Mykimax

Et voici donc le scan de GMER: Infos: J'ai scannè le disque C (windows) le disque S (swap) et le disque T (temp) pour être bien sûr GMER 1.0.15.15020 [gmer.exe] - http://www.gmer.net Rootkit scan 2009-08-11 21:24:54 Windows 5.1.2600 Service Pack 3 ---- System - GMER 1.0.15 ---- SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwConnectPort [0xAE5B3FC0] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwCreateFile [0xAE5B0C80] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwCreateKey [0xAE5CB170] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwCreatePort [0xAE5B4580] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwCreateProcess [0xAE5C8900] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwCreateProcessEx [0xAE5C8B10] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwCreateSection [0xAE5CCB10] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwCreateWaitablePort [0xAE5B4670] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwDeleteFile [0xAE5B1210] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwDeleteKey [0xAE5CB9F0] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwDeleteValueKey [0xAE5CB7A0] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwDuplicateObject [0xAE5C8280] SSDT spbz.sys ZwEnumerateKey [0xF72A4CA4] SSDT spbz.sys ZwEnumerateValueKey [0xF72A5032] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwLoadKey [0xAE5CBF10] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwLoadKey2 [0xAE5CBF90] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwMapViewOfSection [0xAE5CCD90] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwOpenFile [0xAE5B1070] SSDT spbz.sys ZwOpenKey [0xF72860C0] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwOpenProcess [0xAE5CA180] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwOpenThread [0xAE5C9F40] SSDT spbz.sys ZwQueryKey [0xF72A510A] SSDT spbz.sys ZwQueryValueKey [0xF72A4F8A] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwRenameKey [0xAE5CC6F0] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwReplaceKey [0xAE5CC150] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwRequestWaitReplyPort [0xAE5B3BE0] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwRestoreKey [0xAE5CC540] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwSecureConnectPort [0xAE5B4190] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwSetInformationFile [0xAE5B1440] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwSetValueKey [0xAE5CB4E0] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwSystemDebugControl [0xAE5C9200] SSDT \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ZwTerminateProcess [0xAE5C9080] INT 0x62 ? 8A3CEBF8 INT 0x63 ? 8A3D1BF8 INT 0x73 ? 8A3D1BF8 INT 0x82 ? 8A3CEBF8 INT 0x84 ? 8A28BF00 INT 0x94 ? 8A28BF00 INT 0xA4 ? 8A35CBF8 INT 0xB4 ? 8A35CBF8 ---- Kernel code sections - GMER 1.0.15 ---- .text ntkrnlpa.exe!ZwCallbackReturn + 2C7C 80504518 12 Bytes [80, 45, 5B, AE, 00, 89, 5C, ...] {ADD BYTE [EBP+0x5b], 0xae; ADD [ECX-0x74ef51a4], CL; POP ESP; SCASB } .text ntkrnlpa.exe!ZwCallbackReturn + 2DAC 80504648 2 Bytes [80, A1] .text ntkrnlpa.exe!ZwCallbackReturn + 2DC4 80504660 2 Bytes [40, 9F] {INC EAX; LAHF } ? spbz.sys Le fichier spécifié est introuvable. ! ? srescan.sys Le fichier spécifié est introuvable. ! .text USBPORT.SYS!DllUnload F6F368AC 5 Bytes JMP 8A28B4E0 .text aucs3njm.SYS F67B2386 35 Bytes [00, 00, 00, 00, 00, 00, 20, ...] .text aucs3njm.SYS F67B23AA 24 Bytes [00, 00, 00, 00, 00, 00, 00, ...] .text aucs3njm.SYS F67B23C4 3 Bytes [00, 70, 02] {ADD [EAX+0x2], DH} .text aucs3njm.SYS F67B23C9 1 Byte [30] .text aucs3njm.SYS F67B23C9 11 Bytes [30, 00, 00, 00, 5C, 02, 00, ...] {XOR [EAX], AL; ADD [EAX], AL; POP ESP; ADD AL, [EAX]; ADD [EAX], AL; ADD [EAX], AL} .text ... ---- Kernel IAT/EAT - GMER 1.0.15 ---- IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!KfAcquireSpinLock] 18C4830E IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!READ_PORT_UCHAR] 1C8D9E88 IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!KeGetCurrentIrql] 9E880000 IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!KfRaiseIrql] 00001CA9 IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!KfLowerIrql] 0E798366 IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!HalGetInterruptVector] 74AAB000 IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!HalTranslateBusAddress] 8186C636 IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!KeStallExecutionProcessor] 1A00001C IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!KfReleaseSpinLock] 1C8386C6 IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!READ_PORT_BUFFER_USHORT] C6020000 IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!READ_PORT_USHORT] 001C8E86 IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!WRITE_PORT_BUFFER_USHORT] 86C60200 IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[HAL.dll!WRITE_PORT_UCHAR] 00001CAA IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[WMILIB.SYS!WmiSystemControl] 8800001C IAT \SystemRoot\System32\Drivers\aucs3njm.SYS[WMILIB.SYS!WmiCompleteRequest] 001CB19E IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisRegisterProtocol] [AE5B8B20] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisOpenAdapter] [AE5B8930] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisCloseAdapter] [AE5B9260] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\raspppoe.sys[NDIS.SYS!NdisDeregisterProtocol] [AE5B6E90] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisDeregisterProtocol] [AE5B6E90] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisRegisterProtocol] [AE5B8B20] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisOpenAdapter] [AE5B8930] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\psched.sys[NDIS.SYS!NdisCloseAdapter] [AE5B9260] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisRegisterProtocol] [AE5B8B20] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisDeregisterProtocol] [AE5B6E90] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisCloseAdapter] [AE5B9260] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\System32\Drivers\NDProxy.SYS[NDIS.SYS!NdisOpenAdapter] [AE5B8930] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [F7296E9C] spbz.sys IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisCloseAdapter] [AE5B9260] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisOpenAdapter] [AE5B8930] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\tcpip.sys[NDIS.SYS!NdisRegisterProtocol] [AE5B8B20] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisDeregisterProtocol] [AE5B6E90] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisRegisterProtocol] [AE5B8B20] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisOpenAdapter] [AE5B8930] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\wanarp.sys[NDIS.SYS!NdisCloseAdapter] [AE5B9260] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\arp1394.sys[NDIS.SYS!NdisCloseAdapter] [AE5B9260] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\arp1394.sys[NDIS.SYS!NdisOpenAdapter] [AE5B8930] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\arp1394.sys[NDIS.SYS!NdisDeregisterProtocol] [AE5B6E90] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) IAT \SystemRoot\system32\DRIVERS\arp1394.sys[NDIS.SYS!NdisRegisterProtocol] [AE5B8B20] \SystemRoot\System32\vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) ---- User IAT/EAT - GMER 1.0.15 ---- IAT C:\WINDOWS\Explorer.EXE[1420] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [00C42F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\Explorer.EXE[1420] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [00C42CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\Explorer.EXE[1420] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [00C42D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\Explorer.EXE[1420] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [00C42CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\Explorer.EXE[1852] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [01DE2F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\Explorer.EXE[1852] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [01DE2CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\Explorer.EXE[1852] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [01DE2D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\Explorer.EXE[1852] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [01DE2CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT G:\Progs anti verolles\gmer.exe[2020] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [00802F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT G:\Progs anti verolles\gmer.exe[2020] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [00802CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT G:\Progs anti verolles\gmer.exe[2020] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [00802D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT G:\Progs anti verolles\gmer.exe[2020] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [00802CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe[2764] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [00A32F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe[2764] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [00A32CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe[2764] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [00A32D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe[2764] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [00A32CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\CTHELPER.EXE[2780] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [00922F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\CTHELPER.EXE[2780] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [00922CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\CTHELPER.EXE[2780] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [00922D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\CTHELPER.EXE[2780] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [00922CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Microsoft IntelliType Pro\itype.exe[2836] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [00DF2F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Microsoft IntelliType Pro\itype.exe[2836] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [00DF2CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Microsoft IntelliType Pro\itype.exe[2836] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [00DF2D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Microsoft IntelliType Pro\itype.exe[2836] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [00DF2CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\system32\ctfmon.exe[2924] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [00512F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\system32\ctfmon.exe[2924] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [00512CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\system32\ctfmon.exe[2924] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [00512D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\system32\ctfmon.exe[2924] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [00512CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe[2940] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [00802F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe[2940] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [00802CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe[2940] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [00802D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe[2940] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [00802CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Logitech\SetPoint\SetPoint.exe[3048] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [00B92F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Logitech\SetPoint\SetPoint.exe[3048] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [00B92CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Logitech\SetPoint\SetPoint.exe[3048] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [00B92D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Logitech\SetPoint\SetPoint.exe[3048] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [00B92CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE[3468] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [00972F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE[3468] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [00972CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE[3468] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [00972D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE[3468] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [00972CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\SYSTEM32\CTXFISPI.EXE[3812] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtCreateFile] [00952F30] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\SYSTEM32\CTXFISPI.EXE[3812] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDeviceIoControlFile] [00952CA0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\SYSTEM32\CTXFISPI.EXE[3812] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtClose] [00952D00] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) IAT C:\WINDOWS\SYSTEM32\CTXFISPI.EXE[3812] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!NtDuplicateObject] [00952CD0] C:\Program Files\Fichiers communs\Logishrd\LVMVFM\LVPrcInj.dll (Camera Helper Library./Logitech Inc.) ---- Devices - GMER 1.0.15 ---- Device \FileSystem\Ntfs \Ntfs 87D0D1F8 AttachedDevice \FileSystem\Ntfs \Ntfs SiWinAcc.sys (Windows Accelerator Driver/Silicon Image, Inc.) Device \FileSystem\Fastfat \FatCdrom 8A35B1F8 Device \Driver\Tcpip \Device\Ip vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbohci \Device\USBPDO-0 8A25D1F8 Device \Driver\usbehci \Device\USBPDO-1 89F331F8 Device \Driver\dmio \Device\DmControl\DmIoDaemon 8A35E1F8 Device \Driver\dmio \Device\DmControl\DmConfig 8A35E1F8 Device \Driver\dmio \Device\DmControl\DmPnP 8A35E1F8 Device \Driver\dmio \Device\DmControl\DmInfo 8A35E1F8 Device \Driver\NetBT \Device\NetBT_Tcpip_{B61831AA-61F7-4BA6-95E8-C25B164FC1E5} 87EFF1F8 Device \Driver\PCI_PNP9708 \Device\00000055 spbz.sys Device \Driver\Tcpip \Device\Tcp vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Ftdisk \Device\HarddiskVolume1 8A3CF1F8 Device \Driver\Ftdisk \Device\HarddiskVolume2 8A3CF1F8 Device \Driver\Cdrom \Device\CdRom0 89F4B500 Device \Driver\Ftdisk \Device\HarddiskVolume3 8A3CF1F8 Device \Driver\Cdrom \Device\CdRom1 89F4B500 Device \Driver\Ftdisk \Device\HarddiskVolume4 8A3CF1F8 Device \Driver\NetBT \Device\NetBT_Tcpip_{5D32291C-C872-4CC7-9DC7-526A3929118B} 87EFF1F8 Device \Driver\Cdrom \Device\CdRom2 89F4B500 Device \Driver\Ftdisk \Device\HarddiskVolume5 8A3CF1F8 Device \Driver\Ftdisk \Device\HarddiskVolume6 8A3CF1F8 Device \Driver\Ftdisk \Device\HarddiskVolume7 8A3CF1F8 Device \Driver\nvata \Device\00000077 8A35C1F8 Device \Driver\NetBT \Device\NetBt_Wins_Export 87EFF1F8 Device \Driver\NetBT \Device\NetbiosSmb 87EFF1F8 Device \Driver\nvata \Device\00000079 8A35C1F8 Device \Driver\Tcpip \Device\Udp vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\RawIp vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbohci \Device\USBFDO-0 8A25D1F8 Device \Driver\usbehci \Device\USBFDO-1 89F331F8 Device \Driver\nvata \Device\0000007a 8A35C1F8 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 87D6D1F8 Device \Driver\nvata \Device\NvAta1 8A35C1F8 Device \Driver\Tcpip \Device\IPMULTICAST vsdatant.sys (TrueVector Device Driver/Check Point Software Technologies LTD) Device \FileSystem\MRxSmb \Device\LanmanRedirector 87D6D1F8 Device \Driver\nvata \Device\NvAta2 8A35C1F8 Device \Driver\Ftdisk \Device\FtControl 8A3CF1F8 Device \Driver\sptd \Device\289244708 spbz.sys Device \Driver\aucs3njm \Device\Scsi\aucs3njm1 89EE2500 Device \Driver\Si3114 \Device\Scsi\Si31141Port3Path1Target0Lun0 8A3CD1F8 Device \Driver\Si3114 \Device\Scsi\Si31141 8A3CD1F8 Device \Driver\Si3114 \Device\Scsi\Si31141Port3Path0Target0Lun0 8A3CD1F8 Device \Driver\Si3114 \Device\Scsi\Si31141Port3Path3Target0Lun0 8A3CD1F8 Device \Driver\Si3114 \Device\Scsi\Si31141Port3Path2Target0Lun0 8A3CD1F8 Device \Driver\adp3132 \Device\Scsi\adp31321Port2Path0Target2Lun0 8A35D1F8 Device \Driver\adp3132 \Device\Scsi\adp31321Port2Path0Target7eLun0 8A35D1F8 Device \Driver\adp3132 \Device\Scsi\adp31321 8A35D1F8 Device \Driver\adp3132 \Device\Scsi\adp31321Port2Path0Target1Lun0 8A35D1F8 Device \Driver\aucs3njm \Device\Scsi\aucs3njm1Port6Path0Target0Lun0 89EE2500 Device \FileSystem\Fastfat \Fat 8A35B1F8 AttachedDevice \FileSystem\Fastfat \Fat SiWinAcc.sys (Windows Accelerator Driver/Silicon Image, Inc.) AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) AttachedDevice \FileSystem\Fastfat \Fat InCDrec.SYS (InCD File System Recognizer/Nero AG) Device \FileSystem\Cdfs \Cdfs 87C991F8 ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x1F 0xA8 0xF8 0x95 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xE0 0x2F 0x15 0xC4 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xBE 0xC1 0xC8 0xCF ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x1F 0xA8 0xF8 0x95 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xE0 0x2F 0x15 0xC4 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0xBE 0xC1 0xC8 0xCF ... Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\System Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\System@OODEFRAG11.00.00.01WORKSTATION 4711B31E37361BD1A2957D756F3BBFFE10A2BEB839A44771B212A2D3141B2952DA8AEF2539717D3F 9055A4425575F450F836D2C50A55AB3487DE5D35CD9B41DCF7E87571142FC833A5E7F3BC3F6E7FEA 2 B8679C7F1556157CBB6695920AF7DD33FEAA4FBFBE729C63AEC2A47AB53F8214E34EE2AD4200E832 0 D8FEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC7 4 CFEBC9E127BECC74CA6A0AC4980AC7933A9C6AECB7A5D14075D575E7D6A3B9808A6A0AC4980AC793 3 BEED3901D2B7B73015910768B688E11C4A6243B5AE6AC81659A5715AE82F55C59C5510A21EDED96D B 5E926195958BD543945997D1972054B3FA0D2C9B64118352C0F3ECA27566DA85E920F4604A2F2209 E 3C562F6C5C51B262DEEFF02DFCFC6AE3D4B93FBEC9951C87CC1904146C17D78BB0D8503324D9E811 1 74BE4A3F6E3646F44C7C7AC0587C456BFF26D5D5CD51B457351EBEDE7DE4C4F60BAC169E7C1E1ADD E 85312AFA0D63A8759B1F273DEE4B46B6488F11ECB500D23669A83EAB22E6B389624C654285FC0F5C 6 83B2CFCB40F3B13944E841CC46B85FA56BBD6C4A0BBC78E236DFE92E3DCCDC702679A300FCF8583E 5 BF24FE0AB806F15423DC576EEBE61A5D6D0FCBAC0DDD6CE5CC978C7A3CBBE63DFD3F47155828C30A 0 BEC2B51C93EBD7FA89EEFF9606BE5649A38EC0447A581F0279AC ---- EOF - GMER 1.0.15 ----

Merci, je posterai ça dans la soirèe j'ai ètè pas mal occupè ces derniers jours Ya pas de soucis...tout le monde à droit à des vacances Au cas où tu ne serai plus dispo je tiens a te remercier pour ton aide qui m'a ètè tès prècieuse En tout cas j'ai vraiment ètè bluffè par la qualitè de l'assistance proposèe sur ce forum;chapeau bas messieurs j'ai rarement vu ça!

