Aller au contenu

joseclaire

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    5

  • Inscription

  • Dernière visite

Autres informations

  • Mes langues
    français

joseclaire's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. joseclaire
    Bonjour QC001, Je crois que je vais suivre ton conseil et ré-installer Antivir car il est vrai que l'infection était moins grave qu'il y a 2 mois où plus rien ne fonctionnait. Le pare-feu de nvidia était insupportable où alors c'est moi qui n'arrivait pas à le paramétrer mais la navigation était très lente et depuis que je l'ai désactivé c'est nickel, donc si tu penses que le pare-feu Microsoft ne suffit pas, je suis toute ouïe. Sinon pour nos habitudes, j'ai banni Emule, mais mon époux râle donc des fois il l'utilise quand même. Mais on n'a jamais fermé l'antivirus pour un téléchargement (ou pour autre chose). Merci à toi d'avoir repris mon post en cours et à +, Claire
  2. joseclaire
    Donc: - j'ai désinstallé Combofix - Avast fonctionne bien car il a tout de suite bloqué le téléchargement (de plus Avasxt avait reperé 2 trojan ce matin). Et je ne sais plus que croire car : 1ère infection bagle avec Avast cond installation d'Antivir, puis 2nde infection Bagle avec Antivir donc ? - Pour ce qui est d'Office, j'ai effectivement télécharger le pack, mais ce n'est pas un logiciel cracké (bon c'est pas beaucoup mieux j'ai eu la clé d'une copine qui elle l'avait acheté...) donc j'espère que ça ne contenait pas de virus (en tout cas rien n'est détecté dessus au scan). J'espère que tout va bien maintenant sur mon PC : à toi de me dire. Merci beaucoup pour ton aide, Claire
  3. joseclaire
    Rapport MBAM Malwarebytes' Anti-Malware 1.38 Version de la base de données: 2353 Windows 5.1.2600 Service Pack 3 30/06/2009 10:58:36 mbam-log-2009-06-30 (10-58-36).txt Type de recherche: Examen complet (C:\|D:\|F:\|) Eléments examinés: 164620 Temps écoulé: 33 minute(s), 41 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 1 Fichier(s) infecté(s): 4 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): d:\documents and settings\José & Claire\Application Data\m (Trojan.Agent) -> Quarantined and deleted successfully. Fichier(s) infecté(s): d:\system volume information\_restore{8d2f9d59-708d-487d-8deb-4c417b6b070c}\RP74\A0014108.sys (Rootkit.Bagle) -> Quarantined and deleted successfully. d:\system volume information\_restore{8d2f9d59-708d-487d-8deb-4c417b6b070c}\RP74\A0014135.sys (Rootkit.Bagle) -> Quarantined and deleted successfully. d:\documents and settings\josé & claire\application data\m\list.oct (Trojan.Agent) -> Quarantined and deleted successfully. d:\documents and settings\josé & claire\application data\m\srvlist.oct (Trojan.Agent) -> Quarantined and deleted successfully. Log RSIT Logfile of random's system information tool 1.06 (written by random/random) Run by José & Claire at 2009-06-30 11:16:05 Microsoft Windows XP Édition familiale Service Pack 3 System drive C: has 24 GB (67%) free of 35 GB Total RAM: 1022 MB (65% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:16:05, on 30/06/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Avast\aswUpdSv.exe C:\Program Files\Avast\ashServ.exe C:\WINDOWS\system32\spoolsv.exe D:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe C:\Program Files\Avast\ashMaiSv.exe C:\Program Files\Avast\ashWebSv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\RTHDCPL.EXE C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\PROGRA~1\Avast\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICLE.EXE C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\WINDOWS\system32\SearchProtocolHost.exe C:\WINDOWS\system32\NOTEPAD.EXE D:\Documents and Settings\José & Claire\Bureau\RSIT.exe C:\Program Files\trend micro\José & Claire.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ig?hl=fr&source=iglk R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [nTrayFw] C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast\ashDisp.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [EPSON Stylus Photo RX585 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICLE.EXE /FU "D:\DOCUME~1\JOS&CL~1\LOCALS~1\Temp\E_SA2.tmp" /EF "HKCU" O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase1140.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1246284085328 O16 - DPF: {79E0C1C0-316D-11D5-A72A-006097BFA1AC} (EPSON Web Printer-SelfTest Control Class) - http://esupport.epson-europe.com/selftest/...rg/ESTPTest.cab O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Avast\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Avast\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Avast\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Avast\ashWebSv.exe O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - D:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe -- End of file - 7453 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\User_Feed_Synchronization-{9F72F461-7BED-46CB-883F-8495038FAB3C}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-06-27 41368] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-06-27 73728] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2005-12-01 7311360] "nwiz"=nwiz.exe /install [] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2005-12-01 86016] "High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2005-11-10 15473664] "nTrayFw"=C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe [2005-07-29 270336] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696] "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-06-27 148888] "avast!"=C:\PROGRA~1\Avast\ashDisp.exe [2009-02-05 81000] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "EPSON Stylus Photo RX585 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICLE.EXE [2007-03-30 182272] D:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=323 "NoDriveAutoRun"=67108863 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= "NoDrives"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule" "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application" "C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======List of files/folders created in the last 3 months====== 2009-06-30 11:15:05 ----D---- C:\rsit 2009-06-30 11:15:05 ----D---- C:\Program Files\trend micro 2009-06-30 10:22:40 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-06-30 08:34:36 ----SHD---- C:\Config.Msi 2009-06-30 08:27:10 ----A---- C:\WINDOWS\system32\mucltui.dll.mui 2009-06-30 08:27:10 ----A---- C:\WINDOWS\system32\mucltui.dll 2009-06-29 16:54:12 ----D---- C:\WINDOWS\RegisteredPackages 2009-06-29 13:47:50 ----D---- C:\Program Files\Microsoft Silverlight 2009-06-28 21:28:32 ----D---- D:\Documents and Settings\José & Claire\Application Data\vlc 2009-06-28 10:04:11 ----A---- C:\ComboFix.txt 2009-06-28 09:47:07 ----A---- C:\Boot.bak 2009-06-28 09:46:57 ----RASHD---- C:\cmdcons 2009-06-28 09:41:32 ----A---- C:\WINDOWS\zip.exe 2009-06-28 09:41:32 ----A---- C:\WINDOWS\SWXCACLS.exe 2009-06-28 09:41:32 ----A---- C:\WINDOWS\SWSC.exe 2009-06-28 09:41:32 ----A---- C:\WINDOWS\SWREG.exe 2009-06-28 09:41:32 ----A---- C:\WINDOWS\sed.exe 2009-06-28 09:41:32 ----A---- C:\WINDOWS\PEV.exe 2009-06-28 09:41:32 ----A---- C:\WINDOWS\NIRCMD.exe 2009-06-28 09:41:32 ----A---- C:\WINDOWS\grep.exe 2009-06-28 09:41:15 ----D---- C:\WINDOWS\ERDNT 2009-06-28 09:41:00 ----D---- C:\Qoobox 2009-06-28 09:09:24 ----A---- C:\WINDOWS\system32\MSVCP71.dll 2009-06-28 09:09:24 ----A---- C:\WINDOWS\system32\MFC71.dll 2009-06-28 09:09:14 ----A---- C:\WINDOWS\system32\aswBoot.exe 2009-06-28 09:08:58 ----D---- C:\Program Files\Avast 2009-06-27 23:57:38 ----D---- C:\Program Files\Windows Live Safety Center 2009-06-27 12:19:39 ----D---- C:\WINDOWS\avxoscan 2009-06-27 10:56:45 ----A---- C:\WINDOWS\system32\javaws.exe 2009-06-27 10:56:45 ----A---- C:\WINDOWS\system32\javaw.exe 2009-06-27 10:56:45 ----A---- C:\WINDOWS\system32\java.exe 2009-06-27 10:56:14 ----D---- C:\Program Files\Java 2009-06-26 22:28:17 ----HD---- D:\Documents and Settings\José & Claire\Application Data\drivers 2009-06-23 15:46:57 ----D---- D:\Documents and Settings\José & Claire\Application Data\avidemux 2009-06-23 15:26:00 ----D---- C:\3gptemp 2009-06-23 15:25:23 ----D---- C:\Program Files\MIKSOFT 2009-06-21 02:33:15 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$ 2009-06-21 01:50:09 ----D---- D:\Documents and Settings\José & Claire\Application Data\dvdcss 2009-06-20 10:49:37 ----D---- D:\Documents and Settings\José & Claire\Application Data\Windows Search 2009-06-20 10:49:22 ----D---- D:\Documents and Settings\José & Claire\Application Data\Windows Desktop Search 2009-06-20 10:48:58 ----D---- C:\WINDOWS\system32\GroupPolicy 2009-06-20 10:48:58 ----D---- C:\Program Files\Windows Desktop Search 2009-06-20 10:48:47 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$ 2009-06-20 10:48:30 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$ 2009-06-19 23:28:39 ----D---- C:\Program Files\Microsoft Works 2009-06-19 23:28:30 ----D---- C:\Program Files\MSBuild 2009-06-19 23:28:14 ----D---- C:\Program Files\Microsoft Visual Studio 2009-06-19 23:28:13 ----D---- C:\Program Files\Fichiers communs\DESIGNER 2009-06-19 23:24:45 ----D---- C:\WINDOWS\SHELLNEW 2009-06-19 23:24:24 ----D---- C:\Program Files\Microsoft Office 2009-06-19 23:24:03 ----RHD---- C:\MSOCache 2009-06-19 23:21:04 ----D---- C:\Program Files\Microsoft.Office.Professional.2007.FRENCH.REPACK.iSO-iND-David91 2009-06-19 21:33:14 ----D---- D:\Documents and Settings\All Users\Application Data\Microsoft Help 2009-06-19 15:37:59 ----D---- C:\WINDOWS\Sun 2009-06-19 15:36:12 ----A---- C:\WINDOWS\system32\deploytk.dll 2009-06-19 15:32:51 ----D---- D:\Documents and Settings\José & Claire\Application Data\Sun 2009-06-15 23:26:09 ----D---- D:\Documents and Settings\José & Claire\Application Data\Samsung 2009-06-15 23:03:07 ----A---- C:\WINDOWS\system32\framedyn.dll 2009-06-15 23:03:05 ----A---- C:\WINDOWS\system32\msvcr71.dll 2009-06-15 23:02:33 ----D---- C:\WINDOWS\system32\Samsung_USB_Drivers 2009-06-15 23:02:06 ----D---- C:\Program Files\Samsung 2009-06-11 19:02:30 ----D---- D:\Documents and Settings\José & Claire\Application Data\Any Video Converter 2009-06-11 19:02:27 ----D---- C:\Program Files\Any Video Converter 2009-06-10 11:23:20 ----D---- D:\Documents and Settings\José & Claire\Application Data\3M 2009-06-10 08:21:07 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$ 