009 [2010/04/15 21:53:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Megaupload [2010/04/15 21:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\Megaupload [2010/04/15 20:55:58 | 000,030,536 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\TURegOpt.exe [2010/04/15 20:55:56 | 000,030,024 | ---- | C] (TuneUp Software) -- C:\WINDOWS\System32\uxtuneup.dll [2010/04/15 20:55:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\TuneUp Software [2010/04/15 20:55:33 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2010 [2010/04/15 20:55:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2010/04/15 20:55:12 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} [2010/04/15 20:45:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\TomTom [2010/04/15 20:45:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\TomTom [2010/04/15 20:45:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\TomTom [2010/04/15 20:45:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Mozilla [2010/04/15 20:44:11 | 000,000,000 | ---D | C] -- C:\Program Files\TomTom International B.V [2010/04/15 20:43:45 | 000,000,000 | ---D | C] -- C:\Program Files\TomTom HOME 2 [2010/04/15 20:27:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Tracing [2010/04/15 20:26:55 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft [2010/04/15 20:26:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\microsoft [2010/04/15 20:26:40 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive [2010/04/15 20:26:19 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live [2010/04/15 20:24:08 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Windows Live [2010/04/15 20:07:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Apple Computer [2010/04/15 20:07:03 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\GEARAspi.dll [2010/04/15 20:06:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010/04/15 20:05:59 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime [2010/04/15 20:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer [2010/04/15 20:05:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\Apple [2010/04/15 20:05:49 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update [2010/04/15 20:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Apple [2010/04/15 20:04:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple [2010/04/15 20:04:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\Apple Computer [2010/04/15 20:03:51 | 000,000,000 | ---D | C] -- C:\Program Files\Western Digital Corporation [2010/04/15 00:45:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Panasonic [2010/04/15 00:39:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spamihilator [2010/04/15 00:39:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Spamihilator [2010/04/15 00:38:49 | 000,000,000 | ---D | C] -- C:\Program Files\Spamihilator [2010/04/15 00:25:44 | 000,000,000 | ---D | C] -- C:\Program Files\Quittance Express 2 [2010/04/15 00:21:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\Mes fichiers reçus [2010/04/15 00:20:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\Mes numérisations [2010/04/15 00:20:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\Mes Quittances [2010/04/15 00:20:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\Personnel [2010/04/15 00:01:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Avira [2010/04/14 23:51:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2010/04/14 23:50:34 | 000,097,608 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avfwot.sys [2010/04/14 23:50:34 | 000,096,104 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010/04/14 23:50:34 | 000,069,632 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avfwim.sys [2010/04/14 23:50:34 | 000,056,816 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010/04/14 23:50:34 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2010/04/14 23:50:34 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2010/04/14 23:50:33 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2010/04/14 23:50:32 | 000,000,000 | ---D | C] -- C:\Program Files\Avira [2010/04/14 23:50:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira [2010/04/14 23:40:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\Mes téléchargements [2010/04/14 23:14:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\AdobeUM [2010/04/14 23:12:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe Systems [2010/04/14 23:12:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\Adobe [2010/04/14 23:12:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Adobe [2010/04/14 23:11:57 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Adobe Systems Shared [2010/04/14 23:11:05 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Adobe [2010/04/14 23:10:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2010/04/14 23:10:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Adobe PDF [2010/04/14 23:10:06 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010/04/14 23:04:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Windows Search [2010/04/14 23:03:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\Identities [2010/04/14 23:03:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Windows Desktop Search [2010/04/14 23:02:20 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search [2010/04/14 23:02:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy [2010/04/14 23:01:57 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\offfilt.dll [2010/04/14 23:01:57 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nlhtml.dll [2010/04/14 23:01:57 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mimefilt.dll [2010/04/14 22:51:17 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll [2010/04/14 22:51:17 | 000,018,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui [2010/04/14 22:46:39 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\DESIGNER [2010/04/14 22:46:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2010/04/14 22:42:22 | 000,000,000 | ---D | C] -- C:\Program Files\Seagate [2010/04/14 22:42:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Seagate [2010/04/14 22:39:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\Downloaded Installations [2010/04/14 22:39:16 | 000,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache [2010/04/14 22:39:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Macromedia [2010/04/14 22:36:30 | 004,142,592 | ---- | C] (Borland Software Corporation) -- C:\WINDOWS\System32\qtintf.dll [2010/04/14 22:36:29 | 000,000,000 | ---D | C] -- C:\Program Files\APC [2010/04/14 22:14:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Microsoft [2010/04/14 22:12:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2010/04/14 22:12:25 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services [2010/04/14 22:12:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\Microsoft Help [2010/04/14 22:12:17 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2010/04/14 22:12:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help [2010/04/14 22:12:00 | 000,000,000 | RH-D | C] -- C:\MSOCache [2010/04/14 22:02:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010/04/14 21:49:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2010/04/14 21:49:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr [2010/04/14 21:49:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2010/04/14 21:47:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2010/04/14 21:46:54 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$ [2010/04/14 21:46:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome [2010/04/14 21:45:11 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys [2010/04/14 21:45:11 | 000,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys [2010/04/14 21:45:11 | 000,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys [2010/04/14 21:45:11 | 000,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys [2010/04/14 21:45:11 | 000,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys [2010/04/14 21:45:11 | 000,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys [2010/04/14 21:45:10 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [2010/04/14 21:45:10 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys [2010/04/14 21:45:10 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys [2010/04/14 21:45:10 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys [2010/04/14 21:45:10 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys [2010/04/14 21:45:10 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys [2010/04/14 21:45:10 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys [2010/04/14 21:45:10 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys [2010/04/14 21:45:09 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2010/04/14 21:45:09 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2010/04/14 21:45:09 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2010/04/14 21:44:55 | 000,327,168 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2010/04/14 21:44:55 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2010/04/14 21:44:55 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2010/04/14 21:44:55 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2010/04/14 21:44:55 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2010/04/14 21:44:55 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2010/04/14 21:44:55 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2010/04/14 21:44:55 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2010/04/14 21:44:55 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2010/04/14 21:44:55 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2010/04/14 21:44:55 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2010/04/14 21:44:55 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2010/04/14 21:44:55 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2010/04/14 21:44:55 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2010/04/14 21:44:55 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2010/04/14 21:44:55 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2010/04/14 21:44:55 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2010/04/14 21:44:55 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2010/04/14 21:44:55 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2010/04/14 21:44:55 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2010/04/14 21:44:55 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2010/04/14 21:38:49 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\QUESNEL Bruno\IECompatCache [2010/04/14 21:38:28 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\QUESNEL Bruno\PrivacIE [2010/04/14 21:37:53 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\QUESNEL Bruno\IETldCache [2010/04/14 21:36:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2010/04/14 21:36:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010/04/14 21:35:57 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2010/04/14 21:35:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr-FR [2010/04/14 21:29:16 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2010/04/14 21:28:40 | 001,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2010/04/14 21:28:40 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2010/04/14 21:28:39 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2010/04/14 21:27:36 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidbatt.sys [2010/04/14 21:27:36 | 000,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\battc.sys [2010/04/14 21:26:55 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbaudio.sys [2010/04/14 21:26:54 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2010/04/14 21:26:54 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2010/04/14 21:26:54 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2010/04/14 21:26:54 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2010/04/14 21:26:31 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys [2010/04/14 21:26:04 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll [2010/04/14 21:25:28 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010/04/14 21:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\ODBC [2010/04/14 21:25:27 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll [2010/04/14 21:25:27 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll [2010/04/14 21:25:27 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll [2010/04/14 21:25:26 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe [2010/04/14 21:25:26 | 000,000,000 | R--D | C] -- C:\Program Files [2010/04/14 21:25:26 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\SpeechEngines [2010/04/14 21:25:26 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Microsoft Shared [2010/04/14 21:25:26 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs [2010/04/14 21:25:24 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll [2010/04/14 21:25:24 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll [2010/04/14 21:25:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll [2010/04/14 21:25:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll [2010/04/14 21:25:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll [2010/04/14 21:25:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll [2010/04/14 21:25:22 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll [2010/04/14 21:25:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll [2010/04/14 21:25:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll [2010/04/14 21:25:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll [2010/04/14 21:25:20 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll [2010/04/14 21:25:20 