Bonjour, Voici donc le scan d'Usbfix: ############################## | UsbFix V6.014 | User : Mykimax (Administrateurs) # PC-MYKI Update on 04/08/09 by Chiquitine29 & C_XX Start at: 22:13:16 | 05/08/2009 Website : http://pagesperso-orange.fr/NosTools/index.html AMD Athlon 64 FX-60 Dual Core Processor Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3 Internet Explorer 8.0.6001.18702 Windows Firewall Status : Enabled AV : AVG Anti-Virus Free 8.5 [ Enabled | Updated ] FW : ZoneAlarm Pro Firewall[ (!) Disabled ]8.0.298.004 A:\ -> Lecteur de disquettes 3 ½ pouces C:\ -> Disque fixe local # 29,78 Go (21,87 Go free) [sYSTEME] # FAT32 D:\ -> Disque CD-ROM E:\ -> Disque CD-ROM F:\ -> Disque fixe local # 931,51 Go (437,96 Go free) [VIDEOS] # NTFS G:\ -> Disque fixe local # 440 Go (264,98 Go free) [DONNEES] # NTFS H:\ -> Disque fixe local # 279,47 Go (78,67 Go free) [EXTERNE] # NTFS I:\ -> Disque CD-ROM J:\ -> Disque fixe local # 139,73 Go (139,66 Go free) [JEUX] # NTFS K:\ -> Disque fixe local # 931,5 Go (335,26 Go free) [bIGDUR] # NTFS L:\ -> Disque amovible # 3,82 Go (796,36 Mo free) [R2_TURBO] # FAT32 M:\ -> Disque amovible # 1,87 Go (1,87 Go free) # FAT N:\ -> Disque fixe local # 55,86 Go (55,86 Go free) [MINIDUR] # FAT32 S:\ -> Disque fixe local # 7,59 Go (7,09 Go free) [sWAP] # exFAT T:\ -> Disque fixe local # 34,46 Go (28,88 Go free) [TEMP] # NTFS Z:\ -> Disque fixe local # 25,76 Go (18,38 Go free) [GHOST] # NTFS ############################## | Processus actifs | C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Creative\Shared Files\CTAudSvc.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe C:\WINDOWS\CTHELPER.EXE C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\Program Files\Microsoft IntelliType Pro\itype.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\SYSTEM32\CTXFISPI.EXE C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wbem\wmiprvse.exe ################## | Fichiers # Dossiers infectieux | Présent ! H:\autorun.inf ################## | Other | http://www.virustotal.com | ################## | Registre # Clés Run infectieuses | Présent ! HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe ################## | Registre # Mountpoints2 | ################## | ! Fin du rapport # UsbFix V6.014 ! | _Quelques petites prècisions: l'autorun du disque H (firewire) est normalement ce qui permet de remplacer l'icone habituelle du disque par une autre dans le poste de travail=>donc à priori pas de soucis de ce côtè là je ne sais pas à quoi c'est du,mais une fois le scan Usbfix terminè le processus LVPrcSrv.exe c'est bloquè à 100% et fesait ramer le PC les 2 processus IEXPLORER.exe tournent même sans qu'aucune page internet ne soit ouverte.Ya apparemment pas mal de monde qui a eu ce probléme,le plus souvent c'est du a des composants ou spywares installès en même temps qu'un programme (genre barre d'outils Msn ,messenger +,etc) va falloir que j'aprofondisse mes recherches afin de trouver le coupable... Dailleurs j'ai bien un processus invisible puisque si je compare le gestionnaire de tâches à Tune Up process manager ya 400mo de diffèrence entre les deux

J'attend d'avoir ton avis avant de crier victoire En tout cas apparemment je n'ai plus de Malwares Ma conso mèmoire a diminuè même si elle reste encore bien trop èlevèe;c'est vraiment bizarre cette histoire Apparement j'ai toujours ce problème de processus invisible Tiens en ce moment par exemple avec juste AVG et Zone Alarme en tâche de fond et une page internet ouverte je suis a 629mo!! Dailleurs je vois que j'ai 2 process Iexplorer (c'est normal ou pas?) Le premier me bouffe a lui tout seul 127mo! (j'hallucine là; 1page Iexplorer 8 bouffe autant??) Le deuxième processus Iexplorer lui me bouffe 20mo (ce qui me parait normal) Il doit y avoir un problème quelque part,mais franchement je patauge...d'où ça pourrait venir?

Voici histoire de vèrifier mes derniers scans MBAM et RSIT Malwarebytes' Anti-Malware 1.40 Version de la base de données: 2560 Windows 5.1.2600 Service Pack 3 04/08/2009 21:33:32 mbam-log-2009-08-04 (21-33-32).txt Type de recherche: Examen complet (C:\|T:\|Z:\|) Eléments examinés: 124924 Temps écoulé: 9 minute(s), 55 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) _RSIT: Logfile of random's system information tool 1.06 (written by random/random) Run by Mykimax at 2009-08-04 21:37:41 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 22 GB (74%) free of 30 GB Total RAM: 2046 MB (69% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:37:54, on 04/08/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Creative\Shared Files\CTAudSvc.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe C:\WINDOWS\CTHELPER.EXE C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\Program Files\Microsoft IntelliType Pro\itype.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\WINDOWS\SYSTEM32\CTXFISPI.EXE C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\Documents and Settings\Mykimax\Bureau\Progs anti verolles\RSIT.exe C:\Program Files\trend micro\Mykimax.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll" O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe" O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1248296631359 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1248296624484 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareup...15108/CTPID.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CTAELicensing.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTServ.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: MaxSyncService (NTService1) - - C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZONELABS\vsmon.exe -- End of file - 10037 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Maintenance en 1 clic.job C:\WINDOWS\tasks\AppleSoftwareUpdate.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}] Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-07-15 1586472] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-08-04 1111320] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-24 259696] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll [2009-07-28 669168] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}] Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-07-24 470512] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-22 41368] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-24 259696] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2009-02-18 981384] "AudioDrvEmulator"=C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe [2005-11-04 49152] "CTHelper"=C:\WINDOWS\CTHELPER.EXE [2006-05-24 17920] "VolPanel"=C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe [2008-08-06 233576] "AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-07-23 1948440] "itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2009-05-28 1501064] "amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824] "Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-12-18 76304] "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-05-26 413696] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-07-24 39408] C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2009-05-16 155648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter] C:\WINDOWS\system32\avgrsstx.dll [2009-07-23 11952] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn] c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2009-02-19 72208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync" ======List of files/folders created in the last 1 months====== 2009-08-04 00:22:47 ----HD---- C:\$AVG8.VAULT$ 2009-08-03 21:33:29 ----D---- C:\Program Files\trend micro 2009-08-03 21:33:28 ----D---- C:\rsit 2009-08-03 20:30:07 ----D---- C:\Documents and Settings\Mykimax\Application Data\Malwarebytes 2009-08-03 20:30:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-08-03 20:30:02 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-08-01 04:56:46 ----D---- C:\WINDOWS\Sun 2009-07-31 21:54:25 ----D---- C:\Documents and Settings\Mykimax\Application Data\atitray 2009-07-31 21:53:53 ----D---- C:\Program Files\Ray Adams 2009-07-31 20:59:35 ----D---- C:\Documents and Settings\Mykimax\Application Data\Logitech 2009-07-31 20:58:29 ----A---- C:\WINDOWS\system32\BtCoreIf.dll 2009-07-31 20:58:28 ----A---- C:\WINDOWS\system32\KemXML.dll 2009-07-31 20:58:28 ----A---- C:\WINDOWS\system32\KemWnd.dll 2009-07-31 20:58:28 ----A---- C:\WINDOWS\system32\KemUtil.dll 2009-07-31 20:58:28 ----A---- C:\WINDOWS\system32\kemutb.dll 2009-07-31 19:38:12 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2 2009-07-30 21:59:49 ----A---- C:\WINDOWS\system32\vfwwdm32.dll 2009-07-30 21:53:48 ----A---- C:\WINDOWS\system32\LVUI2RC.dll 2009-07-30 21:53:48 ----A---- C:\WINDOWS\system32\LVUI2.dll 2009-07-30 21:53:48 ----A---- C:\WINDOWS\system32\LVCodec2.dll 2009-07-30 21:53:47 ----A---- C:\WINDOWS\system32\lvcoinst.ini 2009-07-30 21:53:47 ----A---- C:\WINDOWS\system32\lvci1110.dll 2009-07-30 20:54:25 ----D---- C:\Documents and Settings\All Users\Application Data\Logitech 2009-07-30 12:53:18 ----D---- C:\WINDOWS\system32\appmgmt 2009-07-30 12:53:14 ----D---- C:\Documents and Settings\Mykimax\Application Data\Leadertech 2009-07-30 12:31:18 ----D---- C:\Program Files\Fichiers communs\LogiShrd 2009-07-30 12:31:18 ----D---- C:\Documents and Settings\All Users\Application Data\LogiShrd 2009-07-30 08:03:52 ----D---- C:\Program Files\Maxtor 2009-07-30 08:03:43 ----D---- C:\WINDOWS\Downloaded Installations 2009-07-28 04:17:29 ----A---- C:\WINDOWS\NeroDigital.ini 2009-07-27 18:47:04 ----A---- C:\WINDOWS\WORDPAD.INI 2009-07-27 18:22:35 ----D---- C:\Program Files\ITE 2009-07-27 18:22:35 ----A---- C:\WINDOWS\system32\Msstdfmt.dll 2009-07-27 18:22:24 ----A---- C:\WINDOWS\IsUninst.exe 2009-07-27 03:50:44 ----D---- C:\Documents and Settings\Mykimax\Application Data\Real 2009-07-27 03:20:42 ----D---- C:\Documents and Settings\Mykimax\Application Data\CyberLink 2009-07-27 03:19:56 ----D---- C:\Documents and Settings\All Users\Application Data\CyberLink 2009-07-27 03:19:39 ----N---- C:\WINDOWS\system32\msxml3a.dll 2009-07-27 03:19:27 ----D---- C:\Program Files\CyberLink 2009-07-27 03:14:50 ----D---- C:\Program Files\Webteh 2009-07-27 03:09:58 ----D---- C:\Program Files\KC Softwares 2009-07-27 03:02:54 ----D---- C:\Documents and Settings\Mykimax\Application Data\Media Player Classic 2009-07-27 03:02:31 ----D---- C:\Program Files\Media Player Classic 2009-07-27 02:42:25 ----D---- C:\Documents and Settings\Mykimax\Application Data\DivX 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\vxblock.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxwave.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxsfs.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxmas.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxinsi64.exe 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxdrv.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxcpyi64.exe 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxafs.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\px.dll 2009-07-27 02:36:45 ----D---- C:\Program Files\Fichiers communs\DivX Shared 2009-07-27 02:36:45 ----D---- C:\Program Files\DivX 2009-07-27 02:35:31 ----D---- C:\Documents and Settings\Mykimax\Application Data\Apple Computer 2009-07-27 02:35:28 ----A---- C:\WINDOWS\system32\GEARAspi.dll 2009-07-27 02:35:23 ----D---- C:\Program Files\iTunes 2009-07-27 02:35:23 ----D---- C:\Program Files\iPod 2009-07-27 02:35:23 ----D---- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} 2009-07-27 02:35:19 ----D---- C:\Program Files\Bonjour 2009-07-27 02:35:10 ----D---- C:\Program Files\QuickTime 2009-07-27 02:35:09 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer 2009-07-27 02:35:04 ----D---- C:\Program Files\Apple Software Update 2009-07-27 02:34:58 ----D---- C:\Program Files\Fichiers communs\Apple 2009-07-27 02:34:58 ----D---- C:\Documents and Settings\All Users\Application Data\Apple 2009-07-27 02:26:13 ----A---- C:\WINDOWS\system32\rmoc3260.dll 2009-07-27 02:26:13 ----A---- C:\WINDOWS\system32\pndx5032.dll 2009-07-27 02:26:13 ----A---- C:\WINDOWS\system32\pndx5016.dll 2009-07-27 02:26:13 ----A---- C:\WINDOWS\system32\pncrt.dll 2009-07-27 02:26:12 ----A---- C:\WINDOWS\system32\yv12vfw.dll 2009-07-27 02:26:12 ----A---- C:\WINDOWS\system32\x264vfw.dll 2009-07-27 02:26:12 ----A---- C:\WINDOWS\system32\vp7vfw.dll 2009-07-27 02:26:12 ----A---- C:\WINDOWS\system32\vp6vfw.dll 2009-07-27 02:26:12 ----A---- C:\WINDOWS\system32\huffyuv.dll 2009-07-27 02:26:11 ----A---- C:\WINDOWS\system32\xvidvfw.dll 2009-07-27 02:26:11 ----A---- C:\WINDOWS\system32\xvidcore.dll 2009-07-27 02:26:11 ----A---- C:\WINDOWS\system32\pthreadGC2.dll 2009-07-27 02:26:11 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest 2009-07-27 02:26:11 ----A---- C:\WINDOWS\system32\ff_vfw.dll 2009-07-27 02:26:10 ----D---- C:\Program Files\K-Lite Codec Pack 2009-07-27 02:26:10 ----A---- C:\WINDOWS\system32\msvcr71.dll 2009-07-27 02:26:10 ----A---- C:\WINDOWS\system32\msvcp71.dll 2009-07-27 01:57:14 ----D---- C:\Documents and Settings\Mykimax\Application Data\vlc 2009-07-27 01:55:49 ----D---- C:\Program Files\VideoLAN 2009-07-26 22:58:05 ----D---- C:\Program Files\eMule 2009-07-26 22:05:53 ----A---- C:\Documents and Settings\All Users\Application Data\xml6.tmp 2009-07-26 22:05:52 ----A---- C:\Documents and Settings\All Users\Application Data\xml5.tmp 2009-07-26 22:05:52 ----A---- C:\Documents and Settings\All Users\Application Data\xml4.tmp 2009-07-26 22:05:51 ----A---- C:\Documents and Settings\All Users\Application Data\xml3.tmp 2009-07-26 21:13:03 ----D---- C:\Program Files\MSXML 4.0 2009-07-26 20:30:21 ----D---- C:\Documents and Settings\Mykimax\Application Data\skypePM 2009-07-26 20:29:11 ----D---- C:\Documents and Settings\Mykimax\Application Data\Skype 2009-07-26 20:28:46 ----D---- C:\Program Files\Fichiers communs\Skype 2009-07-26 20:28:45 ----RD---- C:\Program Files\Skype 2009-07-26 20:28:44 ----D---- C:\Documents and Settings\All Users\Application Data\Skype 2009-07-26 20:23:09 ----D---- C:\Program Files\Simpli Software 2009-07-26 20:09:23 ----D---- C:\Documents and Settings\Mykimax\Application Data\Mozilla 2009-07-26 20:09:15 ----D---- C:\Program Files\Mozilla Firefox 2009-07-26 19:38:17 ----D---- C:\Documents and Settings\Mykimax\Application Data\Ahead 2009-07-26 19:38:02 ----D---- C:\Documents and Settings\All Users\Application Data\Ahead 2009-07-26 19:37:38 ----D---- C:\Program Files\Nero 2009-07-26 19:37:38 ----D---- C:\Program Files\Fichiers communs\Ahead 2009-07-26 19:37:38 ----D---- C:\Documents and Settings\All Users\Application Data\Nero 2009-07-26 19:36:07 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2009-07-26 19:36:06 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2009-07-26 04:52:32 ----D---- C:\Program Files\Spybot - Search & Destroy 2009-07-26 04:52:32 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2009-07-26 04:41:44 ----D---- C:\Program Files\a-squared Free 2009-07-26 03:56:12 ----D---- C:\WINDOWS\system32\oodag 2009-07-26 03:53:33 ----D---- C:\Program Files\OO Software 2009-07-26 03:32:51 ----D---- C:\Documents and Settings\Mykimax\Application Data\WinRAR 2009-07-26 03:31:32 ----D---- C:\Program Files\WinRAR 2009-07-26 03:25:53 ----D---- C:\Program Files\DVDFab Decrypter 3 2009-07-26 03:23:38 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite 2009-07-26 03:23:31 ----D---- C:\Program Files\DAEMON Tools Toolbar 2009-07-26 03:23:29 ----D---- C:\Program Files\DAEMON Tools Lite 2009-07-26 03:19:22 ----D---- C:\Documents and Settings\Mykimax\Application Data\DAEMON Tools Lite 2009-07-25 20:53:38 ----A---- C:\WINDOWS\system32\TUProgSt.exe 2009-07-25 20:53:37 ----D---- C:\Documents and Settings\Mykimax\Application Data\TuneUp Software 2009-07-25 20:53:37 ----A---- C:\WINDOWS\system32\uxtuneup.dll 2009-07-25 20:53:37 ----A---- C:\WINDOWS\system32\TuneUpDefragService.exe 2009-07-25 20:53:33 ----D---- C:\Documents and Settings\All Users\Application Data\TuneUp Software 2009-07-25 20:53:32 ----D---- C:\Program Files\TuneUp Utilities 2009 2009-07-25 20:52:46 ----SHD---- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357} 2009-07-24 22:46:50 ----D---- C:\Program Files\CCleaner 2009-07-24 22:43:19 ----D---- C:\Documents and Settings\All Users\Application Data\DVD Shrink 2009-07-24 22:43:13 ----D---- C:\Program Files\DVD Shrink 2009-07-24 22:29:25 ----A---- C:\WINDOWS\system32\wnaspi32.dll 2009-07-24 17:37:15 ----D---- C:\Documents and Settings\Mykimax\Application Data\Google 2009-07-24 17:36:56 ----D---- C:\Program Files\Google 2009-07-24 17:36:56 ----D---- C:\Documents and Settings\All Users\Application Data\Google 2009-07-24 17:36:33 ----D---- C:\Program Files\NOS 2009-07-24 17:36:33 ----D---- C:\Documents and Settings\All Users\Application Data\NOS 2009-07-24 06:12:10 ----D---- C:\Documents and Settings\Mykimax\Application Data\ScanSoft 2009-07-24 06:12:09 ----D---- C:\Documents and Settings\All Users\Application Data\SSScanWizard 2009-07-24 06:12:09 ----D---- C:\Documents and Settings\All Users\Application Data\SSScanAppDataDir 2009-07-24 06:12:09 ----A---- C:\WINDOWS\MAXLINK.INI 2009-07-24 06:11:54 ----D---- C:\Program Files\ScanSoft 2009-07-24 06:11:54 ----D---- C:\Program Files\Fichiers communs\ScanSoft Shared 2009-07-24 06:11:04 ----D---- C:\Program Files\ArcSoft 2009-07-24 06:11:04 ----A---- C:\WINDOWS\PCDLIB32.DLL 2009-07-24 06:01:01 ----A---- C:\WINDOWS\IsUn040c.exe 2009-07-24 06:00:32 ----D---- C:\Program Files\Canon 2009-07-24 05:53:59 ----HD---- C:\Documents and Settings\All Users\Application Data\CanonBJ 2009-07-24 05:53:58 ----A---- C:\WINDOWS\system32\CNMVS7L.DLL 2009-07-24 05:53:58 ----A---- C:\WINDOWS\system32\CNMLM7L.DLL 2009-07-24 05:53:16 ----HD---- C:\WINDOWS\system32\CanonMP Uninstaller Information 2009-07-24 05:53:14 ----A---- C:\WINDOWS\system32\CNCL500.DLL 2009-07-24 05:53:14 ----A---- C:\WINDOWS\system32\cncisco.dll 2009-07-24 05:53:14 ----A---- C:\WINDOWS\system32\CNCI500.DLL 2009-07-24 05:53:14 ----A---- C:\WINDOWS\system32\CNCC500.DLL 2009-07-24 05:53:11 ----HD---- C:\CanonMP 2009-07-24 05:26:45 ----HD---- C:\WINDOWS\system32\GroupPolicy 2009-07-23 22:59:19 ----D---- C:\Documents and Settings\All Users\Application Data\WinZip 2009-07-23 22:59:18 ----D---- C:\Program Files\WinZip 2009-07-23 22:47:47 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe 2009-07-23 22:47:45 ----D---- C:\Program Files\Fichiers communs\Adobe 2009-07-23 22:47:45 ----D---- C:\Program Files\Adobe 2009-07-23 19:06:14 ----D---- C:\WINDOWS\system32\DRVSTORE 2009-07-23 19:06:14 ----A---- C:\WINDOWS\system32\WdfCoInstaller01005.dll 2009-07-23 19:06:12 ----D---- C:\Program Files\Microsoft IntelliType Pro 2009-07-23 19:03:13 ----A---- C:\WINDOWS\system32\mucltui.dll.mui 2009-07-23 19:03:13 ----A---- C:\WINDOWS\system32\mucltui.dll 2009-07-23 17:43:19 ----D---- C:\Documents and Settings\Mykimax\Application Data\Macromedia 2009-07-23 17:43:19 ----D---- C:\Documents and Settings\Mykimax\Application Data\Adobe 2009-07-23 04:30:06 ----A---- C:\WINDOWS\system32\avgrsstx.dll 2009-07-23 04:30:03 ----D---- C:\Program Files\AVG 2009-07-23 04:30:03 ----D---- C:\Documents and Settings\All Users\Application Data\avg8 2009-07-23 03:06:40 ----D---- C:\Program Files\Logitech 2009-07-23 03:06:40 ----D---- C:\Program Files\Fichiers communs\Logitech 2009-07-23 02:45:12 ----D---- C:\Documents and Settings\Mykimax\Application Data\ATI 2009-07-23 02:45:12 ----D---- C:\Documents and Settings\All Users\Application Data\ATI 2009-07-23 02:42:58 ----D---- C:\Program Files\ATI Technologies 2009-07-23 02:37:24 ----N---- C:\WINDOWS\system32\ati2sgag.exe 2009-07-23 02:37:05 ----D---- C:\ATI 2009-07-23 02:05:07 ----A---- C:\WINDOWS\sfbm.INI 2009-07-23 02:04:05 ----N---- C:\WINDOWS\system32\CTSVCCTL.EXE 2009-07-23 02:04:05 ----N---- C:\WINDOWS\system32\CTSVCCDA.EXE 2009-07-23 01:51:57 ----A---- C:\WINDOWS\system32\cttele32.dll 2009-07-23 01:51:52 ----D---- C:\Program Files\OpenAL 2009-07-23 01:49:26 ----A---- C:\WINDOWS\system32\AppSetup.exe 2009-07-23 01:46:54 ----D---- C:\Program Files\Fichiers communs\Creative Labs Shared 2009-07-23 01:08:21 ----N---- C:\WINDOWS\Ctregrun.exe 2009-07-23 01:07:22 ----D---- C:\Program Files\Fichiers communs\Creative 2009-07-23 01:07:21 ----HD---- C:\Program Files\Creative Installation Information 2009-07-23 01:06:41 ----N---- C:\WINDOWS\Updreg.EXE 2009-07-23 01:06:16 ----N---- C:\WINDOWS\system32\ksuser.dll 2009-07-23 01:06:14 ----A---- C:\WINDOWS\system32\wrap_oal.dll 2009-07-23 01:06:14 ----A---- C:\WINDOWS\system32\OpenAL32.dll 2009-07-23 01:06:12 ----D---- C:\Documents and Settings\Mykimax\Application Data\Creative 2009-07-23 01:05:48 ----D---- C:\WINDOWS\system32\Data 2009-07-23 01:05:48 ----A---- C:\WINDOWS\CTDCRFRN.DLL 2009-07-23 01:04:49 ----D---- C:\Documents and Settings\All Users\Application Data\Creative 2009-07-23 01:04:07 ----D---- C:\Program Files\Creative 2009-07-23 01:01:32 ----HD---- C:\Program Files\InstallShield Installation Information 2009-07-23 00:34:19 ----D---- C:\WINDOWS\system32\windowspowershell 2009-07-23 00:33:36 ----A---- C:\WINDOWS\system32\d3dx9_32.dll 2009-07-23 00:33:34 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition 2009-07-23 00:33:07 ----D---- C:\Program Files\Microsoft 2009-07-23 00:32:55 ----D---- C:\Program Files\Windows Live SkyDrive 2009-07-23 00:32:37 ----D---- C:\Program Files\Windows Live 2009-07-23 00:19:39 ----N---- C:\WINDOWS\system32\spmsg2.dll 2009-07-22 23:58:40 ----D---- C:\WINDOWS\system32\XPSViewer 2009-07-22 23:58:38 ----D---- C:\Program Files\MSBuild 2009-07-22 23:58:37 ----D---- C:\WINDOWS\system32\en-US 2009-07-22 23:58:35 ----D---- C:\Program Files\Reference Assemblies 2009-07-22 23:58:25 ----N---- C:\WINDOWS\system32\xpssvcs.dll 2009-07-22 23:58:25 ----N---- C:\WINDOWS\system32\xpsshhdr.dll 2009-07-22 23:58:25 ----N---- C:\WINDOWS\system32\prntvpt.dll 2009-07-22 23:37:21 ----RSD---- C:\WINDOWS\assembly 2009-07-22 23:37:21 ----D---- C:\WINDOWS\Microsoft.NET 2009-07-22 23:37:20 ----D---- C:\WINDOWS\system32\URTTemp 2009-07-22 23:27:48 ----D---- C:\Program Files\Fichiers communs\Windows Live 2009-07-22 23:27:34 ----D---- C:\Program Files\Microsoft Silverlight 2009-07-22 23:27:28 ----N---- C:\WINDOWS\system32\spmsg.dll 2009-07-22 23:27:19 ----A---- C:\WINDOWS\system32\wmpns.dll 2009-07-22 23:27:13 ----D---- C:\Program Files\Windows Media Connect 2 2009-07-22 23:26:30 ----D---- C:\WINDOWS\system32\LogFiles 2009-07-22 23:15:44 ----D---- C:\WINDOWS\ie8updates 2009-07-22 23:15:38 ----D---- C:\WINDOWS\WBEM 2009-07-22 23:15:33 ----HD---- C:\WINDOWS\ie8 2009-07-22 23:15:19 ----A---- C:\WINDOWS\system32\MRT.exe 2009-07-22 23:05:45 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage 2009-07-22 23:05:34 ----D---- C:\WINDOWS\system32\PreInstall 2009-07-22 23:05:34 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2009-07-22 23:04:13 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2009-07-22 23:04:13 ----A---- C:\WINDOWS\system32\wups2.dll 2009-07-22 23:04:13 ----A---- C:\WINDOWS\system32\wucltui.dll.mui 2009-07-22 23:04:13 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui 2009-07-22 23:04:13 ----A---- C:\WINDOWS\system32\wuapi.dll.mui 2009-07-22 23:01:01 ----A---- C:\WINDOWS\system32\wpa.bak 2009-07-22 22:39:52 ----A---- C:\WINDOWS\system32\vsutil_loc040c.dll 2009-07-22 22:39:51 ----A---- C:\WINDOWS\system32\vsregexp.dll 2009-07-22 22:39:50 ----A---- C:\WINDOWS\system32\zlcommdb.dll 2009-07-22 22:39:50 ----A---- C:\WINDOWS\system32\zlcomm.dll 2009-07-22 22:39:48 ----D---- C:\WINDOWS\system32\ZoneLabs 2009-07-22 22:39:48 ----D---- C:\Program Files\Zone Labs 2009-07-22 22:39:48 ----A---- C:\WINDOWS\system32\zpeng25.dll 2009-07-22 22:39:48 ----A---- C:\WINDOWS\system32\vsxml.dll 2009-07-22 22:39:48 ----A---- C:\WINDOWS\system32\vswmi.dll 2009-07-22 22:39:48 ----A---- C:\WINDOWS\system32\vspubapi.dll 2009-07-22 22:39:48 ----A---- C:\WINDOWS\system32\vsmonapi.dll 2009-07-22 22:38:48 ----A---- C:\WINDOWS\system32\vsutil.dll 2009-07-22 22:38:48 ----A---- C:\WINDOWS\system32\vsinit.dll 2009-07-22 22:38:48 ----A---- C:\WINDOWS\system32\vsdata.dll 2009-07-22 22:38:47 ----D---- C:\WINDOWS\Internet Logs 2009-07-22 22:28:06 ----A---- C:\WINDOWS\system32\nvunrm.exe 2009-07-22 22:27:31 ----A---- C:\WINDOWS\system32\NVUNINST.EXE 2009-07-22 22:27:24 ----D---- C:\Program Files\Fichiers communs\InstallShield 2009-07-22 22:25:17 ----D---- C:\Program Files\AMD 2009-07-22 22:22:59 ----A---- C:\WINDOWS\system32\javaws.exe 2009-07-22 22:22:59 ----A---- C:\WINDOWS\system32\javaw.exe 2009-07-22 22:22:59 ----A---- C:\WINDOWS\system32\java.exe 2009-07-22 22:22:59 ----A---- C:\WINDOWS\system32\deploytk.dll 2009-07-22 22:22:55 ----D---- C:\Program Files\Java 2009-07-22 22:22:50 ----D---- C:\Documents and Settings\Mykimax\Application Data\Sun 2009-07-22 22:21:05 ----D---- C:\APPLICATIONS 2009-07-22 22:20:46 ----D---- C:\DirectX 9.0c 2009-07-22 21:31:51 ----SHD---- C:\Recycled 2009-07-22 21:29:14 ----D---- C:\Documents and Settings\Mykimax\Application Data\Identities 2009-07-22 21:29:13 ----HD---- C:\Program Files\Uninstall Information 2009-07-22 21:29:10 ----SD---- C:\Documents and Settings\Mykimax\Application Data\Microsoft 2009-07-22 21:28:37 ----SHD---- C:\System Volume Information 2009-07-22 21:28:37 ----SD---- C:\WINDOWS\system32\Microsoft 2009-07-22 21:28:37 ----D---- C:\WINDOWS\SoftwareDistribution 2009-07-22 21:28:37 ----D---- C:\WINDOWS\Prefetch 2009-07-22 21:28:37 ----A---- C:\WINDOWS\SchedLgU.Txt 2009-07-22 21:25:52 ----D---- C:\WINDOWS\system32\xircom 2009-07-22 21:25:52 ----D---- C:\Program Files\xerox 2009-07-22 21:25:52 ----D---- C:\Program Files\msn gaming zone 2009-07-22 21:25:52 ----D---- C:\Program Files\microsoft frontpage 2009-07-22 21:25:45 ----HD---- C:\WINDOWS\$hf_mig$ 2009-07-22 21:25:44 ----N---- C:\WINDOWS\system32\uexfat.dll 2009-07-22 21:25:40 ----A---- C:\WINDOWS\control.ini 2009-07-22 21:25:40 ----A---- C:\AUTOEXEC.BAT 2009-07-22 21:25:35 ----A---- C:\WINDOWS\system32\mapi32.dll 2009-07-22 21:25:12 ----SD---- C:\WINDOWS\Downloaded Program Files 2009-07-22 21:25:12 ----RD---- C:\WINDOWS\Offline Web Pages 2009-07-22 21:25:12 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2009-07-22 21:25:09 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2009-07-22 21:25:07 ----HD---- C:\Program Files\WindowsUpdate 2009-07-22 21:25:06 ----D---- C:\Program Files\Services en ligne 2009-07-22 21:24:58 ----D---- C:\WINDOWS\system32\DirectX 2009-07-22 21:24:53 ----A---- C:\WINDOWS\system32\atrace.dll 2009-07-22 21:24:52 ----A---- C:\WINDOWS\system32\desktop.ini 2009-07-22 21:24:52 ----A---- C:\WINDOWS\desktop.ini 2009-07-22 21:24:47 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2009-07-22 21:24:46 ----D---- C:\Program Files\Fichiers communs\Services 2009-07-22 21:24:46 ----A---- C:\WINDOWS\system32\acctres.dll 2009-07-22 21:24:44 ----SD---- C:\WINDOWS\Tasks 2009-07-22 21:24:44 ----D---- C:\Program Files\Fichiers communs\MSSoap 2009-07-22 21:24:44 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2009-07-22 21:24:41 ----D---- C:\WINDOWS\srchasst 2009-07-22 21:24:40 ----D---- C:\WINDOWS\system32\Macromed 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wuweb.dll 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wups.dll 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wucltui.dll 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wuauserv.dll 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wuaueng.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\wuauclt.exe 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\wuapi.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\qmgr.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\bitsprx4.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2009-07-22 21:24:36 ----D---- C:\Program Files\Movie Maker 2009-07-22 21:24:25 ----A---- C:\WINDOWS\system32\safrslv.dll 2009-07-22 21:24:25 ----A---- C:\WINDOWS\system32\safrdm.dll 2009-07-22 21:24:25 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2009-07-22 21:24:24 ----A---- C:\WINDOWS\system32\racpldlg.dll 2009-07-22 21:24:22 ----A---- C:\WINDOWS\system32\fltMc.exe 2009-07-22 21:24:22 ----A---- C:\WINDOWS\system32\fltlib.dll 2009-07-22 21:24:21 ----D---- C:\WINDOWS\system32\Restore 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\srsvc.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\srrstr.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\srclient.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\mnmdd.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\ils.dll 2009-07-22 21:24:20 ----A---- C:\WINDOWS\system32\msconf.dll 2009-07-22 21:24:19 ----D---- C:\Program Files\NetMeeting 2009-07-22 21:24:18 ----A---- C:\WINDOWS\system32\msoert2.dll 2009-07-22 21:24:18 ----A---- C:\WINDOWS\system32\msoeacct.dll 2009-07-22 21:24:18 ----A---- C:\WINDOWS\system32\inetres.dll 2009-07-22 21:24:17 ----A---- C:\WINDOWS\system32\inetcomm.dll 2009-07-22 21:24:16 ----D---- C:\Program Files\Outlook Express 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\schedsvc.dll 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\mstinit.exe 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\mstask.dll 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\isign32.dll 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\inetcfg.dll 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\icwphbk.dll 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\icwdial.dll 2009-07-22 21:24:12 ----D---- C:\Program Files\Fichiers communs\System 2009-07-22 21:24:11 ----D---- C:\Program Files\Internet Explorer 2009-07-22 21:23:56 ----D---- C:\Program Files\ComPlus Applications 2009-07-22 21:23:56 ----A---- C:\WINDOWS\vbaddin.ini 2009-07-22 21:23:56 ----A---- C:\WINDOWS\vb.ini 2009-07-22 21:23:54 ----D---- C:\WINDOWS\Registration 2009-07-22 21:23:53 ----D---- C:\Program Files\Online Services 2009-07-22 21:23:52 ----D---- C:\Program Files\Windows Media Player 2009-07-22 21:23:50 ----D---- C:\Program Files\Messenger 2009-07-22 21:23:50 ----A---- C:\WINDOWS\system32\write.exe 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\winchat.exe 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\sndvol32.exe 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\hticons.dll 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\avwav.dll 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\avtapi.dll 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\avmeter.dll 2009-07-22 21:23:42 ----A---- C:\WINDOWS\system32\getuname.dll 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\tslabels.ini 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\tskill.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\tscon.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\shadow.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\rwinsta.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\reset.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\regini.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\qwinsta.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\qappsrv.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\msg.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\charmap.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\calc.exe 2009-07-22 21:23:40 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2009-07-22 21:23:40 ----A---- C:\WINDOWS\system32\logoff.exe 2009-07-22 21:23:40 ----A---- C:\WINDOWS\system32\cdmodem.dll 2009-07-22 21:23:37 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2009-07-22 21:23:26 ----D---- C:\Program Files\MSN 2009-07-22 21:23:25 ----A---- C:\WINDOWS\system32\sndrec32.exe 2009-07-22 21:23:25 ----A---- C:\WINDOWS\system32\accwiz.exe 2009-07-22 21:23:24 ----D---- C:\Program Files\Windows NT 2009-07-22 21:23:24 ----A---- C:\WINDOWS\system32\mplay32.exe 2009-07-22 21:23:24 ----A---- C:\WINDOWS\system32\hypertrm.dll 2009-07-22 21:23:23 ----A---- C:\WINDOWS\system32\mspaint.exe 2009-07-22 21:23:23 ----A---- C:\WINDOWS\system32\clipbrd.exe 2009-07-22 21:23:22 ----A---- C:\WINDOWS\system32\tsgqec.dll 2009-07-22 21:23:22 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2009-07-22 21:23:22 ----A---- C:\WINDOWS\system32\rhttpaa.dll 2009-07-22 21:23:22 ----A---- C:\WINDOWS\system32\aaclient.dll 2009-07-22 21:23:21 ----A---- C:\WINDOWS\system32\remotepg.dll 2009-07-22 21:23:21 ----A---- C:\WINDOWS\system32\mstscax.dll 2009-07-22 21:23:21 ----A---- C:\WINDOWS\system32\mstsc.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\termsrv.dll 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\sessmgr.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdshost.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdpclip.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdchost.dll 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\qprocess.