2009-06-10 08:21:03 ----HDC---- C:\WINDOWS\$NtUninstallKB969898$ 2009-06-10 08:19:53 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$ 2009-06-10 08:19:30 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$ 2009-06-09 19:35:41 ----D---- D:\Documents and Settings\José & Claire\Application Data\AccurateRip 2009-06-09 19:35:40 ----A---- C:\WINDOWS\system32\SpoonUninstall.exe 2009-06-09 19:35:34 ----D---- C:\Program Files\dBpoweramp 2009-06-09 15:46:45 ----D---- C:\Program Files\PhotoFiltre 2009-06-04 19:44:44 ----D---- C:\Program Files\LG Electronics 2009-06-04 19:40:38 ----D---- C:\Program Files\LG PC Suite 2 2009-06-04 19:40:26 ----D---- D:\Documents and Settings\José & Claire\Application Data\InstallShield 2009-06-03 10:57:39 ----D---- C:\Program Files\MSXML 4.0 2009-06-02 11:50:34 ----A---- C:\WINDOWS\system32\msxml4r.dll 2009-06-02 11:50:34 ----A---- C:\WINDOWS\system32\msxml4a.dll 2009-06-02 11:50:34 ----A---- C:\WINDOWS\system32\lgAxconfig.ini 2009-06-02 11:50:34 ----A---- C:\WINDOWS\system32\CommonDL.dll 2009-06-02 11:49:34 ----D---- D:\Documents and Settings\All Users\Application Data\LGMOBILEAX 2009-05-29 22:16:51 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$ 2009-05-29 22:16:40 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$ 2009-05-29 22:16:28 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$ 2009-05-29 22:16:15 ----HDC---- C:\WINDOWS\$NtUninstallKB959772_WM11$ 2009-05-29 22:16:13 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$ 2009-05-29 22:16:07 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$ 2009-05-29 01:03:44 ----N---- C:\WINDOWS\system32\spmsg.dll 2009-05-29 01:03:42 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$ 2009-05-29 01:03:34 ----D---- C:\Program Files\Windows Media Connect 2 2009-05-29 01:03:26 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$ 2009-05-29 01:02:51 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$ 2009-05-29 01:02:29 ----D---- C:\WINDOWS\system32\LogFiles 2009-05-29 01:02:26 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$ 2009-05-24 21:58:08 ----D---- D:\Documents and Settings\José & Claire\Application Data\EPSON 2009-05-21 17:57:26 ----D---- D:\Documents and Settings\José & Claire\Application Data\WinRAR 2009-05-21 15:38:41 ----D---- C:\Program Files\WinRAR 2009-05-19 11:13:52 ----D---- C:\WINDOWS\Minidump 2009-05-19 08:15:32 ----D---- C:\Program Files\eMule 2009-05-18 21:28:52 ----D---- C:\WINDOWS\system32\Epson 2009-05-18 18:50:06 ----A---- C:\WINDOWS\system32\pdfcmnnt.dll 2009-05-18 18:50:05 ----D---- C:\Program Files\PDFCreator 2009-05-18 18:50:05 ----A---- C:\WINDOWS\system32\VB6FR.DLL 2009-05-18 18:50:05 ----A---- C:\WINDOWS\system32\MSMPIDE.DLL 2009-05-18 18:50:05 ----A---- C:\WINDOWS\system32\MSCMCFR.DLL 2009-05-18 18:50:05 ----A---- C:\WINDOWS\system32\MSCC2FR.DLL 2009-05-18 16:33:37 ----D---- D:\Documents and Settings\All Users\Application Data\UDL 2009-05-18 16:32:02 ----D---- C:\Program Files\EPSON Print CD 2009-05-18 16:30:15 ----D---- C:\Program Files\epson 2009-05-18 16:30:13 ----A---- C:\WINDOWS\system32\escwiad.dll 2009-05-18 13:45:29 ----D---- D:\Documents and Settings\José & Claire\Application Data\gtk-2.0 2009-05-18 13:44:09 ----D---- C:\Program Files\GIMP-2.0 2009-05-16 16:03:28 ----D---- C:\Program Files\DIFX 2009-05-16 16:03:15 ----A---- C:\WINDOWS\system32\vfwwdm32.dll 2009-05-16 16:03:15 ----A---- C:\WINDOWS\system32\PsisDecd.dll 2009-05-16 16:03:10 ----DC---- C:\WINDOWS\system32\DRVSTORE 2009-05-16 16:03:10 ----A---- C:\WINDOWS\system32\34CoInstaller.dll 2009-05-16 11:05:31 ----D---- C:\WINDOWS\ie8updates 2009-05-16 11:05:24 ----D---- C:\WINDOWS\WBEM 2009-05-16 11:05:10 ----HDC---- C:\WINDOWS\ie8 2009-05-16 10:58:25 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$ 2009-05-16 10:58:19 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$ 2009-05-16 10:41:30 ----D---- C:\WINDOWS\Prefetch 2009-05-16 10:37:41 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$ 2009-05-16 10:37:36 ----HDC---- C:\WINDOWS\$NtUninstallKB963027$ 2009-05-16 10:37:32 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$ 2009-05-16 10:37:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$ 2009-05-16 10:37:24 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$ 2009-05-16 10:37:20 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$ 2009-05-16 10:37:16 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$ 2009-05-16 10:37:13 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$ 2009-05-16 10:37:09 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$ 2009-05-16 10:37:06 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$ 2009-05-16 10:37:02 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$ 2009-05-16 10:36:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$ 2009-05-16 10:36:52 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$ 2009-05-16 10:36:47 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$ 2009-05-16 10:36:43 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$ 2009-05-16 10:36:39 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$ 2009-05-16 10:36:36 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$ 2009-05-16 10:36:32 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$ 2009-05-16 10:36:28 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$ 2009-05-16 10:36:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$ 2009-05-16 10:36:21 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$ 2009-05-16 10:36:17 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$ 2009-05-16 10:36:14 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$ 2009-05-16 10:36:09 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$ 2009-05-16 10:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$ 2009-05-16 10:36:02 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$ 2009-05-16 10:33:47 ----D---- C:\WINDOWS\system32\fr-fr 2009-05-16 10:33:46 ----D---- C:\WINDOWS\system32\fr 2009-05-16 10:33:46 ----D---- C:\WINDOWS\system32\bits 2009-05-16 10:33:46 ----D---- C:\WINDOWS\l2schemas 2009-05-16 10:32:15 ----D---- C:\WINDOWS\ServicePackFiles 2009-05-16 10:31:04 ----D---- C:\WINDOWS\network diagnostic 2009-05-16 10:29:19 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$ 2009-05-16 10:29:18 ----D---- C:\WINDOWS\EHome 2009-05-16 09:59:44 ----A---- C:\WINDOWS\system32\MRT.exe 2009-05-14 22:51:10 ----D---- C:\WINDOWS\BDOSCAN8 2009-05-14 22:38:30 ----D---- D:\Documents and Settings\José & Claire\Application Data\Malwarebytes 2009-05-14 22:38:25 ----D---- D:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-05-14 19:14:18 ----D---- C:\Program Files\GetDataBack 2009-05-14 18:46:43 ----D---- D:\Documents and Settings\All Users\Application Data\Adobe 2009-05-14 18:46:38 ----D---- C:\Program Files\Fichiers communs\Adobe 2009-05-14 18:46:38 ----D---- C:\Program Files\Adobe 2009-05-14 17:19:07 ----D---- C:\Documents and Settings 2009-05-14 13:55:13 ----D---- D:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage 2009-05-14 13:52:14 ----D---- D:\Documents and Settings\José & Claire\Application Data\Macromedia 2009-05-14 13:52:14 ----D---- D:\Documents and Settings\José & Claire\Application Data\Adobe 2009-05-14 12:22:11 ----D---- D:\Documents and Settings\José & Claire\Application Data\Identities 2009-05-14 12:22:03 ----SD---- D:\Documents and Settings\José & Claire\Application Data\Microsoft 2009-05-14 12:22:03 ----ASH---- D:\Documents and Settings\José & Claire\Application Data\desktop.ini 2009-05-14 11:59:12 ----A---- C:\WINDOWS\ntbtlog.txt 2009-05-14 11:43:49 ----SD---- D:\Documents and Settings\All Users\Application Data\Microsoft 2009-05-14 11:43:49 ----D---- D:\Documents and Settings\All Users\Application Data\nView_Profiles 2009-05-14 11:43:49 ----D---- D:\Documents and Settings\All Users\Application Data\EPSON 2009-05-14 11:43:48 ----ASH---- D:\Documents and Settings\All Users\Application Data\desktop.ini 2009-05-14 11:38:15 ----A---- C:\WINDOWS\system32\E_DCINST.DLL 2009-05-14 11:38:14 ----A---- C:\WINDOWS\system32\E_FLBCLE.DLL 2009-05-14 11:38:14 ----A---- C:\WINDOWS\system32\E_FD4BCLE.DLL 2009-05-14 11:28:35 ----A---- C:\WINDOWS\ODBC.INI 2009-05-14 11:28:30 ----A---- C:\WINDOWS\system32\mdimon.dll 2009-05-14 10:48:41 ----A---- C:\WINDOWS\system32\wpa.bak 2009-05-14 00:19:17 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$ 2009-05-14 00:19:13 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$ 2009-05-14 00:19:09 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$ 2009-05-14 00:19:06 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$ 2009-05-14 00:19:02 ----HDC---- C:\WINDOWS\$NtUninstallKB961373_0$ 2009-05-14 00:18:58 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$ 2009-05-14 00:18:54 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$ 2009-05-14 00:18:51 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$ 2009-05-14 00:18:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$ 2009-05-14 00:18:42 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$ 2009-05-14 00:18:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$ 2009-05-14 00:18:23 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2_0$ 2009-05-14 00:18:19 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$ 2009-05-14 00:18:14 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$ 2009-05-14 00:18:10 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$ 2009-05-14 00:18:06 ----HDC---- C:\WINDOWS\$NtUninstallKB957097_0$ 2009-05-14 00:18:03 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$ 2009-05-14 00:17:59 ----HDC---- C:\WINDOWS\$NtUninstallKB958687_0$ 2009-05-14 00:17:56 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$ 2009-05-14 00:17:50 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$ 2009-05-14 00:17:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$ 2009-05-14 00:17:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$ 2009-05-14 00:17:38 ----HDC---- C:\WINDOWS\$NtUninstallKB958690_0$ 2009-05-14 00:17:33 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$ 2009-05-14 00:17:29 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$ 2009-05-14 00:17:25 ----HDC---- C:\WINDOWS\$NtUninstallKB954600_0$ 2009-05-14 00:17:22 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$ 2009-05-14 00:17:18 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$ 2009-05-14 00:17:14 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$ 2009-05-14 