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll [2010/04/14 21:25:20 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll [2010/04/14 21:25:20 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll [2010/04/14 21:25:20 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll [2010/04/14 21:25:20 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll [2010/04/14 21:25:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll [2010/04/14 21:25:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll [2010/04/14 21:25:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll [2010/04/14 21:25:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll [2010/04/14 21:25:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll [2010/04/14 21:25:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll [2010/04/14 21:25:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll [2010/04/14 21:25:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll [2010/04/14 21:25:19 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll [2010/04/14 21:25:19 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll [2010/04/14 21:25:19 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll [2010/04/14 21:25:19 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll [2010/04/14 21:25:19 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll [2010/04/14 21:25:19 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll [2010/04/14 21:25:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll [2010/04/14 21:25:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll [2010/04/14 21:25:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll [2010/04/14 21:25:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll [2010/04/14 21:25:17 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll [2010/04/14 21:25:17 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll [2010/04/14 21:25:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll [2010/04/14 21:25:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll [2010/04/14 21:25:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll [2010/04/14 21:25:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll [2010/04/14 21:25:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll [2010/04/14 21:25:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll [2010/04/14 21:25:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll [2010/04/14 21:25:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll [2010/04/14 21:25:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL [2010/04/14 21:25:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll [2010/04/14 21:25:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll [2010/04/14 21:25:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll [2010/04/14 21:25:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll [2010/04/14 21:25:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll [2010/04/14 21:25:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll [2010/04/14 21:25:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll [2010/04/14 21:25:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll [2010/04/14 21:25:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll [2010/04/14 21:25:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll [2010/04/14 21:25:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll [2010/04/14 21:25:17 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll [2010/04/14 21:25:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll [2010/04/14 21:25:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll [2010/04/14 21:25:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll [2010/04/14 21:25:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2010/04/14 21:25:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2010/04/14 21:25:14 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll [2010/04/14 21:25:14 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2010/04/14 21:25:14 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2010/04/14 21:25:14 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll [2010/04/14 21:25:14 | 000,086,044 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll [2010/04/14 21:25:14 | 000,086,044 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll [2010/04/14 21:25:14 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2010/04/14 21:25:14 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2010/04/14 21:25:14 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL [2010/04/14 21:25:14 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2010/04/14 21:25:14 | 000,009,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL [2010/04/14 21:25:14 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2010/04/14 21:25:14 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2010/04/14 21:25:14 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2010/04/14 21:25:14 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2010/04/14 21:25:13 | 000,127,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL [2010/04/14 21:25:13 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL [2010/04/14 21:25:13 | 000,073,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV [2010/04/14 21:25:13 | 000,033,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL [2010/04/14 21:25:13 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV [2010/04/14 21:25:13 | 000,025,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV [2010/04/14 21:25:13 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL [2010/04/14 21:25:13 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL [2010/04/14 21:25:13 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL [2010/04/14 21:25:13 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2010/04/14 21:25:13 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2010/04/14 21:25:13 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK [2010/04/14 21:25:12 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv [2010/04/14 21:25:12 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL [2010/04/14 21:25:12 | 000,070,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2010/04/14 21:25:12 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE [2010/04/14 21:25:12 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe [2010/04/14 21:25:12 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll [2010/04/14 21:25:11 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll [2010/04/14 21:25:11 | 000,070,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL [2010/04/14 21:25:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Démarrer [2010/04/14 21:25:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents [2010/04/14 21:25:08 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Modèles [2010/04/14 21:25:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favoris [2010/04/14 21:25:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Bureau [2010/04/14 21:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010/04/14 21:24:54 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft [2010/04/14 21:24:54 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data [2010/04/14 21:24:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010/04/14 21:24:36 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010/04/14 21:16:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2010/04/14 21:15:46 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010/04/14 21:15:46 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010/04/14 21:15:46 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010/04/14 21:15:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\OEM [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1036 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010/04/14 21:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010/04/14 21:13:54 | 000,455,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2010/04/14 21:13:39 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2010/04/14 21:13:34 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys [2010/04/14 21:13:01 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2010/04/14 21:13:01 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2010/04/14 21:12:54 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2010/04/14 21:10:55 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2010/04/14 21:10:49 | 002,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2010/04/14 21:10:49 | 000,736,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2010/04/14 21:10:48 | 002,148,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2010/04/14 21:10:48 | 002,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2010/04/14 21:10:27 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll [2010/04/14 21:10:18 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2010/04/14 21:10:07 | 000,272,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2010/04/14 21:10:06 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2010/04/14 21:08:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2010/04/14 21:07:05 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll [2010/04/14 21:07:05 | 000,024,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui [2010/04/14 21:07:05 | 000,019,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng.dll.mui [2010/04/14 21:07:05 | 000,016,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaucpl.cpl.mui [2010/04/14 21:07:05 | 000,016,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui [2010/04/14 21:07:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010/04/14 21:05:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Logitech [2010/04/14 21:03:48 | 000,079,248 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LMouKE.Sys [2010/04/14 21:03:48 | 000,076,304 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\KHALMNPR.Exe [2010/04/14 21:03:48 | 000,063,248 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\L8042mou.Sys [2010/04/14 21:03:48 | 000,020,240 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\L8042Kbd.sys [2010/04/14 21:03:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010/04/14 21:03:28 | 000,170,512 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\kemutb.dll [2010/04/14 21:03:28 | 000,145,936 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\KemUtil.dll [2010/04/14 21:03:28 | 000,117,264 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\KemWnd.dll [2010/04/14 21:03:28 | 000,084,496 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\KemXML.dll [2010/04/14 21:03:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Logitech [2010/04/14 20:53:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\Mes vidéos [2010/04/14 20:53:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\CyberLink [2010/04/14 20:52:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Powercinema [2010/04/14 20:52:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\PowerCinema [2010/04/14 20:52:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CyberLink [2010/04/14 20:50:18 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink [2010/04/14 20:47:31 | 000,000,000 | ---D | C] -- C:\Program Files\Canon [2010/04/14 20:44:25 | 000,000,000 | ---D | C] -- C:\CNYSELPHYCP [2010/04/14 20:43:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\IsolatedStorage [2010/04/14 20:43:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\HP [2010/04/14 20:43:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\ApplicationHistory [2010/04/14 20:39:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP [2010/04/14 20:38:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sonic [2010/04/14 20:38:25 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Sonic Shared [2010/04/14 20:37:49 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\HP [2010/04/14 20:36:12 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard [2010/04/14 20:35:25 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Hewlett-Packard [2010/04/14 20:35:02 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\QUESNEL Bruno\UserData [2010/04/14 20:34:35 | 000,037,376 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpz3l43a.dll [2010/04/14 20:32:51 | 000,278,584 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZidr12.dll [2010/04/14 20:32:51 | 000,204,800 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZipr12.dll [2010/04/14 20:32:51 | 000,094,208 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZipt12.dll [2010/04/14 20:32:51 | 000,073,728 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZipm12.exe [2010/04/14 20:32:51 | 000,065,536 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZinw12.exe [2010/04/14 20:32:51 | 000,057,344 | ---- | C] (HP) -- C:\WINDOWS\System32\HPZisn12.dll [2010/04/14 20:32:50 | 000,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUninst.exe [2010/04/14 20:31:53 | 000,000,000 | -H-D | C] -- C:\Config.Msi [2010/04/14 20:31:47 | 000,000,000 | ---D | C] -- C:\Program Files\HP [2010/04/14 20:29:26 | 000,007,136 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\lv302af.sys [2010/04/14 20:29:19 | 000,380,928 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVUI2RC.dll [2010/04/14 20:29:19 | 000,217,088 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\LVUI2.dll [2010/04/14 20:29:19 | 000,204,800 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\lvcodec2.dll [2010/04/14 20:29:19 | 000,110,592 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\lvcoinst.dll [2010/04/14 20:29:19 | 000,039,424 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\LVUSBSta.sys [2010/04/14 20:29:18 | 000,916,096 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\drivers\LV302AV.SYS [2010/04/14 20:27:01 | 000,245,824 | R--- | C] (Logitech) -- C:\WINDOWS\System32\InstExec.exe [2010/04/14 20:27:01 | 000,245,824 | R--- | C] (Logitech) -- C:\WINDOWS\Instexec.exe [2010/04/14 20:26:41 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Logitech [2010/04/14 20:26:24 | 001,047,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71u.dll [2010/04/14 20:26:24 | 000,499,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp71.dll [2010/04/14 20:26:24 | 000,466,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\capicom.dll [2010/04/14 20:26:24 | 000,350,720 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\camcpl.cpl [2010/04/14 20:26:24 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr71.dll [2010/04/14 20:26:24 | 000,323,584 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\CamCplRes.dll [2010/04/14 20:26:24 | 000,262,144 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\ElkCtrl.exe [2010/04/14 20:26:24 | 000,086,016 | R--- | C] (Logitech Inc.) -- C:\WINDOWS\System32\vatee.ax [2010/04/14 20:26:24 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml4r.dll [2010/04/14 20:26:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71DEU.DLL [2010/04/14 20:26:24 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71ITA.DLL [2010/04/14 20:26:24 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71ESP.DLL [2010/04/14 20:26:24 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71ENU.DLL [2010/04/14 20:26:24 | 000,057,344 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\ElkCtlPS.dll [2010/04/14 20:26:24 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71KOR.DLL [2010/04/14 20:26:24 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71JPN.DLL [2010/04/14 20:26:24 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71CHT.DLL [2010/04/14 20:26:24 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml4a.dll [2010/04/14 20:26:24 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71CHS.DLL [2010/04/14 20:26:23 | 001,645,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\gdiplus.dll [2010/04/14 20:26:23 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71.dll [2010/04/14 20:26:23 | 000,152,576 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\VxLib.dll [2010/04/14 20:26:23 | 000,135,680 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\VLib.dll [2010/04/14 20:26:23 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atl71.dll [2010/04/14 20:26:22 | 000,040,960 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\VxLibRes.dll [2010/04/14 20:26:08 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech [2010/04/14 20:23:15 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2010/04/14 20:23:15 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2010/04/14 20:23:15 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2010/04/14 20:23:15 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2010/04/14 20:23:15 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2010/04/14 20:22:59 | 000,045,056 | ---- | C] (Matsushita Electric Industrial Co., Ltd.) -- C:\WINDOWS\System32\PhDi2.sys [2010/04/14 20:22:58 | 000,000,000 | ---D | C] -- C:\Program Files\Panasonic [2010/04/14 20:22:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\InstallShield [2010/04/14 20:20:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\ATI [2010/04/14 20:20:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\ATI [2010/04/14 20:20:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ATI [2010/04/14 20:16:47 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\ATI Technologies [2010/04/14 20:16:13 | 000,093,696 | R--- | C] (ATI Research Inc.) -- C:\WINDOWS\System32\drivers\AtiHdmi.sys [2010/04/14 20:15:36 | 000,307,200 | R--- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\atiiiexx.dll [2010/04/14 20:15:35 | 000,421,888 | R--- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\ATIDEMGX.dll [2010/04/14 20:15:11 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010/04/14 20:15:11 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies [2010/04/14 20:14:19 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\InstallShield [2010/04/14 20:11:11 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mpe.sys [2010/04/14 20:11:09 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax [2010/04/14 20:09:28 | 000,799,744 | R--- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\drivers\3xHybrid.sys [2010/04/14 20:09:24 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax [2010/04/14 20:09:24 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax [2010/04/14 20:09:24 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll [2010/04/14 20:09:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2010/04/14 20:09:24 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bdasup.sys [2010/04/14 20:09:23 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax [2010/04/14 20:09:23 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bdaplgin.ax [2010/04/14 20:09:10 | 000,215,040 | R--- | C] (SiS Corporation) -- C:\WINDOWS\System32\drivers\sis163u.sys [2010/04/14 20:09:05 | 000,201,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1ins.dll [2010/04/14 20:09:05 | 000,201,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1.dll [2010/04/14 20:09:05 | 000,033,664 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\NVENETFD.sys [2010/04/14 20:09:04 | 000,209,920 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvsnpu.sys [2010/04/14 20:09:04 | 000,180,224 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe [2010/04/14 20:09:04 | 000,100,992 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvtcp.sys [2010/04/14 20:09:04 | 000,032,768 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvconrm.dll [2010/04/14 20:09:04 | 000,009,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1ins.dll [2010/04/14 20:09:04 | 000,009,728 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1.dll [2010/04/14 20:09:03 | 000,283,136 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnrm.sys [2010/04/14 20:09:03 | 000,012,928 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvnetbus.sys [2010/04/14 20:08:54 | 010,459,648 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.EXE [2010/04/14 20:08:51 | 018,776,064 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2010/04/14 20:08:51 | 000,090,112 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2010/04/14 20:08:50 | 003,786,944 | R--- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2010/04/14 20:08:42 | 000,036,352 | R--- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdK8.sys [2010/04/14 20:08:34 | 000,289,792 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\idecoins.dll [2010/04/14 20:08:34 | 000,093,568 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvata.sys [2010/04/14 20:08:34 | 000,033,280 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVCOI.DLL [2010/04/14 20:08:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010/04/14 20:07:46 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010/04/14 19:59:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010/04/14 19:47:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010/04/14 19:44:06 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ [2010/04/14 19:41:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Identities [2010/04/14 19:41:47 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010/04/14 19:41:46 | 000,000,000 | R--D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\Mes images [2010/04/14 19:41:46 | 000,000,000 | R--D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\Ma musique [2010/04/14 19:41:44 | 000,000,000 | --SD | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Microsoft [2010/04/14 19:41:44 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\QUESNEL Bruno\SendTo [2010/04/14 19:41:44 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\QUESNEL Bruno\Recent [2010/04/14 19:41:44 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\QUESNEL Bruno\Application Data [2010/04/14 19:41:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\QUESNEL Bruno\Mes documents [2010/04/14 19:41:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\QUESNEL Bruno\Menu Démarrer [2010/04/14 19:41:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\QUESNEL Bruno\Cookies [2010/04/14 19:41:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\QUESNEL Bruno\Voisinage réseau [2010/04/14 19:41:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\QUESNEL Bruno\Voisinage d'impression [2010/04/14 19:41:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\QUESNEL Bruno\Modèles [2010/04/14 19:41:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings [2010/04/14 19:41:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\Microsoft [2010/04/14 19:41:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Favoris [2010/04/14 19:41:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Bureau [2010/04/14 19:41:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150000} [2010/04/14 19:40:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010/04/14 19:40:56 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010/04/14 19:40:56 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft [2010/04/14 19:40:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft [2010/04/14 19:40:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft [2010/04/14 19:40:41 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft [2010/04/14 19:35:01 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2010/04/14 19:35:01 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2010/04/14 19:35:01 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2010/04/14 19:35:01 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2010/04/14 19:35:01 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2010/04/14 19:35:01 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2010/04/14 19:35:00 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2010/04/14 19:35:00 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2010/04/14 19:35:00 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2010/04/14 19:34:59 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2010/04/14 19:34:59 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2010/04/14 19:34:58 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2010/04/14 19:34:58 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2010/04/14 19:34:58 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2010/04/14 19:34:58 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2010/04/14 19:34:57 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2010/04/14 19:34:57 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2010/04/14 19:34:57 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2010/04/14 19:34:57 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2010/04/14 19:34:57 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2010/04/14 19:34:57 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2010/04/14 19:34:57 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2010/04/14 19:34:56 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2010/04/14 19:34:55 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2010/04/14 19:34:54 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2010/04/14 19:34:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2010/04/14 19:34:53 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2010/04/14 19:34:53 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2010/04/14 19:34:53 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2010/04/14 19:34:53 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2010/04/14 19:34:53 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2010/04/14 19:34:53 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2010/04/14 19:34:53 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2010/04/14 19:34:53 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2010/04/14 19:34:53 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2010/04/14 19:34:52 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2010/04/14 19:34:52 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2010/04/14 19:34:52 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2010/04/14 19:34:52 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2010/04/14 19:34:52 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2010/04/14 19:34:52 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2010/04/14 19:34:52 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2010/04/14 19:34:52 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2010/04/14 19:34:52 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2010/04/14 19:34:50 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010/04/14 19:34:50 | 000,081,408 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010/04/14 19:34:50 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2010/04/14 19:34:50 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2010/04/14 19:34:49 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2010/04/14 19:34:49 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2010/04/14 19:34:48 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2010/04/14 19:34:48 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2010/04/14 19:34:47 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2010/04/14 19:34:47 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2010/04/14 19:34:47 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2010/04/14 19:34:46 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2010/04/14 19:34:46 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2010/04/14 19:34:46 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2010/04/14 19:34:46 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2010/04/14 19:34:46 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2010/04/14 