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\icaapi.dll 2009-07-22 21:23:19 ----D---- C:\WINDOWS\system32\MsDtc 2009-07-22 21:23:19 ----A---- C:\WINDOWS\system32\mtxoci.dll 2009-07-22 21:23:19 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2009-07-22 21:23:19 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2009-07-22 21:23:19 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2009-07-22 21:23:18 ----A---- C:\WINDOWS\system32\xolehlp.dll 2009-07-22 21:23:18 ----A---- C:\WINDOWS\system32\msdtctm.dll 2009-07-22 21:23:18 ----A---- C:\WINDOWS\system32\msdtclog.dll 2009-07-22 21:23:18 ----A---- C:\WINDOWS\system32\msdtc.exe 2009-07-22 21:23:17 ----D---- C:\WINDOWS\system32\Com 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\mtxex.dll 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\mtxdm.dll 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\comrepl.dll 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\comaddin.dll 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\colbact.dll 2009-07-22 21:23:16 ----A---- C:\WINDOWS\system32\stclient.dll 2009-07-22 21:23:16 ----A---- C:\WINDOWS\system32\clbcatex.dll 2009-07-22 21:23:16 ----A---- C:\WINDOWS\system32\catsrvut.dll 2009-07-22 21:23:16 ----A---- C:\WINDOWS\system32\catsrvps.dll 2009-07-22 21:23:16 ----A---- C:\WINDOWS\system32\catsrv.dll 2009-07-22 21:23:15 ----A---- C:\WINDOWS\system32\comuid.dll 2009-07-22 21:23:15 ----A---- C:\WINDOWS\system32\comsvcs.dll 2009-07-22 21:23:14 ----A---- C:\WINDOWS\system32\comsnap.dll 2009-07-22 21:23:14 ----A---- C:\WINDOWS\system32\clbcatq.dll 2009-07-22 21:23:08 ----A---- C:\WINDOWS\system32\servdeps.dll 2009-07-22 21:23:08 ----A---- C:\WINDOWS\system32\mmfutil.dll 2009-07-22 21:23:08 ----A---- C:\WINDOWS\system32\licwmi.dll 2009-07-22 21:23:07 ----A---- C:\WINDOWS\system32\cmprops.dll 2009-07-22 21:22:17 ----A---- C:\WINDOWS\system32\h323log.txt 2009-07-22 21:19:36 ----A---- C:\WINDOWS\system32\hidserv.dll 2009-07-22 21:19:09 ----D---- C:\WINDOWS\system32\ReinstallBackups 2009-07-22 21:18:40 ----N---- C:\WINDOWS\system32\nvuide.exe 2009-07-22 21:18:39 ----A---- C:\WINDOWS\system32\usbui.dll 2009-07-22 21:18:16 ----SHD---- C:\WINDOWS\Installer 2009-07-22 21:18:16 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2009-07-22 21:18:15 ----D---- C:\Program Files\Fichiers communs\ODBC 2009-07-22 21:18:15 ----A---- C:\WINDOWS\ODBCINST.INI 2009-07-22 21:18:13 ----D---- C:\Program Files\Fichiers communs\SpeechEngines 2009-07-22 21:18:12 ----RD---- C:\Program Files 2009-07-22 21:18:12 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2009-07-22 21:18:12 ----D---- C:\Program Files\Fichiers communs 2009-07-22 21:18:05 ----A---- C:\WINDOWS\system32\irclass.dll 2009-07-22 21:18:05 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2009-07-22 21:18:04 ----A---- C:\WINDOWS\system32\spxcoins.dll 2009-07-22 21:18:04 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2009-07-22 21:18:04 ----A---- C:\WINDOWS\system32\dgsetup.dll 2009-07-22 21:18:02 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2009-07-22 21:18:02 ----A---- C:\WINDOWS\TASKMAN.EXE 2009-07-22 21:18:01 ----A---- C:\WINDOWS\system32\storprop.dll 2009-07-22 21:18:01 ----A---- C:\WINDOWS\system32\batt.dll 2009-07-22 21:18:01 ----A---- C:\WINDOWS\NOTEPAD.EXE 2009-07-22 21:17:59 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2009-07-22 21:17:55 ----RA---- C:\WINDOWS\SET8.tmp 2009-07-22 21:17:53 ----RA---- C:\WINDOWS\SET4.tmp 2009-07-22 21:17:52 ----RA---- C:\WINDOWS\SET3.tmp 2009-07-22 21:17:49 ----D---- C:\WINDOWS\system32\CatRoot2 2009-07-22 21:17:49 ----D---- C:\WINDOWS\system32\CatRoot 2009-07-22 21:17:44 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2009-07-22 21:17:26 ----D---- C:\Documents and Settings 2009-07-22 21:14:47 ----SH---- C:\boot.ini 2009-07-22 21:12:12 ----RSHD---- C:\WINDOWS\system32\dllcache 2009-07-22 21:12:12 ----RSD---- C:\WINDOWS\Fonts 2009-07-22 21:12:12 ----RD---- C:\WINDOWS\Web 2009-07-22 21:12:12 ----HD---- C:\WINDOWS\inf 2009-07-22 21:12:12 ----D---- C:\WINDOWS\WinSxS 2009-07-22 21:12:12 ----D---- C:\WINDOWS\twain_32 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Temp 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\wins 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\wbem 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\usmt 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\spool 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\ShellExt 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\Setup 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\ras 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\oobe 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\npp 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\mui 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\inetsrv 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\IME 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\icsxml 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\ias 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\fr-fr 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\fr 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\export 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\drivers 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\dhcp 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\config 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\3com_dmi 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\3076 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\2052 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1054 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1042 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1041 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1037 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1036 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1033 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1031 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1028 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1025 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system 2009-07-22 21:12:12 ----D---- C:\WINDOWS\security 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Resources 2009-07-22 21:12:12 ----D---- C:\WINDOWS\repair 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Provisioning 2009-07-22 21:12:12 ----D---- C:\WINDOWS\PeerNet 2009-07-22 21:12:12 ----D---- C:\WINDOWS\pchealth 2009-07-22 21:12:12 ----D---- C:\WINDOWS\NLDRV 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Network Diagnostic 2009-07-22 21:12:12 ----D---- C:\WINDOWS\mui 2009-07-22 21:12:12 ----D---- C:\WINDOWS\msapps 2009-07-22 21:12:12 ----D---- C:\WINDOWS\msagent 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Media 2009-07-22 21:12:12 ----D---- C:\WINDOWS\L2Schemas 2009-07-22 21:12:12 ----D---- C:\WINDOWS\java 2009-07-22 21:12:12 ----D---- C:\WINDOWS\ime 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Help 2009-07-22 21:12:12 ----D---- C:\WINDOWS\ehome 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Driver Cache 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Debug 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Cursors 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Connection Wizard 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Config 2009-07-22 21:12:12 ----D---- C:\WINDOWS\AppPatch 2009-07-22 21:12:12 ----D---- C:\WINDOWS\addins 2009-07-22 21:12:12 ----D---- C:\WINDOWS 2009-07-12 20:11:13 ----A---- C:\WINDOWS\system32\yk51x86.dll 2009-07-11 14:37:39 ----A---- C:\WINDOWS\system32\sfcfiles.dll 2009-07-11 14:37:30 ----N---- C:\WINDOWS\system32\nvraiins.dll 2009-07-11 14:37:30 ----N---- C:\WINDOWS\system32\nvraidco.dll 2009-07-11 14:37:30 ----N---- C:\WINDOWS\system32\NVCOI.DLL 2009-07-11 14:37:29 ----N---- C:\WINDOWS\system32\idecoi.dll 2009-07-11 14:37:29 ----A---- C:\WINDOWS\system32\idecoiins.dll 2009-07-11 14:37:27 ----A---- C:\WINDOWS\system32\syssetup.dll ======List of files/folders modified in the last 1 months====== 2009-07-29 04:27:06 ----A---- C:\WINDOWS\SYSTEM.INI 2009-07-22 23:27:20 ----A---- C:\WINDOWS\win.ini 2009-07-19 18:45:00 ----A---- C:\WINDOWS\system32\ieframe.dll 2009-07-19 15:15:02 ----A---- C:\WINDOWS\system32\mshtml.dll 2009-07-09 20:57:16 ----N---- C:\WINDOWS\system32\hid.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\wzcsvc.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\wzcsapi.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\pjlmon.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\pid.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\msyuv.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\iyuv_32.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\dmutil.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\cnbjmon.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\wowfaxui.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\wowfax.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrvpa.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrvoica.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrv80a.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrv42a.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrsvpia.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrshuta.exe 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrsdpia.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrrtosa.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrprbda.exe 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrmlnka.exe 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrlbva.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrfaxa.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrdtea.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrdpa.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrcoina.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrcntra.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\tsbyuv.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\streamci.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\sprio800.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\sprio600.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\spnike.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\paqsp.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\mdwmdmsp.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\dvdplay.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 atitray;atitray; \??\C:\Program Files\Ray Adams\ATI Tray Tools\atitray.sys [] R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-07-23 335752] R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-07-23 27784] R1 AvgTdiX;AVG Free8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-07-23 108552] R1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [2007-06-25 36776] R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys [2007-06-25 38440] R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14720] R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2009-02-18 353672] R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244] R2 LBeepKE;LBeepKE; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2008-12-18 10384] R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304] R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-04 60800] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-05-16 4069888] R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-04-01 93184] R3 CT20XUT.SYS;CT20XUT.SYS; C:\WINDOWS\System32\drivers\CT20XUT.SYS [2009-06-04 171032] R3 ctac32k;Creative AC3 Software Decoder; C:\WINDOWS\system32\drivers\ctac32k.sys [2009-06-04 511000] R3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2009-06-04 526232] R3 CTEXFIFX.SYS;CTEXFIFX.SYS; C:\WINDOWS\System32\drivers\CTEXFIFX.SYS [2009-06-04 1324056] R3 CTHWIUT.SYS;CTHWIUT.SYS; C:\WINDOWS\System32\drivers\CTHWIUT.SYS [2009-06-04 72728] R3 ctprxy2k;Creative Proxy Driver; C:\WINDOWS\system32\drivers\ctprxy2k.sys [2009-06-04 14360] R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\drivers\ctsfm2k.sys [2009-06-04 158744] R3 emupia;E-mu Plug-in Architecture Driver; C:\WINDOWS\system32\drivers\emupia2k.sys [2009-06-04 95768] R3 FilterService;UVC Filter Service; C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys [2007-07-19 22296] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400] R3 ha20x2k;Creative 20X HAL Driver; C:\WINDOWS\system32\drivers\ha20x2k.sys [2009-06-04 1177624] R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2008-12-18 63248] R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-12-18 35472] R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-12-18 37392] R3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2008-12-18 79248] R3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-07-20 2109592] R3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-07-20 2142488] R3 lvpopflt;Logitech POP Suppression Filter; C:\WINDOWS\system32\DRIVERS\lvpopflt.sys [2007-07-19 1920920] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2007-07-18 25624] R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-10-12 41752] R3 LVUVC;Logitech QuickCam Pro 5000(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc.sys [2007-07-19 3599000] R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288] R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-04 61824] R3 NuidFltr;NUID filter driver; C:\WINDOWS\system32\DRIVERS\NuidFltr.sys [2009-05-28 14736] R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2007-03-06 58752] R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2007-03-06 19968] R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2009-06-04 130072] R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152] R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000] R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2009-01-13 19336] R3 WmFilter;Logitech Gaming HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2009-01-13 29192] R3 WmXlCore;Logitech Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2009-01-13 49160] R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2009-06-15 297728] R4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2008-09-29 133632] R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [2007-06-25 119080] S3 aqey990s;aqey990s; C:\WINDOWS\system32\drivers\aqey990s.sys [] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 CT20XUT;CT20XUT; C:\WINDOWS\system32\drivers\CT20XUT.SYS [2009-06-04 171032] S3 ctdvda2k;Creative DVD-Audio Device Driver; C:\WINDOWS\system32\drivers\ctdvda2k.sys [2009-06-04 347080] S3 CTEXFIFX;CTEXFIFX; C:\WINDOWS\system32\drivers\CTEXFIFX.SYS [2009-06-04 1324056] S3 CTHWIUT;CTHWIUT; C:\WINDOWS\system32\drivers\CTHWIUT.SYS [2009-06-04 72728] S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\H:\Programmes\Everest\5.02.1789 beta\kerneld.wnt [] S3 iteio;iteio; \??\C:\WINDOWS\system32\drivers\iteio.sys [] S3 MaxtorFrontPanel1;Maxtor 1394 Storage Front Panel Driver; C:\WINDOWS\system32\DRIVERS\mxofwfp.sys [2003-03-13 19712] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 MXOPSWD;Maxtor OneTouch Security Driver; C:\WINDOWS\system32\DRIVERS\mxopswd.sys [2005-04-06 15360] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009.SP3c\WNt500x86\Sandra.sys [] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2009-01-13 14728] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S4 atapi;atapi; C:\WINDOWS\system32\drivers\atapi.sys [2008-04-13 96512] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] S4 sr;Pilote de filtre de restauration système; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-13 73600] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2009-07-23 907032] R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-07-23 298776] R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2009-02-23 307200] R2 LVCOMSer;LVCOMSer; C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe [2007-07-20 186904] R2 LVPrcSrv;Process Monitor; C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-07-20 137752] R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZONELABS\vsmon.exe [2009-02-18 2402184] S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe [2007-07-20 141848] S3 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2009-07-13 719392] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CTAELicensing.exe [2009-07-23 79360] S3 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.exe [1999-12-13 44032] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-24 182768] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTServ.exe [2009-02-19 121360] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040] S3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848] S3 NTService1;MaxSyncService; C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe [2005-12-01 118784] S3 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2009-04-08 1377536] S3 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-07-25 603904] S3 UxTuneUp;TuneUp Extension de thème; C:\WINDOWS\System32\svchost.exe [2008-04-13 14336] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336] S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712] S4 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-05-16 602112] S4 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-05-15 593920] S4 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888] S4 InCDsrv;InCD Helper; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [2007-06-25 1552680] S4 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-07-13 542496] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2005-08-08 167936] S4 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-07-25 362240] S4 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

J'ai donc refais le scan et supprimè la sèlection Une fois le PC redèmarrè j'en ai relancè un autre et MBAM m'a trouvè d'autres Malvares: Malwarebytes' Anti-Malware 1.40 Version de la base de données: 2551 Windows 5.1.2600 Service Pack 3 04/08/2009 01:58:07 mbam-log-2009-08-04 (01-57-55).txt Type de recherche: Examen complet (C:\|T:\|Z:\|) Eléments examinés: 137967 Temps écoulé: 9 minute(s), 11 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 2 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 3 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\mqtgsvc (Trojan.Agent) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\logman (Trojan.Agent) -> No action taken. Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): C:\Documents and Settings\Mykimax\Application Data\logman.exe (Trojan.Agent) -> No action taken. C:\Documents and Settings\Mykimax\Application Data\Microsoft\comrepl.exe (Trojan.Agent) -> No action taken. C:\Documents and Settings\Mykimax\Local Settings\Application Data\spoolsv.exe (Heuristics.Reserved.Word.Exploit) -> No action taken. J'ai tout supprimè,relancè ma bècane et un autre scan MBAM Et apparemment maintenant il ne trouve plus rien même après plusieurs redèmarrages...serait-ce la fin du calvère?? je l'èspère

Ca nous fait une sacrèe longueur l'air de rien! J'aimerai savoir si je peux effacer sans crainte les malwares trouvès par Malwarebytes parceque j'ai peur de faire une boulette Merci d'avance