00:16:58 ----HDC---- C:\WINDOWS\$NtUninstallKB963027_0$ 2009-05-14 00:16:53 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$ 2009-05-14 00:16:47 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$ 2009-05-14 00:15:06 ----A---- C:\WINDOWS\system32\h323log.txt 2009-05-14 00:12:55 ----A---- C:\WINDOWS\system32\hidserv.dll 2009-05-14 00:12:03 ----A---- C:\WINDOWS\system32\ksuser.dll 2009-05-14 00:11:06 ----A---- C:\WINDOWS\system32\slserv.exe 2009-05-14 00:11:06 ----A---- C:\WINDOWS\system32\slrundll.exe 2009-05-14 00:11:06 ----A---- C:\WINDOWS\system32\slgen.dll 2009-05-14 00:11:06 ----A---- C:\WINDOWS\system32\slextspk.dll 2009-05-14 00:11:06 ----A---- C:\WINDOWS\system32\slcoinst.dll 2009-05-14 00:10:21 ----A---- C:\WINDOWS\system32\irmon.dll 2009-05-14 00:10:20 ----A---- C:\WINDOWS\system32\wshirda.dll 2009-05-14 00:10:20 ----A---- C:\WINDOWS\system32\irftp.exe 2009-05-14 00:10:09 ----A---- C:\WINDOWS\system32\usbui.dll 2009-05-14 00:09:23 ----A---- C:\WINDOWS\imsins.BAK 2009-05-14 00:09:21 ----SHD---- C:\WINDOWS\Installer 2009-05-14 00:09:21 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2009-05-14 00:09:20 ----D---- C:\Program Files\Fichiers communs\ODBC 2009-05-14 00:09:20 ----A---- C:\WINDOWS\ODBCINST.INI 2009-05-14 00:09:17 ----RD---- C:\Program Files 2009-05-14 00:09:17 ----D---- C:\Program Files\Fichiers communs\SpeechEngines 2009-05-14 00:09:17 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2009-05-14 00:09:17 ----D---- C:\Program Files\Fichiers communs 2009-05-14 00:09:14 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2009-05-14 00:09:14 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2009-05-14 00:09:14 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2009-05-14 00:09:13 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2009-05-14 00:09:13 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2009-05-14 00:09:13 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2009-05-14 00:09:13 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2009-05-14 00:09:12 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2009-05-14 00:09:12 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2009-05-14 00:09:12 ----RA---- C:\WINDOWS\system32\kbdur.dll 2009-05-14 00:09:12 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2009-05-14 00:09:12 ----RA---- C:\WINDOWS\system32\kbdru.dll 2009-05-14 00:09:12 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2009-05-14 00:09:12 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2009-05-14 00:09:12 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2009-05-14 00:09:11 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2009-05-14 00:09:11 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2009-05-14 00:09:11 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2009-05-14 00:09:11 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2009-05-14 00:09:11 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2009-05-14 00:09:11 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2009-05-14 00:09:11 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2009-05-14 00:09:10 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2009-05-14 00:09:09 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2009-05-14 00:09:09 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2009-05-14 00:09:09 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2009-05-14 00:09:09 ----RA---- C:\WINDOWS\system32\kbdest.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdro.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2009-05-14 00:09:08 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2009-05-14 00:09:06 ----A---- C:\WINDOWS\system32\irclass.dll 2009-05-14 00:09:06 ----A---- C:\WINDOWS\system32\dgsetup.dll 2009-05-14 00:09:06 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2009-05-14 00:09:05 ----A---- C:\WINDOWS\system32\spxcoins.dll 2009-05-14 00:09:05 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2009-05-14 00:09:04 ----A---- C:\WINDOWS\TASKMAN.EXE 2009-05-14 00:09:03 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2009-05-14 00:09:03 ----A---- C:\WINDOWS\system32\batt.dll 2009-05-14 00:09:03 ----A---- C:\WINDOWS\notepad.exe 2009-05-14 00:08:58 ----A---- C:\WINDOWS\system32\storprop.dll 2009-05-14 00:07:33 ----RA---- C:\WINDOWS\SET8.tmp 2009-05-14 00:07:31 ----RA---- C:\WINDOWS\SET4.tmp 2009-05-14 00:07:29 ----RA---- C:\WINDOWS\SET3.tmp 2009-05-14 00:07:24 ----D---- C:\WINDOWS\system32\CatRoot2 2009-05-14 00:07:24 ----D---- C:\WINDOWS\system32\CatRoot 2009-05-14 00:06:59 ----A---- C:\WINDOWS\setuplog.txt 2009-05-14 00:06:55 ----SHD---- C:\System Volume Information 2009-05-14 00:05:54 ----RASH---- C:\boot.ini 2009-05-14 00:00:49 ----RSHDC---- C:\WINDOWS\system32\dllcache 2009-05-14 00:00:49 ----RSD---- C:\WINDOWS\Fonts 2009-05-14 00:00:49 ----RD---- C:\WINDOWS\Web 2009-05-14 00:00:49 ----HD---- C:\WINDOWS\system32\drivers 2009-05-14 00:00:49 ----HD---- C:\WINDOWS\inf 2009-05-14 00:00:49 ----D---- C:\WINDOWS\WinSxS 2009-05-14 00:00:49 ----D---- C:\WINDOWS\twain_32 2009-05-14 00:00:49 ----D---- C:\WINDOWS\Temp 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\wins 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\wbem 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\usmt 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\spool 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\ShellExt 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\Setup 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\ras 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\oobe 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\npp 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\mui 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\inetsrv 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\IME 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\icsxml 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\ias 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\export 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\dhcp 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\config 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\3com_dmi 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\3076 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\2052 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\1054 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\1042 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\1041 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\1037 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\1036 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\1033 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\1031 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\1028 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32\1025 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system32 2009-05-14 00:00:49 ----D---- C:\WINDOWS\system 2009-05-14 00:00:49 ----D---- C:\WINDOWS\security 2009-05-14 00:00:49 ----D---- C:\WINDOWS\Resources 2009-05-14 00:00:49 ----D---- C:\WINDOWS\repair 2009-05-14 00:00:49 ----D---- C:\WINDOWS\Provisioning 2009-05-14 00:00:49 ----D---- C:\WINDOWS\PeerNet 2009-05-14 00:00:49 ----D---- C:\WINDOWS\pchealth 2009-05-14 00:00:49 ----D---- C:\WINDOWS\mui 2009-05-14 00:00:49 ----D---- C:\WINDOWS\msapps 2009-05-14 00:00:49 ----D---- C:\WINDOWS\msagent 2009-05-14 00:00:49 ----D---- C:\WINDOWS\Media 2009-05-14 00:00:49 ----D---- C:\WINDOWS\java 2009-05-14 00:00:49 ----D---- C:\WINDOWS\ime 2009-05-14 00:00:49 ----D---- C:\WINDOWS\Help 2009-05-14 00:00:49 ----D---- C:\WINDOWS\Driver Cache 2009-05-14 00:00:49 ----D---- C:\WINDOWS\Debug 2009-05-14 00:00:49 ----D---- C:\WINDOWS\Cursors 2009-05-14 00:00:49 ----D---- C:\WINDOWS\Connection Wizard 2009-05-14 00:00:49 ----D---- C:\WINDOWS\Config 2009-05-14 00:00:49 ----D---- C:\WINDOWS\AppPatch 2009-05-14 00:00:49 ----D---- C:\WINDOWS\addins 2009-05-14 00:00:49 ----D---- C:\WINDOWS 2009-05-13 23:32:57 ----D---- C:\WINDOWS\system32\PreInstall 2009-05-13 23:32:41 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$ 2009-05-13 23:32:40 ----HD---- C:\WINDOWS\$hf_mig$ 2009-05-13 23:23:09 ----D---- C:\Program Files\VideoLAN 2009-05-13 23:01:32 ----D---- C:\Program Files\NVIDIA Corporation 2009-05-13 23:00:42 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2009-05-13 22:58:24 ----D---- C:\WINDOWS\system32\Lang 2009-05-13 22:58:13 ----A---- C:\WINDOWS\system32\CapabilityTable.exe 2009-05-13 22:57:56 ----N---- C:\WINDOWS\system32\nvuide.exe 2009-05-13 22:57:54 ----RA---- C:\WINDOWS\system32\NVCOI.DLL 2009-05-13 22:57:54 ----RA---- C:\WINDOWS\system32\idecoi.dll 2009-05-13 22:57:15 ----RA---- C:\WINDOWS\system32\fdco1ins.dll 2009-05-13 22:57:15 ----RA---- C:\WINDOWS\system32\fdco1.dll 2009-05-13 22:57:08 ----D---- C:\WINDOWS\NV6281284.TMP 2009-05-13 22:57:08 ----A---- C:\WINDOWS\system32\nvunrm.exe 2009-05-13 22:57:06 ----RA---- C:\WINDOWS\system32\nvconrm.dll 2009-05-13 22:57:06 ----RA---- C:\WINDOWS\system32\bdco1ins.dll 2009-05-13 22:57:06 ----RA---- C:\WINDOWS\system32\bdco1.dll 2009-05-13 22:56:54 ----RA---- C:\WINDOWS\system32\nvusmb.exe 2009-05-13 22:53:49 ----R---- C:\WINDOWS\system32\RtlCPAPI.dll 2009-05-13 22:53:49 ----R---- C:\WINDOWS\system32\ChCfg.exe 2009-05-13 22:53:26 ----D---- C:\WINDOWS\system32\RTCOM 2009-05-13 22:53:09 ----D---- C:\WINDOWS\system32\ReinstallBackups 2009-05-13 22:51:04 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2009-05-13 22:51:02 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$ 2009-05-13 22:50:54 ----R---- C:\WINDOWS\SoundMan.exe 2009-05-13 22:50:54 ----R---- C:\WINDOWS\RtlUpd.exe 2009-05-13 22:50:50 ----R---- C:\WINDOWS\RTLCPL.exe 2009-05-13 22:50:45 ----R---- C:\WINDOWS\RTHDCPL.exe 2009-05-13 22:50:44 ----R---- C:\WINDOWS\MicCal.exe 2009-05-13 22:50:43 ----R---- C:\WINDOWS\alcwzrd.exe 2009-05-13 22:50:43 ----R---- C:\WINDOWS\Alcmtr.exe 2009-05-13 22:50:42 ----D---- C:\Program Files\Realtek 2009-05-13 22:50:37 ----HD---- C:\Program Files\InstallShield Installation Information 2009-05-13 22:50:04 ----R---- C:\WINDOWS\RtlExUpd.dll 2009-05-13 22:48:33 ----D---- C:\WINDOWS\nview 2009-05-13 22:48:33 ----A---- C:\WINDOWS\system32\nvudisp.exe 2009-05-13 22:48:09 ----A---- C:\WINDOWS\system32\NVUNINST.EXE 2009-05-13 22:47:54 ----D---- C:\Program Files\Fichiers communs\InstallShield 2009-05-13 22:30:57 ----D---- C:\Program Files\Free.fr 2009-05-13 