19:34:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2010/04/14 19:34:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2010/04/14 19:34:45 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2010/04/14 19:34:45 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2010/04/14 19:34:45 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2010/04/14 19:34:45 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2010/04/14 19:34:44 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2010/04/14 19:34:43 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2010/04/14 19:34:41 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2010/04/14 19:34:41 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2010/04/14 19:34:38 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2010/04/14 19:34:38 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2010/04/14 19:34:38 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2010/04/14 19:34:37 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2010/04/14 19:34:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2010/04/14 19:34:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2010/04/14 19:34:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2010/04/14 19:34:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2010/04/14 19:34:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2010/04/14 19:34:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2010/04/14 19:34:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2010/04/14 19:34:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2010/04/14 19:34:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2010/04/14 19:34:35 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2010/04/14 19:34:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2010/04/14 19:34:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2010/04/14 19:34:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2010/04/14 19:34:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2010/04/14 19:34:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2010/04/14 19:34:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2010/04/14 19:34:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2010/04/14 19:34:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2010/04/14 19:34:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2010/04/14 19:34:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2010/04/14 19:34:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2010/04/14 19:34:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2010/04/14 19:34:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2010/04/14 19:34:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2010/04/14 19:34:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2010/04/14 19:34:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2010/04/14 19:34:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2010/04/14 19:34:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2010/04/14 19:34:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2010/04/14 19:34:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2010/04/14 19:34:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2010/04/14 19:34:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2010/04/14 19:34:32 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2010/04/14 19:34:32 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2010/04/14 19:34:32 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2010/04/14 19:34:32 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2010/04/14 19:34:32 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2010/04/14 19:34:32 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2010/04/14 19:34:31 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2010/04/14 19:34:31 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2010/04/14 19:34:31 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2010/04/14 19:34:31 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2010/04/14 19:34:31 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2010/04/14 19:34:31 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2010/04/14 19:34:31 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2010/04/14 19:34:31 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2010/04/14 19:34:31 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2010/04/14 19:34:30 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2010/04/14 19:34:30 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2010/04/14 19:34:30 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2010/04/14 19:34:30 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2010/04/14 19:34:30 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2010/04/14 19:34:30 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2010/04/14 19:34:30 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2010/04/14 19:34:30 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2010/04/14 19:34:28 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2010/04/14 19:34:24 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2010/04/14 19:34:23 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2010/04/14 19:34:22 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2010/04/14 19:34:22 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2010/04/14 19:34:21 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2010/04/14 19:34:21 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2010/04/14 19:34:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2010/04/14 19:34:20 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2010/04/14 19:34:20 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2010/04/14 19:34:19 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll [2010/04/14 19:34:19 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2010/04/14 19:34:19 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2010/04/14 19:34:19 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2010/04/14 19:34:19 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2010/04/14 19:34:17 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2010/04/14 19:34:16 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2010/04/14 19:34:16 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2010/04/14 19:34:15 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2010/04/14 19:34:15 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2010/04/14 19:34:15 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2010/04/14 19:34:14 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2010/04/14 19:34:14 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2010/04/14 19:34:14 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2010/04/14 19:34:14 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2010/04/14 19:34:14 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2010/04/14 19:34:14 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2010/04/14 19:34:14 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2010/04/14 19:34:14 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2010/04/14 19:34:13 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2010/04/14 19:34:13 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010/04/14 19:34:13 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2010/04/14 19:34:12 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2010/04/14 19:34:06 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2010/04/14 19:34:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2010/04/14 19:34:04 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll [2010/04/14 19:34:01 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll [2010/04/14 19:33:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010/04/14 19:33:57 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010/04/14 19:33:57 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010/04/14 19:33:39 | 000,127,075 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010/04/14 19:33:39 | 000,049,262 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\jpicpl32.cpl [2010/04/14 19:33:39 | 000,049,247 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010/04/14 19:33:39 | 000,049,245 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010/04/14 19:33:22 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2010/04/14 19:33:22 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Java [2010/04/14 19:32:45 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2010/04/14 19:32:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2010/04/14 19:32:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp [2010/04/14 19:32:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\fsc [2010/04/14 19:32:22 | 000,000,000 | ---D | C] -- C:\AddOn [2010/04/14 19:32:01 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2010/04/14 19:32:01 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010/04/14 19:31:57 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2010/04/14 19:31:46 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll [2010/04/14 19:31:20 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010/04/14 19:31:13 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010/04/14 19:31:13 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010/04/14 19:31:07 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010/04/14 19:31:06 | 000,000,000 | ---D | C] -- C:\Program Files\Services en ligne [2010/04/14 19:30:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010/04/14 19:30:37 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe [2010/04/14 19:30:37 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe [2010/04/14 19:30:37 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll [2010/04/14 19:30:37 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll [2010/04/14 19:30:37 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll [2010/04/14 19:30:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll [2010/04/14 19:30:29 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe [2010/04/14 19:30:29 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll [2010/04/14 19:30:29 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll [2010/04/14 19:30:28 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll [2010/04/14 19:30:28 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll [2010/04/14 19:30:28 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe [2010/04/14 19:30:28 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe [2010/04/14 19:30:28 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe [2010/04/14 19:30:27 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Services [2010/04/14 19:30:25 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll [2010/04/14 19:30:25 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll [2010/04/14 19:30:25 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010/04/14 19:30:24 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll [2010/04/14 19:30:24 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe [2010/04/14 19:30:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll [2010/04/14 19:30:24 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll [2010/04/14 19:30:24 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll [2010/04/14 19:30:24 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll [2010/04/14 19:30:24 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2010/04/14 19:30:24 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\MSSoap [2010/04/14 19:30:23 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx [2010/04/14 19:30:21 | 000,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\VGX.dll [2010/04/14 19:30:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010/04/14 19:30:20 | 000,827,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe [2010/04/14 19:30:20 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll [2010/04/14 19:30:20 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll [2010/04/14 19:30:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010/04/14 19:30:19 | 000,991,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe [2010/04/14 19:30:19 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll [2010/04/14 19:30:19 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll [2010/04/14 19:30:19 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll [2010/04/14 19:30:19 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe [2010/04/14 19:30:19 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll [2010/04/14 19:30:19 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll [2010/04/14 19:30:19 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2010/04/14 19:30:18 | 001,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll [2010/04/14 19:30:18 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2010/04/14 19:30:18 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll [2010/04/14 19:30:18 | 000,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl [2010/04/14 19:30:18 | 000,209,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll [2010/04/14 19:30:18 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll [2010/04/14 19:30:18 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe [2010/04/14 19:30:18 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2010/04/14 19:30:18 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll [2010/04/14 19:30:17 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2010/04/14 19:30:17 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll [2010/04/14 19:30:17 | 000,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe [2010/04/14 19:30:17 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll [2010/04/14 19:30:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll [2010/04/14 19:30:17 