Pour les 2 fichiers de RSIT voici dèjà le "log" Logfile of random's system information tool 1.06 (written by random/random) Run by Mykimax at 2009-08-03 21:33:28 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 22 GB (74%) free of 30 GB Total RAM: 2046 MB (67% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:33:47, on 03/08/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Creative\Shared Files\CTAudSvc.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe C:\WINDOWS\CTHELPER.EXE C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\Program Files\Microsoft IntelliType Pro\itype.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\DOCUME~1\Mykimax\APPLIC~1\MICROS~1\comrepl.exe C:\WINDOWS\SYSTEM32\CTXFISPI.EXE C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\Documents and Settings\Mykimax\Bureau\Progs anti verolles\RSIT.exe C:\Program Files\trend micro\Mykimax.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F3 - REG:win.ini: load=C:\DOCUME~1\Mykimax\APPLIC~1\MICROS~1\comrepl.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll" O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe" O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKLM\..\Policies\Explorer\Run: [rsvp] C:\WINDOWS\System32\drivers\rsvp.exe /waitservice O4 - HKCU\..\Policies\Explorer\Run: [spool] C:\DOCUME~1\Mykimax\APPLIC~1\spoolsv.exe /waitservice O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Policies\Explorer\Run: [spool] C:\DOCUME~1\Mykimax\LOCALS~1\APPLIC~1\spoolsv.exe /waitservice (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O4 - HKUS\.DEFAULT\..\Policies\Explorer\Run: [spool] C:\DOCUME~1\Mykimax\LOCALS~1\APPLIC~1\spoolsv.exe /waitservice (User 'Default user') O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1248296631359 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1248296624484 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareup...15108/CTPID.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CTAELicensing.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTServ.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: MaxSyncService (NTService1) - - C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZONELABS\vsmon.exe -- End of file - 10806 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Maintenance en 1 clic.job C:\WINDOWS\tasks\AppleSoftwareUpdate.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}] Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2009-07-15 1586472] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-07-23 1107224] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-24 259696] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll [2009-07-28 669168] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}] Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-07-24 470512] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-22 41368] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-24 259696] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2009-02-18 981384] "AudioDrvEmulator"=C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe [2005-11-04 49152] "CTHelper"=C:\WINDOWS\CTHELPER.EXE [2006-05-24 17920] "VolPanel"=C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe [2008-08-06 233576] "AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-07-23 1948440] "itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2009-05-28 1501064] "amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824] "Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-12-18 76304] "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-05-26 413696] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2009-08-03 419088] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "rsvp"=C:\WINDOWS\System32\drivers\rsvp.exe [2009-07-26 57344] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-07-24 39408] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] "Spool"=C:\DOCUME~1\Mykimax\APPLIC~1\spoolsv.exe [2009-07-26 57344] C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2009-05-16 155648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter] C:\WINDOWS\system32\avgrsstx.dll [2009-07-23 11952] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn] c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2009-02-19 72208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync" "T:\TEMPWI~1\~temp\mlp44\mdm.exe"="T:\TEMPWI~1\~temp\mlp44\mdm.exe:*:Enabled:UpdateWizzard" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync" ======List of files/folders created in the last 1 months====== 2009-08-03 21:33:29 ----D---- C:\Program Files\trend micro 2009-08-03 21:33:28 ----D---- C:\rsit 2009-08-03 20:30:07 ----D---- C:\Documents and Settings\Mykimax\Application Data\Malwarebytes 2009-08-03 20:30:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-08-03 20:30:02 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-08-01 04:56:46 ----D---- C:\WINDOWS\Sun 2009-07-31 21:54:25 ----D---- C:\Documents and Settings\Mykimax\Application Data\atitray 2009-07-31 21:53:53 ----D---- C:\Program Files\Ray Adams 2009-07-31 20:59:35 ----D---- C:\Documents and Settings\Mykimax\Application Data\Logitech 2009-07-31 20:58:29 ----A---- C:\WINDOWS\system32\BtCoreIf.dll 2009-07-31 20:58:28 ----A---- C:\WINDOWS\system32\KemXML.dll 2009-07-31 20:58:28 ----A---- C:\WINDOWS\system32\KemWnd.dll 2009-07-31 20:58:28 ----A---- C:\WINDOWS\system32\KemUtil.dll 2009-07-31 20:58:28 ----A---- C:\WINDOWS\system32\kemutb.dll 2009-07-31 19:38:12 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2 2009-07-30 21:59:49 ----A---- C:\WINDOWS\system32\vfwwdm32.dll 2009-07-30 21:53:48 ----A---- C:\WINDOWS\system32\LVUI2RC.dll 2009-07-30 21:53:48 ----A---- C:\WINDOWS\system32\LVUI2.dll 2009-07-30 21:53:48 ----A---- C:\WINDOWS\system32\LVCodec2.dll 2009-07-30 21:53:47 ----A---- C:\WINDOWS\system32\lvcoinst.ini 2009-07-30 21:53:47 ----A---- C:\WINDOWS\system32\lvci1110.dll 2009-07-30 20:54:25 ----D---- C:\Documents and Settings\All Users\Application Data\Logitech 2009-07-30 20:48:23 ----A---- C:\Documents and Settings\Mykimax\Application Data\spoolsv.exe 2009-07-30 12:53:18 ----D---- C:\WINDOWS\system32\appmgmt 2009-07-30 12:53:14 ----D---- C:\Documents and Settings\Mykimax\Application Data\Leadertech 2009-07-30 12:31:18 ----D---- C:\Program Files\Fichiers communs\LogiShrd 2009-07-30 12:31:18 ----D---- C:\Documents and Settings\All Users\Application Data\LogiShrd 2009-07-30 08:03:52 ----D---- C:\Program Files\Maxtor 2009-07-30 08:03:43 ----D---- C:\WINDOWS\Downloaded Installations 2009-07-28 04:17:29 ----A---- C:\WINDOWS\NeroDigital.ini 2009-07-27 18:47:04 ----A---- C:\WINDOWS\WORDPAD.INI 2009-07-27 18:22:35 ----D---- C:\Program Files\ITE 2009-07-27 18:22:35 ----A---- C:\WINDOWS\system32\Msstdfmt.dll 2009-07-27 18:22:24 ----A---- C:\WINDOWS\IsUninst.exe 2009-07-27 03:50:44 ----D---- C:\Documents and Settings\Mykimax\Application Data\Real 2009-07-27 03:20:42 ----D---- C:\Documents and Settings\Mykimax\Application Data\CyberLink 2009-07-27 03:19:56 ----D---- C:\Documents and Settings\All Users\Application Data\CyberLink 2009-07-27 03:19:39 ----N---- C:\WINDOWS\system32\msxml3a.dll 2009-07-27 03:19:27 ----D---- C:\Program Files\CyberLink 2009-07-27 03:14:50 ----D---- C:\Program Files\Webteh 2009-07-27 03:09:58 ----D---- C:\Program Files\KC Softwares 2009-07-27 03:02:54 ----D---- C:\Documents and Settings\Mykimax\Application Data\Media Player Classic 2009-07-27 03:02:31 ----D---- C:\Program Files\Media Player Classic 2009-07-27 02:42:25 ----D---- C:\Documents and Settings\Mykimax\Application Data\DivX 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\vxblock.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxwave.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxsfs.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxmas.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxinsi64.exe 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxdrv.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxcpyi64.exe 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\pxafs.dll 2009-07-27 02:36:52 ----N---- C:\WINDOWS\system32\px.dll 2009-07-27 02:36:45 ----D---- C:\Program Files\Fichiers communs\DivX Shared 2009-07-27 02:36:45 ----D---- C:\Program Files\DivX 2009-07-27 02:35:31 ----D---- C:\Documents and Settings\Mykimax\Application Data\Apple Computer 2009-07-27 02:35:28 ----A---- C:\WINDOWS\system32\GEARAspi.dll 2009-07-27 02:35:23 ----D---- C:\Program Files\iTunes 2009-07-27 02:35:23 ----D---- C:\Program Files\iPod 2009-07-27 02:35:23 ----D---- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} 2009-07-27 02:35:19 ----D---- C:\Program Files\Bonjour 2009-07-27 02:35:10 ----D---- C:\Program Files\QuickTime 2009-07-27 02:35:09 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer 2009-07-27 02:35:04 ----D---- C:\Program Files\Apple Software Update 2009-07-27 02:34:58 ----D---- C:\Program Files\Fichiers communs\Apple 2009-07-27 02:34:58 ----D---- C:\Documents and Settings\All Users\Application Data\Apple 2009-07-27 02:26:13 ----A---- C:\WINDOWS\system32\rmoc3260.dll 2009-07-27 02:26:13 ----A---- C:\WINDOWS\system32\pndx5032.dll 2009-07-27 02:26:13 ----A---- C:\WINDOWS\system32\pndx5016.dll 2009-07-27 02:26:13 ----A---- C:\WINDOWS\system32\pncrt.dll 2009-07-27 02:26:12 ----A---- C:\WINDOWS\system32\yv12vfw.dll 2009-07-27 02:26:12 ----A---- C:\WINDOWS\system32\x264vfw.dll 2009-07-27 02:26:12 ----A---- C:\WINDOWS\system32\vp7vfw.dll 2009-07-27 02:26:12 ----A---- C:\WINDOWS\system32\vp6vfw.dll 2009-07-27 02:26:12 ----A---- C:\WINDOWS\system32\huffyuv.dll 2009-07-27 02:26:11 ----A---- C:\WINDOWS\system32\xvidvfw.dll 2009-07-27 02:26:11 ----A---- C:\WINDOWS\system32\xvidcore.dll 2009-07-27 02:26:11 ----A---- C:\WINDOWS\system32\pthreadGC2.dll 2009-07-27 02:26:11 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest 2009-07-27 02:26:11 ----A---- C:\WINDOWS\system32\ff_vfw.dll 2009-07-27 02:26:10 ----D---- C:\Program Files\K-Lite Codec Pack 2009-07-27 02:26:10 ----A---- C:\WINDOWS\system32\msvcr71.dll 2009-07-27 02:26:10 ----A---- C:\WINDOWS\system32\msvcp71.dll 2009-07-27 01:57:14 ----D---- C:\Documents and Settings\Mykimax\Application Data\vlc 2009-07-27 01:55:49 ----D---- C:\Program Files\VideoLAN 2009-07-26 22:58:05 ----D---- C:\Program Files\eMule 2009-07-26 22:05:53 ----A---- C:\Documents and Settings\All Users\Application Data\xml6.tmp 2009-07-26 22:05:52 ----A---- C:\Documents and Settings\All Users\Application Data\xml5.tmp 2009-07-26 22:05:52 ----A---- C:\Documents and Settings\All Users\Application Data\xml4.tmp 2009-07-26 22:05:51 ----A---- C:\Documents and Settings\All Users\Application Data\xml3.tmp 2009-07-26 21:13:03 ----D---- C:\Program Files\MSXML 4.0 2009-07-26 20:30:21 ----D---- C:\Documents and Settings\Mykimax\Application Data\skypePM 2009-07-26 20:29:11 ----D---- C:\Documents and Settings\Mykimax\Application Data\Skype 2009-07-26 20:28:46 ----D---- C:\Program Files\Fichiers communs\Skype 2009-07-26 20:28:45 ----RD---- C:\Program Files\Skype 2009-07-26 20:28:44 ----D---- C:\Documents and Settings\All Users\Application Data\Skype 2009-07-26 20:23:09 ----D---- C:\Program Files\Simpli Software 2009-07-26 20:09:23 ----D---- C:\Documents and Settings\Mykimax\Application Data\Mozilla 2009-07-26 20:09:15 ----D---- C:\Program Files\Mozilla Firefox 2009-07-26 19:38:17 ----D---- C:\Documents and Settings\Mykimax\Application Data\Ahead 2009-07-26 19:38:02 ----D---- C:\Documents and Settings\All Users\Application Data\Ahead 2009-07-26 19:37:38 ----D---- C:\Program Files\Nero 2009-07-26 19:37:38 ----D---- C:\Program Files\Fichiers communs\Ahead 2009-07-26 19:37:38 ----D---- C:\Documents and Settings\All Users\Application Data\Nero 2009-07-26 19:36:07 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2009-07-26 19:36:06 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2009-07-26 04:52:32 ----D---- C:\Program Files\Spybot - Search & Destroy 2009-07-26 04:52:32 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2009-07-26 04:41:44 ----D---- C:\Program Files\a-squared Free 2009-07-26 03:56:12 ----D---- C:\WINDOWS\system32\oodag 2009-07-26 03:53:33 ----D---- C:\Program Files\OO Software 2009-07-26 03:32:51 ----D---- C:\Documents and Settings\Mykimax\Application Data\WinRAR 2009-07-26 03:31:32 ----D---- C:\Program Files\WinRAR 2009-07-26 03:25:53 ----D---- C:\Program Files\DVDFab Decrypter 3 2009-07-26 03:23:38 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite 2009-07-26 03:23:31 ----D---- C:\Program Files\DAEMON Tools Toolbar 2009-07-26 03:23:29 ----D---- C:\Program Files\DAEMON Tools Lite 2009-07-26 03:19:22 ----D---- C:\Documents and Settings\Mykimax\Application Data\DAEMON Tools Lite 2009-07-25 20:53:38 ----A---- C:\WINDOWS\system32\TUProgSt.exe 2009-07-25 20:53:37 ----D---- C:\Documents and Settings\Mykimax\Application Data\TuneUp Software 2009-07-25 20:53:37 ----A---- C:\WINDOWS\system32\uxtuneup.dll 2009-07-25 20:53:37 ----A---- C:\WINDOWS\system32\TuneUpDefragService.exe 2009-07-25 20:53:33 ----D---- C:\Documents and Settings\All Users\Application Data\TuneUp Software 2009-07-25 20:53:32 ----D---- C:\Program Files\TuneUp Utilities 2009 2009-07-25 20:52:46 ----SHD---- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357} 2009-07-24 22:46:50 ----D---- C:\Program Files\CCleaner 2009-07-24 22:43:19 ----D---- C:\Documents and Settings\All Users\Application Data\DVD Shrink 2009-07-24 22:43:13 ----D---- C:\Program Files\DVD Shrink 2009-07-24 22:29:25 ----A---- C:\WINDOWS\system32\wnaspi32.dll 2009-07-24 17:37:15 ----D---- C:\Documents and Settings\Mykimax\Application Data\Google 2009-07-24 17:36:56 ----D---- C:\Program Files\Google 2009-07-24 17:36:56 ----D---- C:\Documents and Settings\All Users\Application Data\Google 2009-07-24 17:36:33 ----D---- C:\Program Files\NOS 2009-07-24 17:36:33 ----D---- C:\Documents and Settings\All Users\Application Data\NOS 2009-07-24 06:12:10 ----D---- C:\Documents and Settings\Mykimax\Application Data\ScanSoft 2009-07-24 06:12:09 ----D---- C:\Documents and Settings\All Users\Application Data\SSScanWizard 2009-07-24 06:12:09 ----D---- C:\Documents and Settings\All Users\Application Data\SSScanAppDataDir 2009-07-24 06:12:09 ----A---- C:\WINDOWS\MAXLINK.INI 2009-07-24 06:11:54 ----D---- C:\Program Files\ScanSoft 2009-07-24 06:11:54 ----D---- C:\Program Files\Fichiers communs\ScanSoft Shared 2009-07-24 06:11:04 ----D---- C:\Program Files\ArcSoft 2009-07-24 06:11:04 ----A---- C:\WINDOWS\PCDLIB32.DLL 2009-07-24 06:01:01 ----A---- C:\WINDOWS\IsUn040c.exe 2009-07-24 06:00:32 ----D---- C:\Program Files\Canon 2009-07-24 05:53:59 ----HD---- C:\Documents and Settings\All Users\Application Data\CanonBJ 2009-07-24 05:53:58 ----A---- C:\WINDOWS\system32\CNMVS7L.DLL 2009-07-24 05:53:58 ----A---- C:\WINDOWS\system32\CNMLM7L.DLL 2009-07-24 05:53:16 ----HD---- C:\WINDOWS\system32\CanonMP Uninstaller Information 2009-07-24 05:53:14 ----A---- C:\WINDOWS\system32\CNCL500.DLL 2009-07-24 05:53:14 ----A---- C:\WINDOWS\system32\cncisco.dll 2009-07-24 05:53:14 ----A---- C:\WINDOWS\system32\CNCI500.DLL 2009-07-24 05:53:14 ----A---- C:\WINDOWS\system32\CNCC500.DLL 2009-07-24 05:53:11 ----HD---- C:\CanonMP 2009-07-24 05:26:45 ----HD---- C:\WINDOWS\system32\GroupPolicy 2009-07-23 22:59:19 ----D---- C:\Documents and Settings\All Users\Application Data\WinZip 2009-07-23 22:59:18 ----D---- C:\Program Files\WinZip 2009-07-23 22:47:47 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe 2009-07-23 22:47:45 ----D---- C:\Program Files\Fichiers communs\Adobe 2009-07-23 22:47:45 ----D---- C:\Program Files\Adobe 2009-07-23 19:06:14 ----D---- C:\WINDOWS\system32\DRVSTORE 2009-07-23 19:06:14 ----A---- C:\WINDOWS\system32\WdfCoInstaller01005.dll 2009-07-23 19:06:12 ----D---- C:\Program Files\Microsoft IntelliType Pro 2009-07-23 19:03:13 ----A---- C:\WINDOWS\system32\mucltui.dll.mui 2009-07-23 19:03:13 ----A---- C:\WINDOWS\system32\mucltui.dll 2009-07-23 17:43:19 ----D---- C:\Documents and Settings\Mykimax\Application Data\Macromedia 2009-07-23 17:43:19 ----D---- C:\Documents and Settings\Mykimax\Application Data\Adobe 2009-07-23 04:30:06 ----A---- C:\WINDOWS\system32\avgrsstx.dll 2009-07-23 04:30:03 ----D---- C:\Program Files\AVG 2009-07-23 04:30:03 ----D---- C:\Documents and Settings\All Users\Application Data\avg8 2009-07-23 03:06:40 ----D---- C:\Program Files\Logitech 2009-07-23 03:06:40 ----D---- C:\Program Files\Fichiers communs\Logitech 2009-07-23 02:45:12 ----D---- C:\Documents and Settings\Mykimax\Application Data\ATI 2009-07-23 02:45:12 ----D---- C:\Documents and Settings\All Users\Application Data\ATI 2009-07-23 02:42:58 ----D---- C:\Program Files\ATI Technologies 2009-07-23 02:37:24 ----N---- C:\WINDOWS\system32\ati2sgag.exe 2009-07-23 02:37:05 ----D---- C:\ATI 2009-07-23 02:05:07 ----A---- C:\WINDOWS\sfbm.INI 2009-07-23 02:04:05 ----N---- C:\WINDOWS\system32\CTSVCCTL.EXE 2009-07-23 02:04:05 ----N---- C:\WINDOWS\system32\CTSVCCDA.EXE 2009-07-23 01:51:57 ----A---- C:\WINDOWS\system32\cttele32.dll 2009-07-23 01:51:52 ----D---- C:\Program Files\OpenAL 2009-07-23 01:49:26 ----A---- C:\WINDOWS\system32\AppSetup.exe 2009-07-23 01:46:54 ----D---- C:\Program Files\Fichiers communs\Creative Labs Shared 2009-07-23 01:08:21 ----N---- C:\WINDOWS\Ctregrun.exe 2009-07-23 01:07:22 ----D---- C:\Program Files\Fichiers communs\Creative 2009-07-23 01:07:21 ----HD---- C:\Program Files\Creative Installation Information 