22:26:55 ----HD---- C:\Program Files\Uninstall Information 2009-05-13 22:25:00 ----D---- C:\WINDOWS\SoftwareDistribution 2009-05-13 22:24:59 ----SD---- C:\WINDOWS\system32\Microsoft 2009-05-13 22:24:59 ----A---- C:\WINDOWS\SchedLgU.Txt 2009-05-13 22:21:58 ----D---- C:\WINDOWS\system32\xircom 2009-05-13 22:21:58 ----D---- C:\Program Files\xerox 2009-05-13 22:21:58 ----D---- C:\Program Files\microsoft frontpage 2009-05-13 22:21:45 ----A---- C:\WINDOWS\control.ini 2009-05-13 22:21:45 ----A---- C:\AUTOEXEC.BAT 2009-05-13 22:21:31 ----A---- C:\WINDOWS\OEWABLog.txt 2009-05-13 22:21:27 ----A---- C:\WINDOWS\system32\mapi32.dll 2009-05-13 22:20:51 ----SD---- C:\WINDOWS\Downloaded Program Files 2009-05-13 22:20:51 ----RD---- C:\WINDOWS\Offline Web Pages 2009-05-13 22:20:51 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2009-05-13 22:20:46 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2009-05-13 22:20:43 ----HD---- C:\Program Files\WindowsUpdate 2009-05-13 22:20:39 ----D---- C:\Program Files\Services en ligne 2009-05-13 22:20:26 ----D---- C:\WINDOWS\system32\DirectX 2009-05-13 22:20:10 ----A---- C:\WINDOWS\system32\atrace.dll 2009-05-13 22:20:08 ----A---- C:\WINDOWS\system32\desktop.ini 2009-05-13 22:20:08 ----A---- C:\WINDOWS\desktop.ini 2009-05-13 22:20:02 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2009-05-13 22:20:01 ----A---- C:\WINDOWS\system32\acctres.dll 2009-05-13 22:20:00 ----D---- C:\Program Files\Fichiers communs\Services 2009-05-13 22:19:58 ----SD---- C:\WINDOWS\Tasks 2009-05-13 22:19:58 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2009-05-13 22:19:57 ----D---- C:\Program Files\Fichiers communs\MSSoap 2009-05-13 22:19:54 ----D---- C:\WINDOWS\system32\Macromed 2009-05-13 22:19:54 ----D---- C:\WINDOWS\srchasst 2009-05-13 22:19:51 ----A---- C:\WINDOWS\system32\wuweb.dll 2009-05-13 22:19:51 ----A---- C:\WINDOWS\system32\wups.dll 2009-05-13 22:19:51 ----A---- C:\WINDOWS\system32\wucltui.dll 2009-05-13 22:19:51 ----A---- C:\WINDOWS\system32\wuauserv.dll 2009-05-13 22:19:51 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2009-05-13 22:19:51 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2009-05-13 22:19:51 ----A---- C:\WINDOWS\system32\wuauclt.exe 2009-05-13 22:19:51 ----A---- C:\WINDOWS\system32\wuapi.dll 2009-05-13 22:19:50 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2009-05-13 22:19:50 ----A---- C:\WINDOWS\system32\qmgr.dll 2009-05-13 22:19:50 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2009-05-13 22:19:50 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2009-05-13 22:19:47 ----D---- C:\Program Files\Movie Maker 2009-05-13 22:19:44 ----A---- C:\WINDOWS\system32\safrslv.dll 2009-05-13 22:19:44 ----A---- C:\WINDOWS\system32\safrdm.dll 2009-05-13 22:19:44 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2009-05-13 22:19:44 ----A---- C:\WINDOWS\system32\racpldlg.dll 2009-05-13 22:19:41 ----D---- C:\WINDOWS\system32\Restore 2009-05-13 22:19:41 ----A---- C:\WINDOWS\system32\srsvc.dll 2009-05-13 22:19:41 ----A---- C:\WINDOWS\system32\srrstr.dll 2009-05-13 22:19:41 ----A---- C:\WINDOWS\system32\srclient.dll 2009-05-13 22:19:41 ----A---- C:\WINDOWS\system32\fltmc.exe 2009-05-13 22:19:41 ----A---- C:\WINDOWS\system32\fltlib.dll 2009-05-13 22:19:40 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2009-05-13 22:19:40 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2009-05-13 22:19:40 ----A---- C:\WINDOWS\system32\mnmdd.dll 2009-05-13 22:19:40 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2009-05-13 22:19:40 ----A---- C:\WINDOWS\system32\ils.dll 2009-05-13 22:19:39 ----A---- C:\WINDOWS\system32\msconf.dll 2009-05-13 22:19:37 ----D---- C:\Program Files\NetMeeting 2009-05-13 22:19:37 ----A---- C:\WINDOWS\system32\msoert2.dll 2009-05-13 22:19:37 ----A---- C:\WINDOWS\system32\msoeacct.dll 2009-05-13 22:19:36 ----A---- C:\WINDOWS\system32\inetres.dll 2009-05-13 22:19:36 ----A---- C:\WINDOWS\system32\inetcomm.dll 2009-05-13 22:19:35 ----D---- C:\Program Files\Outlook Express 2009-05-13 22:19:35 ----A---- C:\WINDOWS\system32\schedsvc.dll 2009-05-13 22:19:35 ----A---- C:\WINDOWS\system32\mstinit.exe 2009-05-13 22:19:35 ----A---- C:\WINDOWS\system32\mstask.dll 2009-05-13 22:19:34 ----A---- C:\WINDOWS\system32\isign32.dll 2009-05-13 22:19:34 ----A---- C:\WINDOWS\system32\inetcfg.dll 2009-05-13 22:19:34 ----A---- C:\WINDOWS\system32\icwphbk.dll 2009-05-13 22:19:34 ----A---- C:\WINDOWS\system32\icwdial.dll 2009-05-13 22:19:30 ----D---- C:\Program Files\Fichiers communs\System 2009-05-13 22:19:25 ----D---- C:\Program Files\Internet Explorer 2009-05-13 22:19:15 ----D---- C:\Program Files\ComPlus Applications 2009-05-13 22:19:13 ----A---- C:\WINDOWS\vbaddin.ini 2009-05-13 22:19:13 ----A---- C:\WINDOWS\vb.ini 2009-05-13 22:19:09 ----D---- C:\WINDOWS\Registration 2009-05-13 22:18:44 ----D---- C:\Program Files\Windows Media Player 2009-05-13 22:18:44 ----D---- C:\Program Files\Online Services 2009-05-13 22:18:40 ----D---- C:\Program Files\Messenger 2009-05-13 22:18:37 ----D---- C:\Program Files\MSN Gaming Zone 2009-05-13 22:18:37 ----A---- C:\WINDOWS\system32\write.exe 2009-05-13 22:18:29 ----A---- C:\WINDOWS\system32\sndvol32.exe 2009-05-13 22:18:29 ----A---- C:\WINDOWS\system32\hticons.dll 2009-05-13 22:18:29 ----A---- C:\WINDOWS\system32\avwav.dll 2009-05-13 22:18:29 ----A---- C:\WINDOWS\system32\avtapi.dll 2009-05-13 22:18:29 ----A---- C:\WINDOWS\system32\avmeter.dll 2009-05-13 22:18:28 ----A---- C:\WINDOWS\system32\winchat.exe 2009-05-13 22:18:23 ----A---- C:\WINDOWS\system32\getuname.dll 2009-05-13 22:18:23 ----A---- C:\WINDOWS\system32\charmap.exe 2009-05-13 22:18:23 ----A---- C:\WINDOWS\system32\calc.exe 2009-05-13 22:18:22 ----A---- C:\WINDOWS\system32\winmine.exe 2009-05-13 22:18:22 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2009-05-13 22:18:22 ----A---- C:\WINDOWS\system32\tskill.exe 2009-05-13 22:18:22 ----A---- C:\WINDOWS\system32\sol.exe 2009-05-13 22:18:22 ----A---- C:\WINDOWS\system32\reset.exe 2009-05-13 22:18:22 ----A---- C:\WINDOWS\system32\mshearts.exe 2009-05-13 22:18:22 ----A---- C:\WINDOWS\system32\freecell.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\tslabels.ini 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\tscon.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\shadow.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\rwinsta.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\regini.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\qwinsta.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\qappsrv.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\msg.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\logoff.exe 2009-05-13 22:18:21 ----A---- C:\WINDOWS\system32\cdmodem.dll 2009-05-13 22:18:20 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2009-05-13 22:18:20 ----A---- C:\WINDOWS\system32\mtxex.dll 2009-05-13 22:18:20 ----A---- C:\WINDOWS\system32\mtxdm.dll 2009-05-13 22:18:20 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2009-05-13 22:18:20 ----A---- C:\WINDOWS\system32\comrepl.dll 2009-05-13 22:18:20 ----A---- C:\WINDOWS\system32\comaddin.dll 2009-05-13 22:18:19 ----A---- C:\WINDOWS\system32\stclient.dll 2009-05-13 22:18:19 ----A---- C:\WINDOWS\system32\comsnap.dll 2009-05-13 22:18:16 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2009-05-13 22:18:07 ----D---- C:\Program Files\MSN 2009-05-13 22:18:07 ----A---- C:\WINDOWS\system32\accwiz.exe 2009-05-13 22:18:06 ----D---- C:\Program Files\Windows NT 2009-05-13 22:18:06 ----A---- C:\WINDOWS\system32\sndrec32.exe 2009-05-13 22:18:06 ----A---- C:\WINDOWS\system32\mspaint.exe 2009-05-13 22:18:06 ----A---- C:\WINDOWS\system32\mplay32.exe 2009-05-13 22:18:06 ----A---- C:\WINDOWS\system32\hypertrm.dll 2009-05-13 22:18:05 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2009-05-13 22:18:05 ----A---- C:\WINDOWS\system32\spider.exe 2009-05-13 22:18:05 ----A---- C:\WINDOWS\system32\mstscax.dll 2009-05-13 22:18:05 ----A---- C:\WINDOWS\system32\clipbrd.exe 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\termsrv.dll 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\sessmgr.exe 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\remotepg.dll 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\rdshost.exe 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\rdpclip.exe 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\rdchost.dll 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\qprocess.exe 2009-05-13 22:18:04 ----A---- C:\WINDOWS\system32\mstsc.exe 2009-05-13 22:18:03 ----D---- C:\WINDOWS\system32\MsDtc 2009-05-13 22:18:03 ----A---- C:\WINDOWS\system32\mtxoci.dll 2009-05-13 22:18:03 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2009-05-13 22:18:03 ----A---- C:\WINDOWS\system32\msdtctm.dll 2009-05-13 22:18:03 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2009-05-13 22:18:03 ----A---- C:\WINDOWS\system32\icaapi.dll 2009-05-13 22:18:03 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2009-05-13 22:18:02 ----D---- C:\WINDOWS\system32\Com 2009-05-13 22:18:02 ----A---- C:\WINDOWS\system32\xolehlp.dll 2009-05-13 22:18:02 ----A---- C:\WINDOWS\system32\msdtclog.dll 2009-05-13 22:18:02 ----A---- C:\WINDOWS\system32\msdtc.exe 2009-05-13 22:18:02 ----A---- C:\WINDOWS\system32\colbact.dll 2009-05-13 22:18:02 ----A---- C:\WINDOWS\system32\clbcatex.dll 2009-05-13 22:18:02 ----A---- C:\WINDOWS\system32\catsrvps.dll 2009-05-13 22:18:01 ----A---- C:\WINDOWS\system32\comuid.dll 2009-05-13 22:18:01 ----A---- C:\WINDOWS\system32\comsvcs.dll 2009-05-13 22:18:01 ----A---- C:\WINDOWS\system32\clbcatq.dll 2009-05-13 22:18:01 ----A---- C:\WINDOWS\system32\catsrvut.dll 2009-05-13 22:18:01 ----A---- C:\WINDOWS\system32\catsrv.dll 2009-05-13 22:17:57 ----A---- C:\WINDOWS\system32\servdeps.dll 2009-05-13 22:17:57 ----A---- C:\WINDOWS\system32\mmfutil.dll 2009-05-13 22:17:57 ----A---- C:\WINDOWS\system32\licwmi.dll 2009-05-13 22:17:56 ----A---- C:\WINDOWS\system32\cmprops.dll ======List of files/folders modified in the last 3 months====== 2009-06-29 16:14:27 ----A---- C:\WINDOWS\win.ini 2009-06-28 10:01:36 ----A---- C:\WINDOWS\system.ini 2009-05-25 00:24:06 ----N---- C:\WINDOWS\system32\mssph.dll 2009-05-13 07:04:17 ----A---- C:\WINDOWS\system32\wininet.dll 2009-05-13 07:04:17 ----A---- C:\WINDOWS\system32\mshtml.dll 2009-05-07 17:33:02 ----A---- C:\WINDOWS\system32\localspl.dll 2009-04-30 23:16:17 ----A---- C:\WINDOWS\system32\iertutil.dll 2009-04-30 23:16:16 ----A---- C:\WINDOWS\system32\ieframe.dll 2009-04-30 23:16:11 ----A---- C:\WINDOWS\system32\urlmon.dll 2009-04-30 23:16:10 ----A---- C:\WINDOWS\system32\jsproxy.dll 2009-04-30 23:16:09 ----A---- C:\WINDOWS\system32\iedkcs32.dll 2009-04-30 13:21:08 ----A---- C:\WINDOWS\system32\ie4uinit.exe 2009-04-15 16:53:29 ----A---- C:\WINDOWS\system32\rpcrt4.dll ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944] R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768] R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376] R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2009-06-15 5632] R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225856] R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-05 12032] R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560] R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032] R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192] R3 3xHybrid;3xHybrid service; C:\WINDOWS\system32\DRIVERS\3xHybrid.sys [2005-05-03 710144] R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800] R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152] R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2005-11-10 4064256] R3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688] R3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128] R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-05 12288] R3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2004-08-04 126686] R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-12-01 3535424] R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-07-29 34048] R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-07-29 12928] R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584] R3 Slntamr;Smart Link 56K Modem Driver; C:\WINDOWS\system32\DRIVERS\slntamr.sys [2004-08-04 404990] R3 SlWdmSup;SlWdmSup; C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2004-08-04 13240] R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-13 12288] R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152] R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 catchme;catchme; \??\D:\DOCUME~1\JOS&CL~1\LOCALS~1\Temp\catchme.sys [] S3 FXDRV;FXDRV; \??\E:\Fxdrv.sys [] S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920] S3 Mtlstrm;Mtlstrm; C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2004-08-04 1309184] S3 NtMtlFax;NtMtlFax; C:\WINDOWS\system32\DRIVERS\NtMtlFax.sys [2004-08-04 180360] S3 SlNtHal;SlNtHal; C:\WINDOWS\system32\DRIVERS\Slnthal.sys [2004-08-04 95424] S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320] S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336] S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Avast\aswUpdSv.exe [2009-02-05 18752] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Avast\ashServ.exe [2009-02-05 138680] R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); D:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664] R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe [2005-07-29 139264] R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2005-07-07 20543] R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-06-27 152984] R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2005-07-29 118843] R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2005-07-29 61503] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-12-01 131139] R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808] R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Avast\ashMaiSv.exe [2009-02-05 254040] R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Avast\ashWebSv.exe [2009-02-05 352920] S2 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2008-04-14 73796] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712] S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] -----------------EOF----------------- Info RSIT info.txt logfile of random's system information tool 1.06 2009-06-30 11:15:14 ======Uninstall list====== -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Reader 9.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001} Any Video Converter 2.7.4-->"C:\Program Files\Any Video Converter\unins000.exe" Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe avast! Antivirus-->C:\Program Files\Avast\aswRunDll.exe "C:\Program Files\Avast\Setup\setiface.dll",RunSetup Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe" Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" dBpoweramp Music Converter-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Music Converter.dat eMule-->"C:\Program Files\eMule\Uninstall.exe" EPSON Easy Photo Print-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3D78F2A2-C893-4ABD-B5FE-AD7011837755}\SETUP.EXE" -l0x40c UNINST EPSON Logiciel imprimante-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R EPSON Print CD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FF477885-5EA8-40D0-ADF3-D4C1B86FAEA4}\SETUP.EXE" -l0x40c -SYSTEM EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r Free - Kit de connexion-->C:\Program Files\Free.fr\uninstall.exe GetDataBack for NTFS-->"C:\Program Files\GetDataBack\GetDataBack for NTFS\Uninstall.exe" "C:\Program Files\GetDataBack\GetDataBack for NTFS\install.log" -u GIMP 2.4.6-->"C:\Program Files\GIMP-2.0\setup\unins000.exe" High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe" HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe" Hotfix for Windows XP (KB915800-v4)-->"C:\WINDOWS\$NtUninstallKB915800-v4$\spuninst\spuninst.exe" Java 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF} Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall LG PC Suite-->C:\Program Files\InstallShield Installation Information\{993960EE-CA4D-443F-8F88-E24260DD5FD2}\setup.exe -runfromtemp -l0x040c -removeonly LG USB Modem driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C3ABE126-2BB2-4246-BFE1-6797679B3579}\setup.exe" -l0x40c LG -removeonly Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe" Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0} Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE} Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE} Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE} Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE} Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE} Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE} Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE} Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE} Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE} Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE} Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE} Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9} Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE} Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE} Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE} Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe" Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} MIKSOFT Mobile Media Converter-->"C:\Program Files\MIKSOFT\Mobile Media Converter\unins000.exe" Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB969897)-->"C:\WINDOWS\ie8updates\KB969897-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB963027)-->"C:\WINDOWS\$NtUninstallKB963027$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Mise à jour pour Windows Internet Explorer 8 (KB969497)-->"C:\WINDOWS\ie8updates\KB969497-IE8\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} NVIDIA Drivers-->C:\WINDOWS\system32\nvuide.exe UninstallGUI NVIDIA ForceWare Network Access Manager-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{1F6423DE-7959-4178-80E0-023C7EAA5347} /l1036 PDFCreator-->C:\Program Files\PDFCreator\unins000.exe PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe" Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe SAMSUNG Mobile Composite Device Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\6\SSBCUninstall.exe Samsung Mobile phone USB driver Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe Samsung PC Studio 3-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x40c -removeonly Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08} Security Update for 2007 Microsoft Office System (KB969679)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C66E4A6C-6E07-4C63-8CCD-2493B5087C73} Security Update for Microsoft Office Excel 2007 (KB969682)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C03803BD-745A-46F8-8557-817DED578780} Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D} Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C} Security Update for Microsoft Office Word 2007 (KB969604)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {CF3D6499-709C-43D0-8908-BC5652656050} Security Update for Windows Search 4 - KB963093-->"C:\WINDOWS\$NtUninstallKB963093$\spuninst\spuninst.exe" Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D} Update for Microsoft Office Outlook 2007 (KB969907)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {74F98B24-AFBD-4800-9BD6-87D349B5C462} Update for Outlook 2007 Junk Email Filter (kb970012)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {DC4A962B-9EC2-469C-BC9C-87312ADAEE81} VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe Windows Driver Package - ASUSTeK (3xHybrid) MEDIA (05/05/2005 1.3.2.5)-->C:\PROGRA~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\34avstrm_1FB7ED192E32EA5CC3DF15EFC0D70E07C0493348\34avstrm.inf Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe" Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe" Windows Search 4.0-->"C:\WINDOWS\$NtUninstallKB940157$\spuninst\spuninst.exe" Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" ======Security center information====== AV: avast! antivirus 4.8.1335 [VPS 090629-0] FW: NVIDIA Firewall (disabled) ======System event log====== Computer Name: TOUR Event Code: 7023 Message: Le service Gestion d'applications s'est arrêté avec l'erreur : Le module spécifié est introuvable. Record Number: 1453 Source Name: Service Control Manager Time Written: 20090519101416.000000+120 Event Type: erreur User: Computer Name: TOUR Event Code: 7036 Message: Le service Gestion d'applications est entré dans l'état : arrêté. Record Number: 1452 Source Name: Service Control Manager Time Written: 20090519101416.000000+120 Event Type: Informations User: Computer Name: TOUR Event Code: 7035 Message: Un contrôle Démarrer a correctement été envoyé au service