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll [2010/04/14 19:30:14 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2010/04/14 19:30:14 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010/04/14 19:30:11 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll [2010/04/14 19:30:11 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll [2010/04/14 19:30:11 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll [2010/04/14 19:30:11 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll [2010/04/14 19:30:08 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll [2010/04/14 19:30:08 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe [2010/04/14 19:30:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010/04/14 19:30:07 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll [2010/04/14 19:30:07 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll [2010/04/14 19:30:07 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll [2010/04/14 19:30:07 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll [2010/04/14 19:30:07 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll [2010/04/14 19:30:04 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll [2010/04/14 19:30:04 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll [2010/04/14 19:30:04 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010/04/14 19:30:03 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll [2010/04/14 19:30:02 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe [2010/04/14 19:30:02 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010/04/14 19:30:01 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll [2010/04/14 19:30:01 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll [2010/04/14 19:30:01 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll [2010/04/14 19:30:01 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll [2010/04/14 19:29:57 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2010/04/14 19:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\System [2010/04/14 19:29:56 | 000,638,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe [2010/04/14 19:29:56 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll [2010/04/14 19:29:56 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010/04/14 19:29:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\Mes images [2010/04/14 19:29:54 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010/04/14 19:29:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010/04/14 19:29:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\Ma musique [2010/04/14 19:29:38 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010/04/14 19:29:38 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services [2010/04/14 19:29:36 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll [2010/04/14 19:29:36 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe [2010/04/14 19:29:36 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010/04/14 19:29:35 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll [2010/04/14 19:29:35 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll [2010/04/14 19:29:35 | 000,781,397 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll [2010/04/14 19:29:35 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll [2010/04/14 19:29:35 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll [2010/04/14 19:29:35 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll [2010/04/14 19:29:35 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll [2010/04/14 19:29:35 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe [2010/04/14 19:29:35 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe [2010/04/14 19:29:35 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe [2010/04/14 19:29:35 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe [2010/04/14 19:29:35 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll [2010/04/14 19:29:34 | 001,042,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll [2010/04/14 19:29:34 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll [2010/04/14 19:29:34 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll [2010/04/14 19:29:34 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll [2010/04/14 19:29:34 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll [2010/04/14 19:29:34 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll [2010/04/14 19:29:34 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll [2010/04/14 19:29:33 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll [2010/04/14 19:29:33 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe [2010/04/14 19:29:33 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll [2010/04/14 19:29:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2010/04/14 19:29:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe [2010/04/14 19:29:33 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010/04/14 19:29:25 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2010/04/14 19:29:25 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe [2010/04/14 19:29:24 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll [2010/04/14 19:29:24 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2010/04/14 19:29:24 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll [2010/04/14 19:29:24 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2010/04/14 19:29:24 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2010/04/14 19:29:24 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2010/04/14 19:29:24 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe [2010/04/14 19:29:24 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll [2010/04/14 19:29:24 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2010/04/14 19:29:24 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll [2010/04/14 19:29:17 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2010/04/14 19:29:17 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll [2010/04/14 19:29:17 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2010/04/14 19:29:17 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe [2010/04/14 19:29:17 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe [2010/04/14 19:29:17 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2010/04/14 19:29:17 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe [2010/04/14 19:29:17 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2010/04/14 19:29:17 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2010/04/14 19:29:17 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe [2010/04/14 19:29:16 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2010/04/14 19:29:16 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe [2010/04/14 19:29:16 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2010/04/14 19:29:16 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe [2010/04/14 19:29:16 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2010/04/14 19:29:16 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe [2010/04/14 19:29:16 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2010/04/14 19:29:16 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe [2010/04/14 19:29:16 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2010/04/14 19:29:16 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe [2010/04/14 19:29:16 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2010/04/14 19:29:16 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe [2010/04/14 19:29:16 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2010/04/14 19:29:16 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe [2010/04/14 19:29:16 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2010/04/14 19:29:16 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe [2010/04/14 19:29:15 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2010/04/14 19:29:15 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe [2010/04/14 19:29:15 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2010/04/14 19:29:15 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe [2010/04/14 19:29:15 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2010/04/14 19:29:15 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe [2010/04/14 19:29:15 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2010/04/14 19:29:15 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe [2010/04/14 19:29:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2010/04/14 19:29:15 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe [2010/04/14 19:29:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2010/04/14 19:29:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe [2010/04/14 19:29:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll [2010/04/14 19:29:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2010/04/14 19:29:15 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2010/04/14 19:29:15 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll [2010/04/14 19:29:14 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2010/04/14 19:29:14 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2010/04/14 19:29:14 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2010/04/14 19:29:14 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb [2010/04/14 19:29:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2010/04/14 19:29:14 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2010/04/14 19:29:13 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2010/04/14 19:29:13 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2010/04/14 19:29:13 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2010/04/14 19:29:13 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll [2010/04/14 19:29:10 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll [2010/04/14 19:29:10 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll [2010/04/14 19:29:10 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll [2010/04/14 19:29:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll [2010/04/14 19:29:10 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb [2010/04/14 19:29:10 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll [2010/04/14 19:29:10 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll [2010/04/14 19:29:10 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll [2010/04/14 19:29:10 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb [2010/04/14 19:29:10 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll [2010/04/14 19:29:10 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe [2010/04/14 19:29:10 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe [2010/04/14 19:29:10 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll [2010/04/14 19:29:09 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll [2010/04/14 19:29:09 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll [2010/04/14 19:29:09 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll [2010/04/14 19:29:03 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe [2010/04/14 19:29:03 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl [2010/04/14 19:29:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSN [2010/04/14 19:29:02 | 000,354,304 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2010/04/14 19:29:02 | 000,347,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2010/04/14 19:29:02 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe [2010/04/14 19:29:02 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2010/04/14 19:29:02 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe [2010/04/14 19:29:02 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe [2010/04/14 19:29:02 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010/04/14 19:29:01 | 002,066,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll [2010/04/14 19:29:01 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe [2010/04/14 19:29:01 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe [2010/04/14 19:29:01 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll [2010/04/14 19:29:00 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll [2010/04/14 19:29:00 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll [2010/04/14 19:29:00 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe [2010/04/14 19:29:00 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe [2010/04/14 19:29:00 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe [2010/04/14 19:29:00 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe [2010/04/14 19:29:00 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe [2010/04/14 19:29:00 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll [2010/04/14 19:29:00 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe [2010/04/14 19:28:59 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2010/04/14 19:28:59 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2010/04/14 19:28:59 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2010/04/14 19:28:59 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll [2010/04/14 19:28:59 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll [2010/04/14 19:28:59 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll [2010/04/14 19:28:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010/04/14 19:28:58 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll [2010/04/14 19:28:58 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2010/04/14 19:28:58 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2010/04/14 19:28:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010/04/14 19:28:57 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll [2010/04/14 19:28:57 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll [2010/04/14 19:28:57 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll [2010/04/14 19:28:57 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll [2010/04/14 19:28:57 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll [2010/04/14 19:28:57 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll [2010/04/14 19:28:53 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll [2010/04/14 19:28:53 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll [2010/04/14 19:28:53 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll [2010/04/14 19:28:53 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll [2010/04/08 13:20:02 | 000,107,808 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\dns-sd.exe [2010/04/08 13:20:02 | 000,091,424 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\dnssd.dll [9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2010/05/01 16:47:10 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\QUESNEL Bruno\Bureau\OTL.exe [2010/05/01 15:23:58 | 006,553,600 | -H-- | M] () -- C:\Documents and Settings\QUESNEL Bruno\NTUSER.DAT [2010/05/01 15:12:04 | 000,000,448 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{BB427F4F-FF2D-4F7B-B290-BFDD178CB118}.job [2010/05/01 15:07:44 | 000,000,450 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7FD84A3B-0196-44EF-9337-59C09BBA807E}.job [2010/05/01 15:07:44 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010/05/01 15:07:33 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010/05/01 15:07:28 | 3220,754,432 | -HS- | M] () -- C:\hiberfil.sys [2010/05/01 12:28:33 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\QUESNEL Bruno\ntuser.ini [2010/05/01 12:08:23 | 000,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk [2010/05/01 11:42:19 | 000,393,118 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2010/05/01 11:41:29 | 000,393,118 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100501-114219.backup [2010/05/01 11:15:31 | 000,005,632 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/05/01 11:00:57 | 000,000,890 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Utilitaires.lnk [2010/05/01 10:49:58 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010/04/30 19:48:45 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010/04/30 19:19:39 | 000,000,032 | --S- | M] () -- C:\WINDOWS\System32\3962614842.dat [2010/04/30 18:39:29 | 000,001,906 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Serveur Média.lnk [2010/04/30 18:39:29 | 000,000,818 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Agent Serveur Média.lnk [2010/04/29 23:22:25 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010/04/29 23:22:25 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010/04/29 23:12:38 | 000,001,701 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk [2010/04/29 23:12:38 | 000,001,695 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Paramètres de la souris et du clavier Logitech.lnk [2010/04/29 09:53:36 | 000,000,221 | ---- | M] () -- C:\WINDOWS\NCLogConfig.ini [2010/04/27 09:28:53 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\disk.sys [2010/04/27 09:19:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2010/04/27 07:40:24 | 000,001,649 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\AlerteGPS G300.lnk [2010/04/26 22:38:19 | 000,001,767 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Windows Live Messenger .lnk [2010/04/26 11:16:41 | 000,000,050 | ---- | M] () -- C:\WINDOWS\MegaManager.INI [2010/04/25 20:10:10 | 000,001,743 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 9.lnk [2010/04/23 21:46:50 | 000,000,000 | ---- | M] () -- C:\WINDOWS\tlrbctv45emqvrsl3hnslnnj.ini [2010/04/20 23:13:48 | 000,075,872 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [2010/04/20 23:03:11 | 000,280,536 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010/04/18 22:46:45 | 001,117,590 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010/04/18 22:46:45 | 000,535,914 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat [2010/04/18 22:46:45 | 000,444,164 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010/04/18 22:46:45 | 000,094,490 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat [2010/04/18 22:46:45 | 000,072,040 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010/04/17 00:50:56 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010/04/17 00:38:52 | 000,000,347 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\FILMS.lnk [2010/04/15 22:35:51 | 000,002,381 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Nero StartSmart.lnk [2010/04/15 20:58:21 | 000,001,761 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\TuneUp Maintenance en 1 clic.lnk [2010/04/15 20:58:21 | 000,001,741 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\TuneUp Utilities.lnk [2010/04/15 20:12:39 | 000,000,325 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\IOMEGA 500 (O).lnk [2010/04/15 20:11:23 | 000,000,288 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Seagate1.5 To (N).lnk [2010/04/15 20:11:19 | 000,000,289 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Seagate 500 Go (M).lnk [2010/04/15 20:11:14 | 000,000,145 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Lecteur CD.lnk [2010/04/15 20:11:09 | 000,000,292 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Disque de données (D).lnk [2010/04/15 20:11:05 | 000,000,307 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Disque Système ©.lnk [2010/04/15 00:45:01 | 000,000,370 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Mes images.lnk [2010/04/15 00:39:23 | 000,000,756 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Menu Démarrer\Programmes\Démarrage\Spamihilator.lnk [2010/04/15 00:25:47 | 000,000,744 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Quittance Express 2.lnk [2010/04/14 23:51:52 | 005,365,200 | -H-- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\IconCache.db [2010/04/14 23:50:40 | 000,001,721 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Avira AntiVir Control Center.lnk [2010/04/14 23:44:25 | 000,096,104 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys [2010/04/14 23:44:25 | 000,028,520 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys [2010/04/14 23:44:24 | 000,097,608 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avfwot.sys [2010/04/14 23:44:24 | 000,069,632 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avfwim.sys [2010/04/14 23:44:24 | 000,056,816 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys [2010/04/14 23:44:24 | 000,045,416 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys [2010/04/14 23:44:24 | 000,022,360 | ---- | M] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys [2010/04/14 22:42:26 | 000,001,877 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Seagate Manager.lnk [2010/04/14 22:36:29 | 000,000,629 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\APC UPS Status.lnk [2010/04/14 22:12:36 | 000,000,607 | ---- | M] () -- C:\WINDOWS\win.ini [2010/04/14 22:03:02 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010/04/14 21:47:50 | 000,252,240 | RHS- | M] () -- C:\ntldr [2010/04/14 21:25:25 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010/04/14 20:48:13 | 000,000,000 | ---- | M] () -- C:\WINDOWS\OpPrintServer.INI [2010/04/14 20:47:58 | 000,000,627 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Easy-PhotoPrint.lnk [2010/04/14 20:44:24 | 000,000,010 | ---- | M] () -- C:\WINDOWS\WININIT.INI [2010/04/14 20:43:06 | 000,000,136 | ---- | M] () -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\fusioncache.dat [2010/04/14 20:41:55 | 000,110,025 | ---- | M] () -- C:\WINDOWS\hpoins08.dat [2010/04/14 20:37:04 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\HP Digital Imaging Monitor.lnk [2010/04/14 20:36:28 | 000,001,058 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Imprimante.lnk [2010/04/14 20:27:41 | 000,001,644 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Logitech QuickCam.lnk [2010/04/14 20:26:16 | 000,001,885 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk [2010/04/14 20:26:12 | 000,118,784 | R--- | M] () -- C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe [2010/04/14 20:23:24 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\PHOTOfunSTUDIO -viewer-.lnk [2010/04/14 20:23:00 | 000,001,708 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\PHOTOfunSTUDIO -viewer-.lnk [2010/04/14 20:20:13 | 000,000,000 | ---- | M] () -- C:\WINDOWS\ativpsrm.bin [2010/04/14 20:08:46 | 000,000,228 | -HS- | M] () -- C:\boot.ini [2010/04/14 19:40:44 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010/04/14 19:35:14 | 000,000,237 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010/04/14 19:33:23 | 000,127,075 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010/04/14 19:33:23 | 000,049,262 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\jpicpl32.cpl [2010/04/14 19:33:23 | 000,049,247 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010/04/14 19:33:23 | 000,049,245 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010/04/14 19:31:52 | 000,003,072 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010/04/14 19:31:52 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010/04/14 19:31:52 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010/04/14 19:31:52 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010/04/14 19:31:52 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010/04/14 19:31:52 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010/04/14 19:31:46 | 000,004,205 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010/04/14 19:31:13 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010/04/14 19:31:13 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010/04/14 19:29:54 | 000,021,892 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010/04/14 19:29:53 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010/04/14 19:29:53 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2010/04/08 13:20:02 | 000,107,808 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\dns-sd.exe [2010/04/08 13:20:02 | 000,091,424 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\dnssd.dll [9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2010/05/01 15:07:28 | 3220,754,432 | -HS- | C] () -- C:\hiberfil.sys [2010/05/01 15:04:16 | 000,000,450 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{7FD84A3B-0196-44EF-9337-59C09BBA807E}.job [2010/05/01 11:42:19 | 000,393,118 | R--- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100501-114219.backup [2010/05/01 11:41:29 | 000,000,790 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.20100501-114129.backup [2010/05/01 11:00:57 | 000,000,890 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Utilitaires.lnk [2010/05/01 10:49:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010/05/01 09:47:53 | 000,002,137 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\iTunes.lnk [2010/04/30 18:39:29 | 000,001,906 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Serveur Média.lnk [2010/04/30 18:39:29 | 000,000,818 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Agent Serveur Média.lnk [2010/04/29 09:53:36 | 000,000,221 | ---- | C] () -- C:\WINDOWS\NCLogConfig.ini [2010/04/27 07:40:24 | 000,001,649 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\AlerteGPS G300.lnk [2010/04/26 22:38:19 | 000,001,767 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Windows Live Messenger .lnk [2010/04/26 11:16:41 | 000,000,050 | ---- | C] () -- C:\WINDOWS\MegaManager.INI [2010/04/23 21:46:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\tlrbctv45emqvrsl3hnslnnj.ini [2010/04/21 23:13:31 | 000,116,224 | ---- | C] () -- C:\WINDOWS\System32\pdfcmnnt.dll [2010/04/20 22:56:01 | 000,001,743 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 9.lnk [2010/04/19 12:14:52 | 000,000,032 | --S- | C] () -- C:\WINDOWS\System32\3962614842.dat [2010/04/19 12:14:45 | 000,000,020 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Application Data\wiaservg.log [2010/04/17 00:39:13 | 000,005,632 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/04/17 00:38:52 | 000,000,347 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\FILMS.lnk [2010/04/15 22:35:51 | 000,002,381 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Nero StartSmart.lnk [2010/04/15 20:55:56 | 000,001,761 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\TuneUp Maintenance en 1 clic.lnk [2010/04/15 20:55:56 | 000,001,741 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\TuneUp Utilities.lnk [2010/04/15 20:11:27 | 000,000,325 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\IOMEGA 500 (O).lnk [2010/04/15 20:11:23 | 000,000,288 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Seagate1.5 To (N).lnk [2010/04/15 20:11:19 | 000,000,289 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Seagate 500 Go (M).lnk [2010/04/15 20:11:14 | 000,000,145 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Lecteur CD.lnk [2010/04/15 20:11:09 | 000,000,292 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Disque de données (D).lnk [2010/04/15 20:11:05 | 000,000,307 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Disque Système ©.lnk [2010/04/15 20:05:51 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [2010/04/15 00:45:01 | 000,000,370 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Bureau\Mes images.lnk [2010/04/15 00:39:23 | 000,000,756 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Menu Démarrer\Programmes\Démarrage\Spamihilator.lnk [2010/04/15 00:25:47 | 000,000,744 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Quittance Express 2.lnk [2010/04/15 00:21:27 | 000,015,908 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\Livebox-save.dwb [2010/04/15 00:21:27 | 000,000,202 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Mes documents\Espace Client France Telecom.url [2010/04/14 23:50:40 | 