2009-07-23 01:06:41 ----N---- C:\WINDOWS\Updreg.EXE 2009-07-23 01:06:16 ----N---- C:\WINDOWS\system32\ksuser.dll 2009-07-23 01:06:14 ----A---- C:\WINDOWS\system32\wrap_oal.dll 2009-07-23 01:06:14 ----A---- C:\WINDOWS\system32\OpenAL32.dll 2009-07-23 01:06:12 ----D---- C:\Documents and Settings\Mykimax\Application Data\Creative 2009-07-23 01:05:48 ----D---- C:\WINDOWS\system32\Data 2009-07-23 01:05:48 ----A---- C:\WINDOWS\CTDCRFRN.DLL 2009-07-23 01:04:49 ----D---- C:\Documents and Settings\All Users\Application Data\Creative 2009-07-23 01:04:07 ----D---- C:\Program Files\Creative 2009-07-23 01:01:32 ----HD---- C:\Program Files\InstallShield Installation Information 2009-07-23 00:34:19 ----D---- C:\WINDOWS\system32\windowspowershell 2009-07-23 00:33:36 ----A---- C:\WINDOWS\system32\d3dx9_32.dll 2009-07-23 00:33:34 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition 2009-07-23 00:33:07 ----D---- C:\Program Files\Microsoft 2009-07-23 00:32:55 ----D---- C:\Program Files\Windows Live SkyDrive 2009-07-23 00:32:37 ----D---- C:\Program Files\Windows Live 2009-07-23 00:19:39 ----N---- C:\WINDOWS\system32\spmsg2.dll 2009-07-22 23:58:40 ----D---- C:\WINDOWS\system32\XPSViewer 2009-07-22 23:58:38 ----D---- C:\Program Files\MSBuild 2009-07-22 23:58:37 ----D---- C:\WINDOWS\system32\en-US 2009-07-22 23:58:35 ----D---- C:\Program Files\Reference Assemblies 2009-07-22 23:58:25 ----N---- C:\WINDOWS\system32\xpssvcs.dll 2009-07-22 23:58:25 ----N---- C:\WINDOWS\system32\xpsshhdr.dll 2009-07-22 23:58:25 ----N---- C:\WINDOWS\system32\prntvpt.dll 2009-07-22 23:37:21 ----RSD---- C:\WINDOWS\assembly 2009-07-22 23:37:21 ----D---- C:\WINDOWS\Microsoft.NET 2009-07-22 23:37:20 ----D---- C:\WINDOWS\system32\URTTemp 2009-07-22 23:27:48 ----D---- C:\Program Files\Fichiers communs\Windows Live 2009-07-22 23:27:34 ----D---- C:\Program Files\Microsoft Silverlight 2009-07-22 23:27:28 ----N---- C:\WINDOWS\system32\spmsg.dll 2009-07-22 23:27:19 ----A---- C:\WINDOWS\system32\wmpns.dll 2009-07-22 23:27:13 ----D---- C:\Program Files\Windows Media Connect 2 2009-07-22 23:26:30 ----D---- C:\WINDOWS\system32\LogFiles 2009-07-22 23:15:44 ----D---- C:\WINDOWS\ie8updates 2009-07-22 23:15:38 ----D---- C:\WINDOWS\WBEM 2009-07-22 23:15:33 ----HD---- C:\WINDOWS\ie8 2009-07-22 23:15:19 ----A---- C:\WINDOWS\system32\MRT.exe 2009-07-22 23:05:45 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage 2009-07-22 23:05:34 ----D---- C:\WINDOWS\system32\PreInstall 2009-07-22 23:05:34 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2009-07-22 23:04:13 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2009-07-22 23:04:13 ----A---- C:\WINDOWS\system32\wups2.dll 2009-07-22 23:04:13 ----A---- C:\WINDOWS\system32\wucltui.dll.mui 2009-07-22 23:04:13 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui 2009-07-22 23:04:13 ----A---- C:\WINDOWS\system32\wuapi.dll.mui 2009-07-22 23:01:01 ----A---- C:\WINDOWS\system32\wpa.bak 2009-07-22 22:39:52 ----A---- C:\WINDOWS\system32\vsutil_loc040c.dll 2009-07-22 22:39:51 ----A---- C:\WINDOWS\system32\vsregexp.dll 2009-07-22 22:39:50 ----A---- C:\WINDOWS\system32\zlcommdb.dll 2009-07-22 22:39:50 ----A---- C:\WINDOWS\system32\zlcomm.dll 2009-07-22 22:39:48 ----D---- C:\WINDOWS\system32\ZoneLabs 2009-07-22 22:39:48 ----D---- C:\Program Files\Zone Labs 2009-07-22 22:39:48 ----A---- C:\WINDOWS\system32\zpeng25.dll 2009-07-22 22:39:48 ----A---- C:\WINDOWS\system32\vsxml.dll 2009-07-22 22:39:48 ----A---- C:\WINDOWS\system32\vswmi.dll 2009-07-22 22:39:48 ----A---- C:\WINDOWS\system32\vspubapi.dll 2009-07-22 22:39:48 ----A---- C:\WINDOWS\system32\vsmonapi.dll 2009-07-22 22:38:48 ----A---- C:\WINDOWS\system32\vsutil.dll 2009-07-22 22:38:48 ----A---- C:\WINDOWS\system32\vsinit.dll 2009-07-22 22:38:48 ----A---- C:\WINDOWS\system32\vsdata.dll 2009-07-22 22:38:47 ----D---- C:\WINDOWS\Internet Logs 2009-07-22 22:28:06 ----A---- C:\WINDOWS\system32\nvunrm.exe 2009-07-22 22:27:31 ----A---- C:\WINDOWS\system32\NVUNINST.EXE 2009-07-22 22:27:24 ----D---- C:\Program Files\Fichiers communs\InstallShield 2009-07-22 22:25:17 ----D---- C:\Program Files\AMD 2009-07-22 22:22:59 ----A---- C:\WINDOWS\system32\javaws.exe 2009-07-22 22:22:59 ----A---- C:\WINDOWS\system32\javaw.exe 2009-07-22 22:22:59 ----A---- C:\WINDOWS\system32\java.exe 2009-07-22 22:22:59 ----A---- C:\WINDOWS\system32\deploytk.dll 2009-07-22 22:22:55 ----D---- C:\Program Files\Java 2009-07-22 22:22:50 ----D---- C:\Documents and Settings\Mykimax\Application Data\Sun 2009-07-22 22:21:05 ----D---- C:\APPLICATIONS 2009-07-22 22:20:46 ----D---- C:\DirectX 9.0c 2009-07-22 21:31:51 ----SHD---- C:\Recycled 2009-07-22 21:29:14 ----D---- C:\Documents and Settings\Mykimax\Application Data\Identities 2009-07-22 21:29:13 ----HD---- C:\Program Files\Uninstall Information 2009-07-22 21:29:10 ----SD---- C:\Documents and Settings\Mykimax\Application Data\Microsoft 2009-07-22 21:28:37 ----SHD---- C:\System Volume Information 2009-07-22 21:28:37 ----SD---- C:\WINDOWS\system32\Microsoft 2009-07-22 21:28:37 ----D---- C:\WINDOWS\SoftwareDistribution 2009-07-22 21:28:37 ----D---- C:\WINDOWS\Prefetch 2009-07-22 21:28:37 ----A---- C:\WINDOWS\SchedLgU.Txt 2009-07-22 21:25:52 ----D---- C:\WINDOWS\system32\xircom 2009-07-22 21:25:52 ----D---- C:\Program Files\xerox 2009-07-22 21:25:52 ----D---- C:\Program Files\msn gaming zone 2009-07-22 21:25:52 ----D---- C:\Program Files\microsoft frontpage 2009-07-22 21:25:45 ----HD---- C:\WINDOWS\$hf_mig$ 2009-07-22 21:25:44 ----N---- C:\WINDOWS\system32\uexfat.dll 2009-07-22 21:25:40 ----A---- C:\WINDOWS\control.ini 2009-07-22 21:25:40 ----A---- C:\AUTOEXEC.BAT 2009-07-22 21:25:35 ----A---- C:\WINDOWS\system32\mapi32.dll 2009-07-22 21:25:12 ----SD---- C:\WINDOWS\Downloaded Program Files 2009-07-22 21:25:12 ----RD---- C:\WINDOWS\Offline Web Pages 2009-07-22 21:25:12 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2009-07-22 21:25:09 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2009-07-22 21:25:07 ----HD---- C:\Program Files\WindowsUpdate 2009-07-22 21:25:06 ----D---- C:\Program Files\Services en ligne 2009-07-22 21:24:58 ----D---- C:\WINDOWS\system32\DirectX 2009-07-22 21:24:53 ----A---- C:\WINDOWS\system32\atrace.dll 2009-07-22 21:24:52 ----A---- C:\WINDOWS\system32\desktop.ini 2009-07-22 21:24:52 ----A---- C:\WINDOWS\desktop.ini 2009-07-22 21:24:47 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2009-07-22 21:24:46 ----D---- C:\Program Files\Fichiers communs\Services 2009-07-22 21:24:46 ----A---- C:\WINDOWS\system32\acctres.dll 2009-07-22 21:24:44 ----SD---- C:\WINDOWS\Tasks 2009-07-22 21:24:44 ----D---- C:\Program Files\Fichiers communs\MSSoap 2009-07-22 21:24:44 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2009-07-22 21:24:41 ----D---- C:\WINDOWS\srchasst 2009-07-22 21:24:40 ----D---- C:\WINDOWS\system32\Macromed 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wuweb.dll 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wups.dll 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wucltui.dll 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wuauserv.dll 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2009-07-22 21:24:39 ----A---- C:\WINDOWS\system32\wuaueng.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\wuauclt.exe 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\wuapi.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\qmgr.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\bitsprx4.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2009-07-22 21:24:38 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2009-07-22 21:24:36 ----D---- C:\Program Files\Movie Maker 2009-07-22 21:24:25 ----A---- C:\WINDOWS\system32\safrslv.dll 2009-07-22 21:24:25 ----A---- C:\WINDOWS\system32\safrdm.dll 2009-07-22 21:24:25 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2009-07-22 21:24:24 ----A---- C:\WINDOWS\system32\racpldlg.dll 2009-07-22 21:24:22 ----A---- C:\WINDOWS\system32\fltMc.exe 2009-07-22 21:24:22 ----A---- C:\WINDOWS\system32\fltlib.dll 2009-07-22 21:24:21 ----D---- C:\WINDOWS\system32\Restore 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\srsvc.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\srrstr.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\srclient.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\mnmdd.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2009-07-22 21:24:21 ----A---- C:\WINDOWS\system32\ils.dll 2009-07-22 21:24:20 ----A---- C:\WINDOWS\system32\msconf.dll 2009-07-22 21:24:19 ----D---- C:\Program Files\NetMeeting 2009-07-22 21:24:18 ----A---- C:\WINDOWS\system32\msoert2.dll 2009-07-22 21:24:18 ----A---- C:\WINDOWS\system32\msoeacct.dll 2009-07-22 21:24:18 ----A---- C:\WINDOWS\system32\inetres.dll 2009-07-22 21:24:17 ----A---- C:\WINDOWS\system32\inetcomm.dll 2009-07-22 21:24:16 ----D---- C:\Program Files\Outlook Express 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\schedsvc.dll 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\mstinit.exe 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\mstask.dll 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\isign32.dll 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\inetcfg.dll 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\icwphbk.dll 2009-07-22 21:24:16 ----A---- C:\WINDOWS\system32\icwdial.dll 2009-07-22 21:24:12 ----D---- C:\Program Files\Fichiers communs\System 2009-07-22 21:24:11 ----D---- C:\Program Files\Internet Explorer 2009-07-22 21:23:56 ----D---- C:\Program Files\ComPlus Applications 2009-07-22 21:23:56 ----A---- C:\WINDOWS\vbaddin.ini 2009-07-22 21:23:56 ----A---- C:\WINDOWS\vb.ini 2009-07-22 21:23:54 ----D---- C:\WINDOWS\Registration 2009-07-22 21:23:53 ----D---- C:\Program Files\Online Services 2009-07-22 21:23:52 ----D---- C:\Program Files\Windows Media Player 2009-07-22 21:23:50 ----D---- C:\Program Files\Messenger 2009-07-22 21:23:50 ----A---- C:\WINDOWS\system32\write.exe 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\winchat.exe 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\sndvol32.exe 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\hticons.dll 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\avwav.dll 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\avtapi.dll 2009-07-22 21:23:46 ----A---- C:\WINDOWS\system32\avmeter.dll 2009-07-22 21:23:42 ----A---- C:\WINDOWS\system32\getuname.dll 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\tslabels.ini 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\tskill.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\tscon.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\shadow.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\rwinsta.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\reset.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\regini.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\qwinsta.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\qappsrv.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\msg.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\charmap.exe 2009-07-22 21:23:41 ----A---- C:\WINDOWS\system32\calc.exe 2009-07-22 21:23:40 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2009-07-22 21:23:40 ----A---- C:\WINDOWS\system32\logoff.exe 2009-07-22 21:23:40 ----A---- C:\WINDOWS\system32\cdmodem.dll 2009-07-22 21:23:37 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2009-07-22 21:23:26 ----D---- C:\Program Files\MSN 2009-07-22 21:23:25 ----A---- C:\WINDOWS\system32\sndrec32.exe 2009-07-22 21:23:25 ----A---- C:\WINDOWS\system32\accwiz.exe 2009-07-22 21:23:24 ----D---- C:\Program Files\Windows NT 2009-07-22 21:23:24 ----A---- C:\WINDOWS\system32\mplay32.exe 2009-07-22 21:23:24 ----A---- C:\WINDOWS\system32\hypertrm.dll 2009-07-22 21:23:23 ----A---- C:\WINDOWS\system32\mspaint.exe 2009-07-22 21:23:23 ----A---- C:\WINDOWS\system32\clipbrd.exe 2009-07-22 21:23:22 ----A---- C:\WINDOWS\system32\tsgqec.dll 2009-07-22 21:23:22 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2009-07-22 21:23:22 ----A---- C:\WINDOWS\system32\rhttpaa.dll 2009-07-22 21:23:22 ----A---- C:\WINDOWS\system32\aaclient.dll 2009-07-22 21:23:21 ----A---- C:\WINDOWS\system32\remotepg.dll 2009-07-22 21:23:21 ----A---- C:\WINDOWS\system32\mstscax.dll 2009-07-22 21:23:21 ----A---- C:\WINDOWS\system32\mstsc.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\termsrv.dll 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\sessmgr.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdshost.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdpclip.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\rdchost.dll 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\qprocess.exe 2009-07-22 21:23:20 ----A---- C:\WINDOWS\system32\icaapi.dll 2009-07-22 21:23:19 ----D---- C:\WINDOWS\system32\MsDtc 2009-07-22 21:23:19 ----A---- C:\WINDOWS\system32\mtxoci.dll 2009-07-22 21:23:19 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2009-07-22 21:23:19 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2009-07-22 21:23:19 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2009-07-22 21:23:18 ----A---- C:\WINDOWS\system32\xolehlp.dll 2009-07-22 21:23:18 ----A---- C:\WINDOWS\system32\msdtctm.dll 2009-07-22 21:23:18 ----A---- C:\WINDOWS\system32\msdtclog.dll 2009-07-22 21:23:18 ----A---- C:\WINDOWS\system32\msdtc.exe 2009-07-22 21:23:17 ----D---- C:\WINDOWS\system32\Com 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\mtxex.dll 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\mtxdm.dll 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\comrepl.dll 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\comaddin.dll 2009-07-22 21:23:17 ----A---- C:\WINDOWS\system32\colbact.dll 2009-07-22 21:23:16 ----A---- C:\WINDOWS\system32\stclient.dll 2009-07-22 21:23:16 ----A---- C:\WINDOWS\system32\clbcatex.dll 2009-07-22 21:23:16 ----A---- C:\WINDOWS\system32\catsrvut.dll 2009-07-22 21:23:16 ----A---- C:\WINDOWS\system32\catsrvps.dll 2009-07-22 21:23:16 ----A---- C:\WINDOWS\system32\catsrv.dll 2009-07-22 21:23:15 ----A---- C:\WINDOWS\system32\comuid.dll 2009-07-22 21:23:15 ----A---- C:\WINDOWS\system32\comsvcs.dll 2009-07-22 21:23:14 ----A---- C:\WINDOWS\system32\comsnap.dll 2009-07-22 21:23:14 ----A---- C:\WINDOWS\system32\clbcatq.dll 2009-07-22 21:23:08 ----A---- C:\WINDOWS\system32\servdeps.dll 2009-07-22 21:23:08 ----A---- C:\WINDOWS\system32\mmfutil.dll 2009-07-22 21:23:08 ----A---- C:\WINDOWS\system32\licwmi.dll 2009-07-22 21:23:07 ----A---- C:\WINDOWS\system32\cmprops.dll 2009-07-22 21:22:17 ----A---- C:\WINDOWS\system32\h323log.txt 2009-07-22 21:19:36 ----A---- C:\WINDOWS\system32\hidserv.dll 2009-07-22 21:19:09 ----D---- C:\WINDOWS\system32\ReinstallBackups 2009-07-22 21:18:40 ----N---- C:\WINDOWS\system32\nvuide.exe 2009-07-22 21:18:39 ----A---- C:\WINDOWS\system32\usbui.dll 2009-07-22 21:18:16 ----SHD---- C:\WINDOWS\Installer 2009-07-22 21:18:16 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2009-07-22 21:18:15 ----D---- C:\Program Files\Fichiers communs\ODBC 2009-07-22 21:18:15 ----A---- C:\WINDOWS\ODBCINST.INI 2009-07-22 21:18:13 ----D---- C:\Program Files\Fichiers communs\SpeechEngines 2009-07-22 21:18:12 ----RD---- C:\Program Files 2009-07-22 21:18:12 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2009-07-22 21:18:12 ----D---- C:\Program Files\Fichiers communs 2009-07-22 21:18:05 ----A---- C:\WINDOWS\system32\irclass.dll 2009-07-22 21:18:05 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2009-07-22 21:18:04 ----A---- C:\WINDOWS\system32\spxcoins.dll 2009-07-22 21:18:04 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2009-07-22 21:18:04 ----A---- C:\WINDOWS\system32\dgsetup.dll 2009-07-22 21:18:02 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2009-07-22 21:18:02 ----A---- C:\WINDOWS\TASKMAN.EXE 2009-07-22 21:18:01 ----A---- C:\WINDOWS\system32\storprop.dll 2009-07-22 21:18:01 ----A---- C:\WINDOWS\system32\batt.dll 2009-07-22 21:18:01 ----A---- C:\WINDOWS\NOTEPAD.EXE 2009-07-22 21:17:59 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2009-07-22 21:17:55 ----RA---- C:\WINDOWS\SET8.tmp 2009-07-22 21:17:53 ----RA---- C:\WINDOWS\SET4.tmp 2009-07-22 21:17:52 ----RA---- C:\WINDOWS\SET3.tmp 2009-07-22 21:17:49 ----D---- C:\WINDOWS\system32\CatRoot2 2009-07-22 21:17:49 ----D---- C:\WINDOWS\system32\CatRoot 2009-07-22 21:17:44 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2009-07-22 21:17:26 ----D---- C:\Documents and Settings 2009-07-22 21:14:47 ----SH---- C:\boot.ini 2009-07-22 21:12:12 ----RSHD---- C:\WINDOWS\system32\dllcache 2009-07-22 21:12:12 ----RSD---- C:\WINDOWS\Fonts 2009-07-22 21:12:12 ----RD---- C:\WINDOWS\Web 2009-07-22 21:12:12 ----HD---- C:\WINDOWS\inf 2009-07-22 21:12:12 ----D---- C:\WINDOWS\WinSxS 2009-07-22 21:12:12 ----D---- C:\WINDOWS\twain_32 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Temp 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\wins 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\wbem 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\usmt 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\spool 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\ShellExt 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\Setup 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\ras 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\oobe 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\npp 