Gestion d'applications. Record Number: 1451 Source Name: Service Control Manager Time Written: 20090519101416.000000+120 Event Type: Informations User: TOUR\José & Claire Computer Name: TOUR Event Code: 7023 Message: Le service Gestion d'applications s'est arrêté avec l'erreur : Le module spécifié est introuvable. Record Number: 1450 Source Name: Service Control Manager Time Written: 20090519101416.000000+120 Event Type: erreur User: Computer Name: TOUR Event Code: 7036 Message: Le service Gestion d'applications est entré dans l'état : arrêté. Record Number: 1449 Source Name: Service Control Manager Time Written: 20090519101416.000000+120 Event Type: Informations User: =====Application event log===== Computer Name: TOUR Event Code: 4096 Message: Record Number: 307 Source Name: Avira AntiVir Time Written: 20090618080937.000000+120 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: TOUR Event Code: 1800 Message: Le service Centre de sécurité Windows a démarré. Record Number: 306 Source Name: SecurityCenter Time Written: 20090618080937.000000+120 Event Type: Informations User: Computer Name: TOUR Event Code: 1800 Message: Le service Centre de sécurité Windows a démarré. Record Number: 305 Source Name: SecurityCenter Time Written: 20090617083407.000000+120 Event Type: Informations User: Computer Name: TOUR Event Code: 4096 Message: Record Number: 304 Source Name: Avira AntiVir Time Written: 20090617083403.000000+120 Event Type: Informations User: AUTORITE NT\SYSTEM Computer Name: TOUR Event Code: 1002 Message: L'environnement s'est arrêté de façon inattendue et Explorer.exe a redémarré. Record Number: 303 Source Name: Winlogon Time Written: 20090616164255.000000+120 Event Type: Informations User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\Samsung\Samsung PC Studio 3 "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=15 "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 0, AuthenticAMD "PROCESSOR_REVISION"=2f00 "NUMBER_OF_PROCESSORS"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF-----------------
  4. joseclaire
    Bonjour, Je te remercie pour ta réponse, mais il y a une chose que je ne comprends pas : "tu supprimes les cracks présents" : si tu veux parler de logiciels crackés téléchargés illégalement : je n'en ai aucun! Justement après le dernier formatage il y a 2 mois j'avais décidé de ne plus avoir un seul logiciel cracké pour éviter ce genre de problème. Par contre, depuis que j'ai posté hier, on a fini par réussir à faire fonctionner avast, on lui a fait faire un scan, il a trouvé des fichiers infectés et les a supprimés. Depuis le pc tourne normalement et ne turbine plus comme il le faisait avant (ce qui avait été le signe pour moi que quelque chose n'allait pas). Donc j'espère que cela va continuer ainsi. Je sais que je n'aurais pas dû utiliser Combofix toute seule, mais je ne m'en suis rendue compte qu'après l'avoir fait. En fait j'ai suivi les conseils donnés à une personne qui avait le même message d'erreur que moi (ashavast n'est pas une application win32 valide). En général quand j'ai un pb sur le pc, j'évite de poster tout de suite, je commence d'abord par rechercher si d'autres ont eu le même pb, pour éviter d'encombrer les forums avec des pb déjà résolus. En tous les cas je te remercie vraiment d'avoir pris le temps de me répondre, et j'espère que je pourrais revenir vers toi si jamais mon pb n'était pas réglé comme je le pense. Claire
  5. joseclaire
    Bonjour, Depuis 2 jours, et pour la 2ème fois en 2 mois : antivirus ne fonctionne plus et la désinstal/réinstal ne résout rien. Il y a 2 mois c'était Avast (j'ai fini par faire un format C: et tout réinstaller et c'était OK). J'ai installer Antivir, mais là depuis 2 jours rebelotte : Antivir fonctionne plus, j'ai désinstaller et réinstaller Avast, mais il ne s'installe pas correctement. J'ai fait 3 scan online (à chaque fois on me trouve quelque chose qu'on me supprime mais je suis toujours infectée, car j'ai ce message : Ashavast n'est pas une application win32 valide. Donc en cherchant j'ai fini par tomber sur ComboFix et là zou je l'ai lancé, sans avoir vu d'avertissement comme quoi il fallait se faire assister etc... (j'avais juste lu qu'il fallait l'enregistrer sur le bureau et le nommer Bibitte!) Donc j'espère qu'il n'est jamais trop tard : je poste mon rapport et j'espère que l'un de vous pourra me donner la marche à suivre. ComboFix 09-06-26.02 - José & Claire 28/06/2009 9:56.1 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.1022.733 [GMT 2:00] Lancé depuis: d:\documents and settings\José & Claire\Bureau\Bibitte.exe FW: NVIDIA Firewall *disabled* {EDC10449-64D1-46c7-A59A-EC20D662F26D} . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\program files\Internet Explorer\fxavx.ini c:\windows\system32\ban_list.txt c:\windows\system32\drivers\down c:\windows\system32\drivers\down\15565171.exe c:\windows\system32\mdelk.exe c:\windows\system32\wintems.exe d:\documents and settings\José & Claire\Application Data\drivers\111wfs1intwq.sys d:\documents and settings\José & Claire\Application Data\Drivers\11s11ro1s1a2.sys d:\documents and settings\José & Claire\Application Data\drivers\downld d:\documents and settings\José & Claire\Application Data\drivers\downld\1009250.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1011093.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1011296.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1016109.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1019968.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1038703.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1043343.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1043828.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1138312.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1154375.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1156031.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1156109.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1156546.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1157593.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1157703.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\128781.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15234546.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15237703.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15238390.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15256546.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15507421.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15508625.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15509281.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15514953.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15517531.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15517625.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15521750.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15523781.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15523906.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15559750.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15561796.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15563468.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15658031.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15658312.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15795031.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15797343.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15797609.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15798796.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\15800437.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\162671.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16387125.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16478531.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16482921.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16485796.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16759484.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16760796.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16761546.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16769968.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16772515.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16772640.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16778453.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16781343.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16781500.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16798437.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16800265.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16800937.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16947828.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\16947859.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\17103125.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\17104187.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\17104406.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\17105125.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\17105328.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\17105515.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\177203.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\179796.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1807312.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1808046.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1808234.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\183046.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\191687.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1949796.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1955203.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1955375.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1955734.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\1957218.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\199765.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\201640.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\204265.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\234562.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\236531.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\241328.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\270671.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\272843.