000,001,721 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Avira AntiVir Control Center.lnk [2010/04/14 22:42:26 | 000,001,877 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Seagate Manager.lnk [2010/04/14 22:36:29 | 000,000,629 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\APC UPS Status.lnk [2010/04/14 21:45:10 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img [2010/04/14 21:45:05 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty [2010/04/14 21:44:55 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod [2010/04/14 21:38:48 | 000,000,448 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{BB427F4F-FF2D-4F7B-B290-BFDD178CB118}.job [2010/04/14 21:25:30 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2010/04/14 21:25:27 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010/04/14 21:25:27 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010/04/14 21:25:27 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010/04/14 21:25:26 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010/04/14 21:25:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010/04/14 21:25:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010/04/14 21:25:23 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010/04/14 21:25:23 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010/04/14 21:25:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010/04/14 21:25:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010/04/14 21:25:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010/04/14 21:25:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010/04/14 21:25:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010/04/14 21:25:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010/04/14 21:25:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010/04/14 21:25:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010/04/14 21:25:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010/04/14 21:25:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010/04/14 21:25:20 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010/04/14 21:25:20 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010/04/14 21:25:20 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010/04/14 21:25:20 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010/04/14 21:25:20 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010/04/14 21:25:20 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010/04/14 21:25:20 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010/04/14 21:25:20 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010/04/14 21:25:20 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010/04/14 21:25:20 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010/04/14 21:25:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010/04/14 21:25:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010/04/14 21:25:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010/04/14 21:25:18 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010/04/14 21:25:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010/04/14 21:25:18 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010/04/14 21:25:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls [2010/04/14 21:25:16 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls [2010/04/14 21:25:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010/04/14 21:25:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010/04/14 21:25:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010/04/14 21:25:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010/04/14 21:25:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010/04/14 21:25:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010/04/14 21:25:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010/04/14 21:25:15 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010/04/14 21:25:12 | 000,001,896 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010/04/14 21:25:07 | 000,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010/04/14 21:25:07 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010/04/14 21:25:07 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010/04/14 21:25:07 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010/04/14 21:25:07 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010/04/14 21:25:07 | 000,007,506 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010/04/14 21:25:07 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010/04/14 21:25:06 | 001,014,836 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2010/04/14 21:24:36 | 000,280,536 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010/04/14 21:20:17 | 000,000,237 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010/04/14 21:20:17 | 000,000,228 | -HS- | C] () -- C:\boot.ini [2010/04/14 21:04:02 | 000,001,695 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Paramètres de la souris et du clavier Logitech.lnk [2010/04/14 21:03:29 | 000,001,701 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk [2010/04/14 20:52:15 | 000,198,144 | ---- | C] () -- C:\WINDOWS\System32\_psisdecd.dll [2010/04/14 20:48:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI [2010/04/14 20:47:58 | 000,000,627 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Easy-PhotoPrint.lnk [2010/04/14 20:44:24 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI [2010/04/14 20:43:06 | 000,000,136 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\Local Settings\Application Data\fusioncache.dat [2010/04/14 20:37:04 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\HP Digital Imaging Monitor.lnk [2010/04/14 20:36:28 | 000,001,058 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Imprimante.lnk [2010/04/14 20:34:34 | 000,077,824 | R--- | C] () -- C:\WINDOWS\System32\hpzids01.dll [2010/04/14 20:30:59 | 000,110,025 | ---- | C] () -- C:\WINDOWS\hpoins08.dat [2010/04/14 20:30:59 | 000,007,577 | ---- | C] () -- C:\WINDOWS\hpomdl08.dat [2010/04/14 20:30:59 | 000,000,745 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log [2010/04/14 20:29:19 | 000,013,126 | R--- | C] () -- C:\WINDOWS\System32\lvcoinst.ini [2010/04/14 20:29:19 | 000,002,112 | R--- | C] () -- C:\WINDOWS\System32\Repository.reg [2010/04/14 20:27:41 | 000,001,644 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Logitech QuickCam.lnk [2010/04/14 20:27:01 | 000,000,719 | R--- | C] () -- C:\WINDOWS\System32\InstExec.ini [2010/04/14 20:26:16 | 000,001,885 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech Desktop Messenger.lnk [2010/04/14 20:26:12 | 000,118,784 | R--- | C] () -- C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe [2010/04/14 20:23:24 | 000,001,736 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\PHOTOfunSTUDIO -viewer-.lnk [2010/04/14 20:23:15 | 000,111,932 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat [2010/04/14 20:23:15 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat [2010/04/14 20:23:15 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat [2010/04/14 20:23:15 | 000,026,154 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat [2010/04/14 20:23:15 | 000,024,903 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat [2010/04/14 20:23:15 | 000,021,390 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat [2010/04/14 20:23:15 | 000,020,148 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat [2010/04/14 20:23:15 | 000,013,732 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_EN.cfg [2010/04/14 20:23:15 | 000,011,811 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat [2010/04/14 20:23:15 | 000,006,442 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_IT.cfg [2010/04/14 20:23:15 | 000,006,347 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_PT.cfg [2010/04/14 20:23:15 | 000,006,347 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_BP.cfg [2010/04/14 20:23:15 | 000,006,335 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_GE.cfg [2010/04/14 20:23:15 | 000,006,195 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_FR.cfg [2010/04/14 20:23:15 | 000,006,195 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_CF.cfg [2010/04/14 20:23:15 | 000,006,122 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_DU.cfg [2010/04/14 20:23:15 | 000,006,103 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_ES.cfg [2010/04/14 20:23:15 | 000,005,817 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_KO.cfg [2010/04/14 20:23:15 | 000,005,436 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_SC.cfg [2010/04/14 20:23:15 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat [2010/04/14 20:23:15 | 000,002,889 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_RU.cfg [2010/04/14 20:23:15 | 000,002,426 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_TC.cfg [2010/04/14 20:23:15 | 000,001,146 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_DU.dat [2010/04/14 20:23:15 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat [2010/04/14 20:23:15 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat [2010/04/14 20:23:15 | 000,001,136 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat [2010/04/14 20:23:15 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat [2010/04/14 20:23:15 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat [2010/04/14 20:23:15 | 000,001,120 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_IT.dat [2010/04/14 20:23:15 | 000,001,107 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_GE.dat [2010/04/14 20:23:15 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat [2010/04/14 20:23:15 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini [2010/04/14 20:23:00 | 000,001,708 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\PHOTOfunSTUDIO -viewer-.lnk [2010/04/14 20:20:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2010/04/14 20:15:38 | 000,593,920 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe [2010/04/14 20:15:37 | 000,013,052 | R--- | C] () -- C:\WINDOWS\atiogl.xml [2010/04/14 20:15:35 | 000,007,167 | R--- | C] () -- C:\WINDOWS\System32\atifglpf.xml [2010/04/14 20:15:34 | 000,887,724 | R--- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2010/04/14 20:15:33 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2010/04/14 20:15:32 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativvaxx.dat [2010/04/14 20:15:32 | 000,174,819 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2010/04/14 20:09:29 | 000,003,072 | R--- | C] () -- C:\WINDOWS\System32\34CoInstaller.dll [2010/04/14 20:09:24 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\msdvbnp.ax [2010/04/14 20:09:24 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\psisrndr.ax [2010/04/14 20:09:10 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\unwlsdrv.exe [2010/04/14 20:09:04 | 000,003,632 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu [2010/04/14 20:08:56 | 000,157,184 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2010/04/14 20:08:54 | 000,141,016 | R--- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV [2010/04/14 19:58:15 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2010/04/14 19:41:45 | 000,020,480 | -H-- | C] () -- C:\Documents and Settings\QUESNEL Bruno\ntuser.dat.LOG [2010/04/14 19:41:45 | 000,000,184 | -HS- | C] () -- C:\Documents and Settings\QUESNEL Bruno\ntuser.ini [2010/04/14 19:41:44 | 006,553,600 | -H-- | C] () -- C:\Documents and Settings\QUESNEL Bruno\NTUSER.DAT [2010/04/14 19:41:44 | 000,002,187 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\dotNetFx.log [2010/04/14 19:41:44 | 000,001,072 | ---- | C] () -- C:\Documents and Settings\QUESNEL Bruno\langpackSetup.log [2010/04/14 19:40:44 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010/04/14 19:35:09 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010/04/14 19:35:04 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010/04/14 19:34:47 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010/04/14 19:34:47 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010/04/14 19:34:46 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010/04/14 19:34:37 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010/04/14 19:34:37 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010/04/14 19:34:32 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010/04/14 19:34:31 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010/04/14 19:34:30 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010/04/14 19:34:26 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010/04/14 19:34:23 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010/04/14 19:34:15 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010/04/14 19:34:12 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010/04/14 19:34:12 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010/04/14 19:34:12 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010/04/14 19:34:12 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010/04/14 19:34:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010/04/14 19:34:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010/04/14 19:34:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010/04/14 19:34:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010/04/14 19:34:12 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010/04/14 19:34:11 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010/04/14 19:34:11 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010/04/14 19:34:11 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010/04/14 19:34:11 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010/04/14 19:34:10 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010/04/14 19:34:10 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010/04/14 19:34:10 