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\mui 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\inetsrv 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\IME 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\icsxml 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\ias 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\fr-fr 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\fr 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\export 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\drivers 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\dhcp 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\config 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\3com_dmi 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\3076 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\2052 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1054 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1042 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1041 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1037 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1036 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1033 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1031 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1028 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32\1025 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system32 2009-07-22 21:12:12 ----D---- C:\WINDOWS\system 2009-07-22 21:12:12 ----D---- C:\WINDOWS\security 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Resources 2009-07-22 21:12:12 ----D---- C:\WINDOWS\repair 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Provisioning 2009-07-22 21:12:12 ----D---- C:\WINDOWS\PeerNet 2009-07-22 21:12:12 ----D---- C:\WINDOWS\pchealth 2009-07-22 21:12:12 ----D---- C:\WINDOWS\NLDRV 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Network Diagnostic 2009-07-22 21:12:12 ----D---- C:\WINDOWS\mui 2009-07-22 21:12:12 ----D---- C:\WINDOWS\msapps 2009-07-22 21:12:12 ----D---- C:\WINDOWS\msagent 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Media 2009-07-22 21:12:12 ----D---- C:\WINDOWS\L2Schemas 2009-07-22 21:12:12 ----D---- C:\WINDOWS\java 2009-07-22 21:12:12 ----D---- C:\WINDOWS\ime 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Help 2009-07-22 21:12:12 ----D---- C:\WINDOWS\ehome 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Driver Cache 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Debug 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Cursors 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Connection Wizard 2009-07-22 21:12:12 ----D---- C:\WINDOWS\Config 2009-07-22 21:12:12 ----D---- C:\WINDOWS\AppPatch 2009-07-22 21:12:12 ----D---- C:\WINDOWS\addins 2009-07-22 21:12:12 ----D---- C:\WINDOWS 2009-07-12 20:11:13 ----A---- C:\WINDOWS\system32\yk51x86.dll 2009-07-11 14:37:39 ----A---- C:\WINDOWS\system32\sfcfiles.dll 2009-07-11 14:37:30 ----N---- C:\WINDOWS\system32\nvraiins.dll 2009-07-11 14:37:30 ----N---- C:\WINDOWS\system32\nvraidco.dll 2009-07-11 14:37:30 ----N---- C:\WINDOWS\system32\NVCOI.DLL 2009-07-11 14:37:29 ----N---- C:\WINDOWS\system32\idecoi.dll 2009-07-11 14:37:29 ----A---- C:\WINDOWS\system32\idecoiins.dll 2009-07-11 14:37:27 ----A---- C:\WINDOWS\system32\syssetup.dll 2009-07-04 16:39:11 ----A---- C:\WINDOWS\system32\nvusmb.exe 2009-07-04 16:39:11 ----A---- C:\WINDOWS\system32\NVCOSMB.DLL 2009-07-04 16:39:09 ----A---- C:\WINDOWS\system32\nvconrm.dll 2009-07-04 16:39:09 ----A---- C:\WINDOWS\system32\fdco1ins.dll 2009-07-04 16:39:09 ----A---- C:\WINDOWS\system32\fdco1.dll 2009-07-04 16:39:09 ----A---- C:\WINDOWS\system32\bdco1ins.dll 2009-07-04 16:39:09 ----A---- C:\WINDOWS\system32\bdco1.dll ======List of files/folders modified in the last 1 months====== 2009-07-29 04:27:06 ----A---- C:\WINDOWS\SYSTEM.INI 2009-07-22 23:27:20 ----A---- C:\WINDOWS\win.ini 2009-07-19 18:45:00 ----A---- C:\WINDOWS\system32\ieframe.dll 2009-07-19 15:15:02 ----A---- C:\WINDOWS\system32\mshtml.dll 2009-07-09 20:57:16 ----N---- C:\WINDOWS\system32\hid.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\wzcsvc.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\wzcsapi.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\pjlmon.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\pid.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\msyuv.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\iyuv_32.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\dmutil.dll 2009-07-09 20:57:16 ----A---- C:\WINDOWS\system32\cnbjmon.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\wowfaxui.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\wowfax.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrvpa.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrvoica.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrv80a.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrv42a.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrsvpia.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrshuta.exe 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrsdpia.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrrtosa.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrprbda.exe 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrmlnka.exe 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrlbva.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrfaxa.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrdtea.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrdpa.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrcoina.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\usrcntra.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\tsbyuv.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\streamci.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\sprio800.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\sprio600.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\spnike.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\paqsp.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\mdwmdmsp.dll 2009-07-09 20:55:24 ----A---- C:\WINDOWS\system32\dvdplay.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 atitray;atitray; \??\C:\Program Files\Ray Adams\ATI Tray Tools\atitray.sys [] R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-07-23 335752] R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-07-23 27784] R1 AvgTdiX;AVG Free8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-07-23 108552] R1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [2007-06-25 36776] R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys [2007-06-25 38440] R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14720] R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2009-02-18 353672] R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244] R2 LBeepKE;LBeepKE; C:\WINDOWS\System32\Drivers\LBeepKE.sys [2008-12-18 10384] R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304] R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-04 60800] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-05-16 4069888] R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-04-01 93184] R3 CT20XUT.SYS;CT20XUT.SYS; C:\WINDOWS\System32\drivers\CT20XUT.SYS [2009-06-04 171032] R3 ctac32k;Creative AC3 Software Decoder; C:\WINDOWS\system32\drivers\ctac32k.sys [2009-06-04 511000] R3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2009-06-04 526232] R3 CTEXFIFX.SYS;CTEXFIFX.SYS; C:\WINDOWS\System32\drivers\CTEXFIFX.SYS [2009-06-04 1324056] R3 CTHWIUT.SYS;CTHWIUT.SYS; C:\WINDOWS\System32\drivers\CTHWIUT.SYS [2009-06-04 72728] R3 ctprxy2k;Creative Proxy Driver; C:\WINDOWS\system32\drivers\ctprxy2k.sys [2009-06-04 14360] R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\drivers\ctsfm2k.sys [2009-06-04 158744] R3 emupia;E-mu Plug-in Architecture Driver; C:\WINDOWS\system32\drivers\emupia2k.sys [2009-06-04 95768] R3 FilterService;UVC Filter Service; C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys [2007-07-19 22296] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400] R3 ha20x2k;Creative 20X HAL Driver; C:\WINDOWS\system32\drivers\ha20x2k.sys [2009-06-04 1177624] R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2008-12-18 63248] R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-12-18 35472] R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-12-18 37392] R3 LMouKE;SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2008-12-18 79248] R3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-07-20 2109592] R3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-07-20 2142488] R3 lvpopflt;Logitech POP Suppression Filter; C:\WINDOWS\system32\DRIVERS\lvpopflt.sys [2007-07-19 1920920] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2007-07-18 25624] R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-10-12 41752] R3 LVUVC;Logitech QuickCam Pro 5000(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc.sys [2007-07-19 3599000] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [] R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288] R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-04 61824] R3 NuidFltr;NUID filter driver; C:\WINDOWS\system32\DRIVERS\NuidFltr.sys [2009-05-28 14736] R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2007-03-06 58752] R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2007-03-06 19968] R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2009-06-04 130072] R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152] R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000] R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2009-01-13 19336] R3 WmFilter;Logitech Gaming HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2009-01-13 29192] R3 WmXlCore;Logitech Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2009-01-13 49160] R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2009-06-15 297728] R4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2008-09-29 133632] R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [2007-06-25 119080] S3 ahx47vee;ahx47vee; C:\WINDOWS\system32\drivers\ahx47vee.sys [] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 CT20XUT;CT20XUT; C:\WINDOWS\system32\drivers\CT20XUT.SYS [2009-06-04 171032] S3 ctdvda2k;Creative DVD-Audio Device Driver; C:\WINDOWS\system32\drivers\ctdvda2k.sys [2009-06-04 347080] S3 CTEXFIFX;CTEXFIFX; C:\WINDOWS\system32\drivers\CTEXFIFX.SYS [2009-06-04 1324056] S3 CTHWIUT;CTHWIUT; C:\WINDOWS\system32\drivers\CTHWIUT.SYS [2009-06-04 72728] S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\H:\Programmes\Everest\5.02.1789 beta\kerneld.wnt [] S3 iteio;iteio; \??\C:\WINDOWS\system32\drivers\iteio.sys [] S3 MaxtorFrontPanel1;Maxtor 1394 Storage Front Panel Driver; C:\WINDOWS\system32\DRIVERS\mxofwfp.sys [2003-03-13 19712] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 MXOPSWD;Maxtor OneTouch Security Driver; C:\WINDOWS\system32\DRIVERS\mxopswd.sys [2005-04-06 15360] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009.SP3c\WNt500x86\Sandra.sys [] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856] S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104] S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2009-01-13 14728] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] S4 atapi;atapi; C:\WINDOWS\system32\drivers\atapi.sys [2008-04-13 96512] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] S4 sr;Pilote de filtre de restauration système; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-13 73600] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2009-07-23 907032] R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-07-23 298776] R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2009-02-23 307200] R2 LVCOMSer;LVCOMSer; C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe [2007-07-20 186904] R2 LVPrcSrv;Process Monitor; C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-07-20 137752] R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZONELABS\vsmon.exe [2009-02-18 2402184] S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe [2007-07-20 141848] S3 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2009-07-13 719392] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CTAELicensing.exe [2009-07-23 79360] S3 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\system32\CTsvcCDA.exe [1999-12-13 44032] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-24 182768] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTServ.exe [2009-02-19 121360] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-06-29 800040] S3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848] S3 NTService1;MaxSyncService; C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe [2005-12-01 118784] S3 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2009-04-08 1377536] S3 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-07-25 603904] S3 UxTuneUp;TuneUp Extension de thème; C:\WINDOWS\System32\svchost.exe [2008-04-13 14336] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336] S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712] S4 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-05-16 602112] S4 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-05-15 593920] S4 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888] S4 InCDsrv;InCD Helper; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [2007-06-25 1552680] S4 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-07-13 542496] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2005-08-08 167936] S4 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-07-25 362240] S4 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] Et enfin pour terminer le fichier "info" info.txt logfile of random's system information tool 1.06 2009-08-03 21:33:48 ======Uninstall list====== -->"C:\Program Files\Creative Installation Information\CREATIVE_MEDIASOURCE_U\Setup.exe" /remove /nolog/l0x040c -->"C:\Program Files\Creative Installation Information\CTCMSGO\Setup.exe" /remove /l0x040c -->"C:\Program Files\Creative Installation Information\E-CENTER_NET_CONTENT_U\Setup.exe" /remove /nolog/l0x040c -->"C:\Program Files\Creative Installation Information\E-CENTER_PLUGIN_CDBURNER_U\Setup.exe" /remove /nolog/l0x040c -->"C:\Program Files\Creative Installation Information\E-CENTER_PLUGIN_MINIDISC_U\Setup.exe" /remove /nolog/l0x040c -->"C:\Program Files\Creative Installation Information\E-CENTER_PLUGIN_ONLINESTORE_U\Setup.exe" /remove /nolog/l0x040c -->"C:\Program Files\Creative Installation Information\MEDIASOURCE_PLAYER_SKINPACK_U\Setup.exe" /remove /nolog/l0x040c -->"C:\Program Files\Creative\Sound Blaster X-Fi\Program\SETUP.EXE" /S /U /W /L:FRN -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER -->C:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL -->C:\WINDOWS\NuNInst.exe /UNINSTALL -->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL -->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL -->C:\WINDOWS\UNRecode.exe /UNINSTALL -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{06E3E953-0570-4DFF-A7B5-46114C390228}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{06E3E953-0570-4DFF-A7B5-46114C390228}\setup.exe" -l0x40c /remove -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1EF644C7-1A0D-4B94-9AF5-AD04702094A4}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1EF644C7-1A0D-4B94-9AF5-AD04702094A4}\setup.exe" -l0x40c /remove -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2670895A-4E6C-4450-B868-7B7DB80A3357}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x40c /remove -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x40c /remove -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{888347B3-AEC5-4BB5-8BAB-781D72A57C73}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C229589D-CC1A-43FF-9507-CDED3AB85325}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C229589D-CC1A-43FF-9507-CDED3AB85325}\setup.exe" -l0x40c /remove -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CC3D3A93-C433-4329-AC3A-7EFC52A332C2}\setup.exe" -l0x9 -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CC3D3A93-C433-4329-AC3A-7EFC52A332C2}\setup.exe" -l0x9 /remove -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D8A544F4-AC5F-4B67-9C74-F3E976798797}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D8A544F4-AC5F-4B67-9C74-F3E976798797}\setup.exe" -l0x40c /remove -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ECC3C64B-2A22-48C5-857B-E952D7BE64F5}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ECC3C64B-2A22-48C5-857B-E952D7BE64F5}\setup.exe" -l0x40c /remove -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FBFF2411-D066-4D24-BCE0-893086009E1B}\setup.exe" -l0x40c -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FBFF2411-D066-4D24-BCE0-893086009E1B}\setup.exe" -l0x40c /remove -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FCCDA302-32D9-4AE7-A094-4BE677554F26}\setup.exe" -l0x40c -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Reader 9.