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\273156.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\274406.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\276296.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30273984.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30277343.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30278031.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30486187.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30487203.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30488078.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30493359.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30493375.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30499281.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30517296.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30518312.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30518750.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30607765.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30607812.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30719937.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30721093.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30721265.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30722734.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30722828.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\30722984.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31621406.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31625687.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31627312.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31935546.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31938781.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31939781.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31950375.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31950718.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31950937.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31957734.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31958046.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31958265.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31979593.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31983890.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31986312.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\31987046.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\323718.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\327203.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\329531.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\365843.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\369078.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\372296.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\373265.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\375531.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\376406.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\384453.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\385890.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\391562.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\393078.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\393093.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\393781.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\418296.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\421843.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\422281.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\426890.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\434687.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\444453.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\445625.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\446421.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\457281.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\458390.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\462390.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\464500.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\464625.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\464703.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\467218.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\468046.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\472562.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\474718.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\474937.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\478187.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\478531.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\480031.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\480265.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\481859.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\483781.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\496312.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\499515.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\499968.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\55199500.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\557828.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\559375.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\560578.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\565046.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\566625.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\566750.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\569953.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\571140.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\571296.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\586984.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\588437.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\588468.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\588734.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\589781.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\590437.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\599531.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\601484.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\601500.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\605171.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\607015.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\607078.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\615171.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\618859.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\632890.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\636484.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\637156.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\637843.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\638140.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\693421.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\693921.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\721812.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\722156.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\727218.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\733390.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\737468.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\749859.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\752281.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\752343.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\752671.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\753546.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\764062.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\818531.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\819171.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\819265.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\81937.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\819609.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\820328.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\820343.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\824609.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\825906.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\826015.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\826781.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\828390.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\828468.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\856875.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\889828.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\89453.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\996187.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\996531.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\996578.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\997781.exe d:\documents and settings\José & Claire\Application Data\drivers\downld\998625.exe d:\documents and settings\José & Claire\Application Data\drivers\winupgro.exe d:\documents and settings\José & Claire\Application Data\m\shared F:\Desktop.ini . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_111111S1RO1S1A -------\Legacy_111111S1RO1S1A -------\Legacy_111111S1RO1S1A -------\Legacy_SK9OU0S -------\Service_sK9Ou0s ((((((((((((((((((((((((((((( Fichiers créés du 2009-05-28 au 2009-06-28 )))))))))))))))))))))))))))))))))))) . 2009-06-28 07:09 . 2009-02-05 20:04 97480 ----a-w- c:\windows\system32\AvastSS.scr 2009-06-28 07:09 . 2009-02-05 20:08 93296 ----a-w- c:\windows\system32\drivers\aswmon.sys 2009-06-28 07:09 . 2003-03-18 19:20 1060864 ----a-w- c:\windows\system32\MFC71.dll 2009-06-28 07:09 . 2003-03-18 18:14 499712 ----a-w- c:\windows\system32\MSVCP71.dll 2009-06-28 07:09 . 2009-02-05 20:11 1256296 ----a-w- c:\windows\system32\aswBoot.exe 2009-06-28 07:08 . 2009-06-28 07:09 -------- d-----w- c:\program files\Avast 2009-06-27 21:57 . 2009-06-28 07:24 -------- d-----w- c:\program files\Windows Live Safety Center 2009-06-27 10:19 . 2009-06-27 10:20 -------- d-----w- c:\windows\avxoscan 2009-06-27 08:56 . 2009-06-27 08:56 -------- d-----w- c:\program files\Java 2009-06-23 13:26 . 2009-06-23 13:26 -------- d-----w- C:\3gptemp 2009-06-23 13:25 . 2009-06-23 13:57 -------- d-----w- c:\program files\MIKSOFT 2009-06-20 08:59 . 2009-06-20 09:15 -------- d-----w- d:\documents and settings\LocalService.AUTORITE NT\Local Settings\Application Data\Adobe 2009-06-20 08:48 . 