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010/04/14 19:34:10 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010/04/14 19:34:10 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010/04/14 19:34:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010/04/14 19:34:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010/04/14 19:34:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010/04/14 19:34:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010/04/14 19:34:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010/04/14 19:34:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010/04/14 19:34:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010/04/14 19:34:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010/04/14 19:34:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010/04/14 19:34:10 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010/04/14 19:34:09 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010/04/14 19:34:09 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010/04/14 19:34:09 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010/04/14 19:34:08 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010/04/14 19:34:08 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010/04/14 19:34:08 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010/04/14 19:34:08 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010/04/14 19:34:08 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010/04/14 19:34:08 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010/04/14 19:34:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010/04/14 19:34:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010/04/14 19:34:08 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010/04/14 19:33:50 | 000,017,638 | ---- | C] () -- C:\WINDOWS\System32\OEMLOGO.BMP [2010/04/14 19:33:50 | 000,000,996 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI [2010/04/14 19:31:52 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010/04/14 19:31:52 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010/04/14 19:31:52 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010/04/14 19:31:52 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010/04/14 19:31:52 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010/04/14 19:31:49 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010/04/14 19:31:49 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010/04/14 19:31:49 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010/04/14 19:31:13 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010/04/14 19:31:13 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010/04/14 19:31:09 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010/04/14 19:31:01 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010/04/14 19:30:35 | 000,049,102 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010/04/14 19:30:35 | 000,049,102 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010/04/14 19:30:29 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010/04/14 19:29:54 | 000,021,892 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010/04/14 19:29:19 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Vent de prairie.bmp [2010/04/14 19:29:19 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Mur de Santa Fe.bmp [2010/04/14 19:29:19 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Rivière Sumida.bmp [2010/04/14 19:29:19 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Granit vert.bmp [2010/04/14 19:29:19 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp [2010/04/14 19:29:19 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Jour de pêche.bmp [2010/04/14 19:29:19 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Plume.bmp [2010/04/14 19:29:19 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp [2010/04/14 19:29:18 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010/04/14 19:29:18 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bulles de savon.bmp [2010/04/14 19:29:18 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010/04/14 19:29:18 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Tasse à café.bmp [2010/04/14 19:29:18 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010/04/14 19:29:18 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010/04/14 19:29:18 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010/04/14 19:29:18 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010/04/14 19:29:18 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Rosace bleue 16.bmp [2010/04/14 19:29:17 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010/04/14 19:29:17 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010/04/14 19:29:16 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010/04/14 19:29:16 | 000,001,263 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010/04/14 19:29:15 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010/04/14 19:29:09 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL [2008/05/26 22:23:32 | 000,016,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini [2008/05/26 22:23:30 | 000,021,596 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini [2008/05/26 22:23:28 | 000,016,036 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini [2005/12/09 15:37:42 | 002,400,256 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVMVdrv.sys [2005/12/09 15:37:42 | 000,016,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\LVPrcMon.sys [2005/12/09 15:35:54 | 002,174,464 | ---- | C] () -- C:\WINDOWS\System32\drivers\Lvckap.sys [2001/07/06 16:30:00 | 000,003,279 | ---- | C] () -- C:\WINDOWS\System32\HPTCPMON.INI [1999/01/27 13:39:06 | 000,065,024 | ---- | C] () -- C:\WINDOWS\System32\indounin.dll [1997/06/13 07:56:08 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\Iyvu9_32.dll ========== LOP Check ========== [2010/05/01 13:01:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrateur\Application Data\Windows Search [2010/04/30 17:57:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\f-secure [2010/04/14 22:42:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Seagate [2010/05/01 15:48:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Serveur Média [2010/04/15 00:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Spamihilator [2010/04/15 20:55:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2010/04/15 20:07:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2010/04/15 20:55:12 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} [2010/04/15 21:53:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Megaupload [2010/04/15 00:45:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Panasonic [2010/05/01 16:50:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Spamihilator [2010/04/15 20:45:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\TomTom [2010/04/15 20:55:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\TuneUp Software [2010/04/26 22:46:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\uTorrent [2010/04/14 23:03:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Windows Desktop Search [2010/04/14 23:04:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\QUESNEL Bruno\Application Data\Windows Search [2010/05/01 15:07:44 | 000,000,450 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{7FD84A3B-0196-44EF-9337-59C09BBA807E}.job [2010/05/01 15:12:04 | 000,000,448 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{BB427F4F-FF2D-4F7B-B290-BFDD178CB118}.job ========== Purity Check ========== < End of report >

C'est le problème je ne peux pas envoyer le résultat du scan OTL. Je tombe sur une page qui refuse Je peux essayer d'un autre poste

Je viens de lire ton message merci je prends la main pour faire ce que tu demandes A tout à l'heure pour les résultats

Bonjour Je fait appel à vous depuis un autre pc dans la pièce à coté de celui infecté car je ne peux transmettre de log sur celui qui est atteint. Comment se débarrasser du bordel qui a été créé. Je suis incompétent dans ce cas. Merci pour une aide de spécialiste Bruno Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:13:32, on 01/05/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe C:\Program Files\Seagate\SeagateManager\Sync\MaxSync.exe C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\system32\LVCOMSX.EXE C:\WINDOWS\system32\ElkCtrl.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\Msmsgs.exe C:\Program Files\Serveur Media\twonkymediaserverconfig.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe C:\Program Files\Spamihilator\spamihilator.exe C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Serveur Media\TwonkyMediaServer.exe C:\Program Files\Serveur Media\bgtrans.exe C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Serveur Media\rmm.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\Avira\AntiVir Desktop\avmailc.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\SearchProtocolHost.exe C:\WINDOWS\system32\HPZipm12.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\Connexion Internet Orange\SearchURLHook\SearchPageURL.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [MaxMenuMgr] "C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [ORAHSSSessionManager] "C:\Program Files\Orange\Connexion Internet Orange\SessionManager\SessionManager.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\Msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: mgjwin32.exe O4 - Startup: Spamihilator.lnk = C:\Program Files\Spamihilator\spamihilator.exe O4 - Global Startup: Agent Serveur Média.lnk = C:\Program Files\Serveur Media\twonkymediaserverconfig.exe O4 - Global Startup: APC UPS Status.lnk = ? O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O4 - Global Startup: PHOTOfunSTUDIO -viewer-.lnk = C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} (Détection de dispositifs) - http://www.logitech.com/devicedetector/plu...Detection32.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1271271993062 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: bw+0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: offline-8876480 - {8E4E33BE-636E-44FC-A78C-A3A83B6AE8AB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe O23 - Service: Seagate Service (FreeAgentGoNext Service) - Seagate Technology LLC - C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Serveur Média - Unknown owner - C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe O23 - Service: Hôte de périphérique universel Plug-and-Play upnphostVSS (upnphostVSS) - Unknown owner - C:\WINDOWS\system32\1036d.exe (file missing) -- End of file - 24874 bytes

Bonjour PC sous winXP avec IE8 Quelqu'un connait-il un moyen d'éradiquer ce truc ? Merci

Bonjour, J'ai été infecté par BDS/Momibot.89088.B Quelqu'un sait-il comment se débarrasser de ce virus. Je n'ai plus accès à winupdate Merci de votre aide

Dommage j'espérais trouver une réponse mais le sujet ne semble pas passionner grand monde ou les experts sont absents

Tout d'abord bonjour à tous. J'ai un doute sur ma machine suite à une attaque virale détectée par mon antivirus. Depuis j'ai plusieurs fois une connexion limité ou inexistante internet (perte adresse IP) sur une livebox inventel. Voyez vous une anomalie sur ce log à suivre. Merci pour l'aide d'un spécialiste Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10.28, on 25/10/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\crypserv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\HPZipm12.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe C:\WINDOWS\System32\dmadmin.exe C:\Program Files\OO Software\DiskImage\oodiag.exe C:\Program Files\Avira\AntiVir Desktop\avmailc.exe C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE C:\WINDOWS\Logi_MwX.Exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Spamihilator\spamihilator.exe C:\Program Files\Fichiers communs\Research In Motion\Auto Update\RIMAutoUpdate.exe C:\Program Files\Microsoft ActiveSync\wcescomm.exe C:\Program Files\TuneUp Utilities 2009\MemOptimizer.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\PROGRA~1\MI3AA1~1\rapimgr.exe C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroTray.exe C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.google.fr/keyword/%s R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4431.1036\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [spamihilator] "C:\Program Files\Spamihilator\spamihilator.exe" O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [blackBerryAutoUpdate] C:\Program Files\Fichiers communs\Research In Motion\Auto Update\RIMAutoUpdate.exe /background O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2009\MemOptimizer.exe" autostart O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Démarrer Microsoft Office Outlook.lnk = C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE O4 - Global Startup: APC UPS Status.lnk = ? O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: Ajouter au fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://picasaweb.google.fr/s/v/33.06/uploader2.cab O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/vers...vex-2.2.4.8.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1160231157328 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1158933816281 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownlo...iaSmartScan.cab O16 - DPF: {A8482EAF-A1F3-4934-AE3F-56EB195A50BF} (DeskUpdate- Activex Control) - http://support.fujitsu-siemens.de/DeskUpda...api/activex.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Update Service (gupdate1c9ef8a7918e12e) (gupdate1c9ef8a7918e12e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: O&O DiskImage - Unknown owner - C:\Program Files\OO Software\DiskImage\oodiag.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe -- End of file - 14555 bytes