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001} Apple Mobile Device Support-->MsiExec.exe /I{C337BDAF-CB4E-47E2-BE1A-CB31BB7DD0E3} Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe ArcSoft PhotoStudio 5.5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{85309D89-7BE9-4094-BB17-24999C6118FC}\SETUP.EXE" -l0x40c a-squared Free 4.5-->"C:\Program Files\a-squared Free\unins000.exe" Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7} ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x40c ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean AVG Free 8.5-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B} BSPlayer-->"C:\Program Files\Webteh\BSplayerPro\uninstall.exe" Canon MP Navigator 2.0-->"C:\Program Files\Canon\MP Navigator 2.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator 2.0\uninst.ini Canon MP500-->"C:\WINDOWS\system32\CanonMP Uninstaller Information\{BA4DF4C3-196E-4128-969A-00996B5A46F8}\DelDrv.exe" /U:{BA4DF4C3-196E-4128-969A-00996B5A46F8} /L0x000c Canon Utilities Easy-PhotoPrint EX-->C:\Program Files\Canon\Easy-PhotoPrint EX\uninst.exe uninst.ini Catalyst Control Center - Branding-->MsiExec.exe /I{D3B1C799-CB73-42DE-BA0F-2344793A095C} CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A} CD-LabelPrint-->"C:\Program Files\Canon\CD-LabelPrint\Uninstal.exe" Canon.CDLabelPrint.Application Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E} Coffret de pilotes Logitech QuickCam-->"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\11.50.1145\LgDrvInst.exe" -remove -instdir"C:\Program Files\Fichiers communs\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -promptuninstall -arpregkey"lvdrivers_11.50" /clone_wait /hide_progress Creative Console Launcher-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{888347B3-AEC5-4BB5-8BAB-781D72A57C73}\setup.exe" -l0x40c /remove Creative MediaSource 5-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}\SETUP.EXE" -l0x40c /remove Creative Software AutoUpdate-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\setup.exe" -l0x40c /remove Creative System Information-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x40c /remove Creative WaveStudio 7-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2670895A-4E6C-4450-B868-7B7DB80A3357}\setup.exe" -l0x40c /remove DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER DivX Plus DirectShow Filters-->C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN Dual-Core Optimizer-->MsiExec.exe /X{9FD6F1A8-5550-46AF-8509-271DF0E768B5} DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe" DVDFab Decrypter 3.0.8.0-->"C:\Program Files\DVDFab Decrypter 3\unins000.exe" eMule-->"C:\Program Files\eMule\Uninstall.exe" Galerie de photos Windows Live-->MsiExec.exe /X{44E54A81-9D91-4AA1-9417-80AFF134F5FF} Gestionnaire de banques SoundFont-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\setup.exe" -l0x40c /remove Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_9DE96A29E721D90A.exe" /uninstall Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C} HD Tach version 3-->"C:\Program Files\Simpli Software\HD Tach\unins000.exe" HijackThis 2.0.2-->"C:\APPLICATIONS\HiJackThis 2.02\HijackThis.exe" /uninstall Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT="" Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT="" HydraVision-->MsiExec.exe /X{FCCDE84B-0154-459E-A8F2-C6B3FA5C1881} Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D} iTunes-->MsiExec.exe /I{99ECF41F-5CCA-42BD-B8B8-A8333E2E2944} Java 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF} Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3} KC Softwares VideoInspector-->"C:\Program Files\KC Softwares\VideoInspector\unins000.exe" KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355} K-Lite Mega Codec Pack 5.0.0-->"C:\Program Files\K-Lite Codec Pack\unins000.exe" Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall Logitech Gaming Software 5.04-->MsiExec.exe /X{768F22DC-2D20-4F52-A9A1-5E231FB7F752} Logitech QuickCam-->MsiExec.exe /X{364EC092-93CF-4DDC-9D7A-7278452028E0} Logitech SetPoint-->"C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe" -runfromtemp -l0x040c -removeonly Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Maxtor OneTouch III-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{60EEB642-E9E0-45A2-A676-B9D8FE17C4A9} /l1036 Media Player Classic fr-->"C:\Program Files\Media Player Classic\uninstall.exe" Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700} Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C} Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA-->MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128} Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31} Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Mise à jour de sécurité pour Windows Internet Explorer 8 (KB969897)-->"C:\WINDOWS\ie8updates\KB969897-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->"C:\WINDOWS\ie8updates\KB972260-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Mise à jour pour Windows Internet Explorer 8 (KB972636)-->"C:\WINDOWS\ie8updates\KB972636-IE8\spuninst\spuninst.exe" Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe Mozilla Firefox (3.5.1)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MVision-->MsiExec.exe /I{35725FBC-A136-4A46-9F29-091759D9BB93} Nero 7 Premium-->MsiExec.exe /X{CF097717-F174-4144-954A-FBC4BF301036} neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} NVIDIA Drivers-->C:\WINDOWS\system32\nvuide.exe UninstallGUI O&O Defrag Professional-->MsiExec.exe /I{B15B4D42-6B57-4A36-9458-A07D7F8955F9} OmniPage SE 2.0-->MsiExec.exe /I{79D5997E-BF79-48BB-8B41-9BE59C15C2D7} OpenAL-->"C:\Program Files\OpenAL\OALInst.exe" /U Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238} Panneau de configuration audio Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x40c /remove Panneau de volume-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FCCDA302-32D9-4AE7-A094-4BE677554F26}\setup.exe" -l0x40c /remove PowerDVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\LogiShrd\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68} Ray Adams ATI Tray Tools-->"C:\Program Files\Ray Adams\ATI Tray Tools\uninstall.exe" Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} Skype web features-->MsiExec.exe /I{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748} Skype™ 4.1-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36} Smart Guardian-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\ITE\Smart Guardian\Uninst.isu" Sound Blaster X-Fi-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}\SETUP.EXE" -l0x40c /remove Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe" TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357} Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT="" VC 9.0 Runtime-->MsiExec.exe /I{02E89EFC-7B07-4D5A-AA03-9EC0902914EE} VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B} VLC media player 1.0.0-->C:\Program Files\VideoLAN\VLC\uninstall.exe Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe" Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41} Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52} Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657} Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C} Windows Live Sync-->MsiExec.exe /X{9C5EB781-0D37-44B8-9A58-77B3E4BF5F5E} Windows Live Writer-->MsiExec.exe /X{2231CE39-B963-4B9D-823A-F412ECA637B1} Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll WinZip 11.1-->MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240B2} ZoneAlarm Pro-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe ======Hosts File====== 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com ======Security center information====== AV: AVG Anti-Virus Free FW: ZoneAlarm Pro Firewall (disabled) ======System event log====== Computer Name: PC-MYKI Event Code: 2 Message: Device identified. Record Number: 658 Source Name: nvata Time Written: 20090723000243.000000+120 Event Type: Informations User: Computer Name: PC-MYKI Event Code: 2 Message: Device identified. Record Number: 657 Source Name: nvata Time Written: 20090723000243.000000+120 Event Type: Informations User: Computer Name: PC-MYKI Event Code: 7036 Message: Le service HTTP SSL est entré dans l'état : en cours d'exécution. Record Number: 656 Source Name: Service Control Manager Time Written: 20090723000240.000000+120 Event Type: Informations User: Computer Name: PC-MYKI Event Code: 7035 Message: Un contrôle Démarrer a correctement été envoyé au service HTTP SSL. Record Number: 655 Source Name: Service Control Manager Time Written: 20090723000240.000000+120 Event Type: Informations User: AUTORITE NT\SERVICE LOCAL Computer Name: PC-MYKI Event Code: 7036 Message: Le service Service COM de gravage de CD IMAPI est entré dans l'état : arrêté. Record Number: 654 Source Name: Service Control Manager Time Written: 20090723000236.000000+120 Event Type: Informations User: =====Application event log===== Computer Name: PC-MYKI Event Code: 0 Message: Le service a démarré avec succès. Record Number: 267 Source Name: idsvc Time Written: 20090723005210.000000+120 Event Type: Informations User: Computer Name: PC-MYKI Event Code: 1800 Message: Le service Centre de sécurité Windows a démarré. Record Number: 266 Source Name: SecurityCenter Time Written: 20090723004003.000000+120 Event Type: Informations User: Computer Name: PC-MYKI Event Code: 11707 Message: Produit : Windows Live Writer -- L'installation s'est terminée correctement. Record Number: 265 Source Name: MsiInstaller Time Written: 20090723003354.000000+120 Event Type: Informations User: PC-MYKI\Mykimax Computer Name: PC-MYKI Event Code: 11707 Message: Produit : Galerie de photos Windows Live -- L'installation s'est terminée correctement. Record Number: 264 Source Name: MsiInstaller Time Written: 20090723003349.000000+120 Event Type: Informations User: PC-MYKI\Mykimax Computer Name: PC-MYKI Event Code: 11707 Message: Produit : Windows Live Sync -- L'installation s'est terminée correctement. Record Number: 263 Source Name: MsiInstaller Time Written: 20090723003342.000000+120 Event Type: Informations User: PC-MYKI\Mykimax ======Environment variables====== "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip "ComSpec"=%SystemRoot%\system32\cmd.exe "FP_NO_HOST_CHECK"=NO "NUMBER_OF_PROCESSORS"=2 "OS"=Windows_NT "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\WINDOWS\system32\WindowsPowerShell\v1.0;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Fichiers communs\DivX Shared\ "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.PSC1 "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_IDENTIFIER"=x86 Family 15 Model 35 Stepping 2, AuthenticAMD "PROCESSOR_LEVEL"=15 "PROCESSOR_REVISION"=2302 "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "tvdumpflags"=8 "windir"=%SystemRoot%

Voilà c'est fait Voici donc pour commencer mon dernier scan Hijackthis: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:38:29, on 03/08/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Creative\Shared Files\CTAudSvc.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe C:\WINDOWS\CTHELPER.EXE C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\Program Files\Microsoft IntelliType Pro\itype.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\DOCUME~1\Mykimax\APPLIC~1\MICROS~1\comrepl.exe C:\WINDOWS\SYSTEM32\CTXFISPI.EXE C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\WINDOWS\Explorer.EXE C:\APPLICATIONS\HiJackThis 2.02\HiJackThis 2.22.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F3 - REG:win.ini: load=C:\DOCUME~1\Mykimax\APPLIC~1\MICROS~1\comrepl.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll" O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe" O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKLM\..\Policies\Explorer\Run: [rsvp] C:\WINDOWS\System32\drivers\rsvp.exe /waitservice O4 - HKCU\..\Policies\Explorer\Run: [spool] C:\DOCUME~1\Mykimax\APPLIC~1\spoolsv.exe /waitservice O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Policies\Explorer\Run: [spool] C:\DOCUME~1\Mykimax\LOCALS~1\APPLIC~1\spoolsv.exe /waitservice (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O4 - HKUS\.DEFAULT\..\Policies\Explorer\Run: [spool] C:\DOCUME~1\Mykimax\LOCALS~1\APPLIC~1\spoolsv.exe /waitservice (User 'Default user') O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1248296631359 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1248296624484 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareup...15108/CTPID.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CTAELicensing.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTServ.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: MaxSyncService (NTService1) - - C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZONELABS\vsmon.exe Le scan de Malwarebytes: Malwarebytes' Anti-Malware 1.40 Version de la base de données: 2551 Windows 5.1.2600 Service Pack 3 03/08/2009 21:30:56 mbam-log-2009-08-03 (21-30-51).txt Type de recherche: Examen complet (C:\|F:\|G:\|H:\|J:\|K:\|L:\|M:\|S:\|T:\|Z:\|) Eléments examinés: 148664 Temps écoulé: 11 minute(s), 53 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 2 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 4 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\rsvp (Trojan.Agent) -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\spool (Trojan.Agent) -> No action taken. Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): C:\WINDOWS\system32\drivers\rsvp.exe (Trojan.Agent) -> No action taken. C:\Documents and Settings\Mykimax\Application Data\spoolsv.exe (Trojan.Agent) -> No action taken. C:\Documents and Settings\Mykimax\Application Data\Microsoft\comrepl.exe (Trojan.Agent) -> No action taken. C:\Documents and Settings\Mykimax\Local Settings\Application Data\spoolsv.exe (Heuristics.Reserved.Word.Exploit) -> No action taken.

Merci beaucoup de m'aider Donc je fais les scans et je poste ça au plus vite

Bonjour, Je suis toujours coincè avec mon histoire et je crois bien que ça empire J'ai remarqué qu'au repos la charge de l'UC atteingnait presque 800mo!! Or même à l'oeuil nu on voit bien que le total des processus prèsents dans le gestionnaire de tâches n'exéde pas les 400mo C'est comme si il y avait un processus invisible (tournant en permanance) bouffant environ 400mo Je dois dire que ça commence a m'inquièter ;et comme j'y connais quasi rien en dèsifection je sais plus quoi faire vu que mes logiciels habituels de sècuritè ne trouvent rien ou ne peuvent pas le faire sauter dèfinitivement Merci de m'aider

Merci pour ton aide, En fait c'est un windows Xp sp2 pro original auquel j'ai intègrè le sp3,l'Exfat et des drivers sata;lègèrement modifiè via Nlite Mais ce n'est pas un windows lsd ou pirate =>Le scan A-Squared d'aujourd'hui me trouve: C:\WINDOWS\System\mstsc.exe

Bonjour, Je viens tout juste de terminer une rèinstall d'XP que je suis dèjà vèrollè Lorsque je lance un scan avec A-Squared free il me trouve tout le temps un fichier a "haut risque" qui change au fil des jours: En premier c'ètait: mstinit.exe ensuite: mstsc.exe esuite les deux en même temps,puis aujourd'hui c'est: comrepl.exe J'ai aussi une consomation de ram anormalement èlevèe Mes autres logiciels (Avg,spybot,Zone Alarme) ne trouvent rien et èvidemment je n'arrive pas a m'en dèbarasser Pouvez-vous m'aider svp? Voici dèjà un rapport Hijackthis pour commencer: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 01:13:36, on 01/08/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe C:\Program Files\Creative\Shared Files\CTAudSvc.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe C:\WINDOWS\CTHELPER.EXE C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\Program Files\Microsoft IntelliType Pro\itype.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe C:\WINDOWS\SYSTEM32\CTXFISPI.EXE C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\AVG\AVG8\avgemc.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\PROGRA~1\AVG\AVG8\avgnsx.exe C:\Program Files\AVG\AVG8\avgcsrvx.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\a-squared Free\a2service.exe C:\WINDOWS\Explorer.EXE C:\APPLICATIONS\HiJackThis 2.02\HiJackThis 2.22.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens F3 - REG:win.ini: load=C:\DOCUME~1\Mykimax\APPLIC~1\MICROS~1\comrepl.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll" O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe" O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKLM\..\Policies\Explorer\Run: [Mstsc] C:\WINDOWS\System\mstsc.exe /waitservice O4 - HKCU\..\Policies\Explorer\Run: [spool] C:\DOCUME~1\Mykimax\APPLIC~1\spoolsv.exe /waitservice O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\Policies\Explorer\Run: [spool] C:\DOCUME~1\Mykimax\LOCALS~1\APPLIC~1\spoolsv.exe /waitservice (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O4 - HKUS\.DEFAULT\..\Policies\Explorer\Run: [spool] C:\DOCUME~1\Mykimax\LOCALS~1\APPLIC~1\spoolsv.exe /waitservice (User 'Default user') O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1248296631359 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1248296624484 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareup...15108/CTPID.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Fichiers communs\Creative Labs Shared\Service\CTAELicensing.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\LBTServ.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe O23 - Service: MaxSyncService (NTService1) - - C:\Program Files\Maxtor\OneTouch\Utils\SyncServices.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZONELABS\vsmon.exe Merci d'avance