2009-06-21 01:12 -------- d-----w- c:\program files\Windows Desktop Search 2009-06-20 08:48 . 2009-06-20 08:48 -------- d-----w- c:\windows\system32\GroupPolicy 2009-06-20 08:48 . 2008-03-07 17:02 98304 -c----w- c:\windows\system32\dllcache\nlhtml.dll 2009-06-20 08:48 . 2008-03-07 17:02 29696 -c----w- c:\windows\system32\dllcache\mimefilt.dll 2009-06-20 08:48 . 2008-03-07 17:02 192000 -c----w- c:\windows\system32\dllcache\offfilt.dll 2009-06-19 21:28 . 2009-06-19 21:28 -------- d-----w- c:\program files\Microsoft Works 2009-06-19 21:28 . 2009-06-19 21:28 -------- d-----w- c:\program files\MSBuild 2009-06-19 21:24 . 2009-06-19 21:28 -------- d-----w- c:\windows\SHELLNEW 2009-06-19 21:24 . 2009-06-19 21:24 -------- d--h--r- C:\MSOCache 2009-06-19 21:21 . 2009-06-19 21:21 -------- d-----w- c:\program files\Microsoft.Office.Professional.2007.FRENCH.REPACK.iSO-iND-David91 2009-06-19 19:33 . 2009-06-19 21:29 -------- d-----w- d:\documents and settings\All Users\Application Data\Microsoft Help 2009-06-19 13:37 . 2009-06-19 13:37 -------- d-----w- c:\windows\Sun 2009-06-19 13:36 . 2009-06-27 08:56 410984 ----a-w- c:\windows\system32\deploytk.dll 2009-06-15 21:03 . 2006-05-03 20:53 174592 ----a-w- c:\windows\system32\framedyn.dll 2009-06-15 21:03 . 2003-02-21 16:42 348160 ----a-w- c:\windows\system32\msvcr71.dll 2009-06-15 21:02 . 2005-08-29 23:49 94000 ----a-w- c:\windows\system32\drivers\ssm_mdm.sys 2009-06-15 21:02 . 2005-08-29 23:49 8336 ----a-w- c:\windows\system32\drivers\ssm_mdfl.sys 2009-06-15 21:02 . 2005-08-29 23:49 6176 ----a-w- c:\windows\system32\drivers\ssm_cmnt.sys 2009-06-15 21:02 . 2005-08-29 23:49 6176 ----a-w- c:\windows\system32\drivers\ssm_cm.sys 2009-06-15 21:02 . 2005-08-29 23:47 58320 ----a-w- c:\windows\system32\drivers\ssm_bus.sys 2009-06-15 21:02 . 2005-08-29 23:47 5840 ----a-w- c:\windows\system32\drivers\ssm_whnt.sys 2009-06-15 21:02 . 2005-08-29 23:47 5840 ----a-w- c:\windows\system32\drivers\ssm_wh.sys 2009-06-15 21:02 . 2009-06-15 21:03 -------- d-----w- c:\windows\system32\Samsung_USB_Drivers 2009-06-15 21:02 . 2009-06-15 21:22 5632 ----a-w- c:\windows\system32\drivers\StarOpen.sys 2009-06-15 21:02 . 2009-06-15 21:02 -------- d-----w- c:\program files\Samsung 2009-06-11 17:02 . 2009-06-13 16:51 -------- d-----w- c:\program files\Any Video Converter 2009-06-10 09:23 . 2009-06-10 09:23 -------- d-----w- c:\program files\Postit 2009-06-10 06:07 . 2009-04-30 21:16 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll 2009-06-10 06:07 . 2009-04-30 21:16 1985024 -c----w- c:\windows\system32\dllcache\iertutil.dll 2009-06-10 06:07 . 2009-04-30 21:16 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll 2009-06-10 06:07 . 2009-04-30 21:16 11064832 -c----w- c:\windows\system32\dllcache\ieframe.dll 2009-06-09 17:35 . 2009-06-09 17:35 14362 ----a-w- c:\windows\system32\SpoonUninstall-dBpoweramp Music Converter.dat 2009-06-09 17:35 . 2009-06-09 17:35 5433520 ----a-w- c:\windows\system32\SpoonUninstall.exe 2009-06-09 17:35 . 2009-06-18 14:02 -------- d-----w- c:\program files\dBpoweramp 2009-06-09 13:46 . 2009-06-09 14:00 -------- d-----w- c:\program files\PhotoFiltre 2009-06-04 17:44 . 2009-06-04 17:44 -------- d-----w- c:\program files\LG Electronics 2009-06-04 17:40 . 2009-06-18 14:02 -------- d-----w- c:\program files\LG PC Suite 2 2009-06-03 08:57 . 2009-06-03 08:57 -------- d-----w- c:\program files\MSXML 4.0 2009-06-02 09:50 . 2006-05-04 06:33 53248 ----a-w- c:\windows\system32\CommonDL.dll 2009-06-02 09:50 . 2005-11-24 00:34 82432 ----a-w- c:\windows\system32\msxml4r.dll 2009-06-02 09:50 . 2005-10-03 23:39 44544 ----a-w- c:\windows\system32\msxml4a.dll 2009-06-02 09:49 . 2009-06-05 14:39 -------- d-----w- d:\documents and settings\All Users\Application Data\LGMOBILEAX . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2009-06-20 08:49 . 2004-08-05 12:00 58376 ----a-w- c:\windows\system32\perfc00C.dat 2009-06-20 08:49 . 2004-08-05 12:00 392918 ----a-w- c:\windows\system32\perfh00C.dat 2009-06-18 14:02 . 2009-05-28 23:03 -------- d-----w- c:\program files\Windows Media Connect 2 2009-06-15 21:02 . 2009-05-13 20:50 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-06-15 21:01 . 2009-05-14 16:46 -------- d-----w- c:\program files\Fichiers communs\Adobe 2009-05-24 22:24 . 2008-05-26 20:18 350208 ------w- c:\windows\system32\mssph.dll 2009-05-19 07:28 . 2009-05-19 06:15 -------- d-----w- c:\program files\eMule 2009-05-18 16:50 . 2009-05-18 16:50 -------- d-----w- c:\program files\PDFCreator 2009-05-18 14:33 . 2009-05-18 14:33 -------- d-----w- d:\documents and settings\All Users\Application Data\UDL 2009-05-18 14:32 . 2009-05-18 14:32 -------- d-----w- c:\program files\EPSON Print CD 2009-05-18 14:32 . 2009-05-18 14:30 -------- d-----w- c:\program files\epson 2009-05-18 11:44 . 2009-05-18 11:44 -------- d-----w- c:\program files\GIMP-2.0 2009-05-16 14:03 . 2009-05-16 14:03 -------- d-----w- c:\program files\DIFX 2009-05-16 08:35 . 2009-05-13 20:21 76507 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2009-05-14 20:38 . 2009-05-14 20:38 -------- d-----w- d:\documents and settings\All Users\Application Data\Malwarebytes 2009-05-14 17:15 . 2009-05-14 17:14 -------- d-----w- c:\program files\GetDataBack 2009-05-14 10:20 . 2009-05-14 10:20 42168 ----a-w- d:\documents and settings\Aurel\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-05-14 09:43 . 2009-05-14 09:43 -------- d-----w- d:\documents and settings\All Users\Application Data\EPSON 2009-05-14 05:58 . 2009-05-14 09:43 -------- d-----w- d:\documents and settings\All Users\Application Data\nView_Profiles 2009-05-13 21:23 . 2009-05-13 21:23 -------- d-----w- c:\program files\VideoLAN 2009-05-13 21:01 . 2009-05-13 21:01 -------- d-----w- c:\program files\NVIDIA Corporation 2009-05-13 20:59 . 2009-05-13 20:47 -------- d-----w- c:\program files\Fichiers communs\InstallShield 2009-05-13 20:50 . 2009-05-13 20:50 -------- d-----w- c:\program files\Realtek 2009-05-13 20:30 . 2009-05-13 20:30 -------- d-----w- c:\program files\Free.fr 2009-05-13 20:21 . 2009-05-13 20:21 -------- d-----w- c:\program files\microsoft frontpage 2009-05-13 20:20 . 2009-05-13 20:20 -------- d-----w- c:\program files\Services en ligne 2009-05-13 20:19 . 2009-05-13 20:19 21892 ----a-w- c:\windows\system32\emptyregdb.dat 2009-05-13 05:04 . 2004-08-05 12:00 915456 ----a-w- c:\windows\system32\wininet.dll 2009-05-12 13:12 . 2009-05-13 20:51 26144 ----a-w- c:\windows\system32\spupdsvc.exe 2009-05-07 15:33 . 2004-08-05 12:00 348672 ----a-w- c:\windows\system32\localspl.dll 2009-04-19 19:50 . 2004-08-05 12:00 1847296 ----a-w- c:\windows\system32\win32k.sys 2009-04-15 14:53 . 2004-08-05 12:00 585216 ----a-w- c:\windows\system32\rpcrt4.dll . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-12-01 7311360] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2005-12-01 86016] "nTrayFw"="c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe" [2005-07-29 270336] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-06-27 148888] "avast!"="c:\progra~1\Avast\ashDisp.exe" [2009-06-28 81000] "nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2005-12-01 1519616] "High Definition Audio Property Page Shortcut"="HDAShCut.exe" - c:\windows\system32\HdAShCut.exe [2005-01-07 61952] "RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2005-11-10 15473664] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] d:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Post-it© Software Notes Lite.lnk - c:\program files\Postit\PsnLite.exe [2004-10-15 2080768] Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904] [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\eMule\\emule.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= R3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [16/05/2009 16:03 710144] S1 aswSP;avast! Self Protection; [x] S2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys --> c:\windows\system32\DRIVERS\aswFsBlk.sys [?] S3 FXDRV;FXDRV;\??\e:\fxdrv.sys --> e:\Fxdrv.sys [?] [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] "c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP . Contenu du dossier 'Tâches planifiées' 2009-06-28 c:\windows\Tasks\User_Feed_Synchronization-{9F72F461-7BED-46CB-883F-8495038FAB3C}.job - c:\windows\system32\msfeedssync.exe [2009-03-08 02:31] . . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.google.fr/ig?hl=fr&source=iglk IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 LSP: %SYSTEMROOT%\system32\nvappfilter.dll Trusted Zone: microsoft.com\update Trusted Zone: microsoft.com\windowsupdate DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://www.bitdefender.fr/scan_fr/scan8/oscan8.cab . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-06-28 10:01 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'lsass.exe'(864) c:\windows\system32\nvappfilter.dll - - - - - - - > 'explorer.exe'(2560) c:\progra~1\WINDOW~2\wmpband.dll c:\program files\Windows Desktop Search\deskbar.dll c:\program files\Windows Desktop Search\fr-fr\dbres.dll.mui c:\program files\Windows Desktop Search\dbres.dll c:\program files\Windows Desktop Search\wordwheel.dll c:\program files\Windows Desktop Search\fr-fr\msnlExtRes.dll.mui c:\program files\Windows Desktop Search\msnlExtRes.dll c:\windows\system32\eappprxy.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Autres processus actifs ------------------------ . d:\documents and settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE c:\program files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe c:\windows\system32\nvsvc32.exe c:\windows\system32\searchindexer.exe c:\program files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe c:\program files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe c:\windows\system32\wscntfy.exe c:\windows\system32\rundll32.exe c:\progra~1\Postit\PSNGive.exe c:\windows\system32\searchprotocolhost.exe c:\windows\system32\searchfilterhost.exe c:\windows\system32\searchprotocolhost.exe . ************************************************************************** . Heure de fin: 2009-06-28 10:04 - La machine a redémarré ComboFix-quarantined-files.txt 2009-06-28 08:04 Avant-CF: 26 215 055 360 octets libres Après-CF: 25 924 378 624 octets libres WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP dition familiale" /noexecute=optin /fastdetect 458 --- E O F --- 2009-06-21 00:33 J'ai oublié de remercier d'avance ceux qui pourront m'aider...
×
×
  • Créer...