menyarito

Le CD Microsoft est Original Rapport UsbFix ############################## | UsbFix V6.098 | User : khavile (Administrateurs) # KHAVILE-158D0F7 Update on 03/03/2010 by El Desaparecido , C_XX & Chimay8 Start at: 19:48:53 | 08/03/2010 Website : http://pagesperso-orange.fr/NosTools/index.html Contact : FindyKill.Contact@gmail.com Intel® Core2 Duo CPU T5870 @ 2.00GHz Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2 Internet Explorer 6.0.2900.2180 Windows Firewall Status : Enabled AV : ZoneAlarm Antivirus 9.1.008.000 [ (!) Disabled | (!) Outdated ] AV : Kaspersky Anti-Virus 9.0.0.736 [ Enabled | Updated ] FW : ZoneAlarm Firewall[ (!) Disabled ]9.1.008.000 C:\ -> Disque fixe local # 146,48 Go (114,16 Go free) # NTFS D:\ -> Disque fixe local # 86,39 Go (86,33 Go free) # NTFS E:\ -> Disque CD-ROM # 552,87 Mo (0 Mo free) [HP_OS_RESTORE] # CDFS ################## | Elements infectieux | E:\autorun.inf ################## | Registre | [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoFind" [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoFolderOptions" [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoFolderOptions" [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRun" ################## | Mountpoints2 | ################## | Vaccin | ################## | ! Fin du rapport # UsbFix V6.098 ! |

J'ai formaté l'ordi et après le formatage j'ai constaté que dans les 2 Disques local (C && D) existe les fichiers suivants: RECYCLER System Volume Information autorun.ini Tu trouve que c'est normal?

Salut Apollo, pas de nouveau je suis toujours ici, souffrir avec ce fameux fichier "autorun.inf" , il est même propager vers le CD d'installation de Windows XP... :P

En tout cas je t'attends et merci pour ton aide

Le fichier "autorun.inf" est toujours présent même après le formatage de la clé et si je le supprime, il retourne

Oui c'est une clé intelligente U3, pour le mot de passe il est désactiver, mais pour la la protection en écriture comment la retirer... Rapport ComboFix: ComboFix 10-03-05.03 - khavile 06/03/2010 13:01:30.1.2 - x86 Microsoft Windows XP Professionnel 5.1.2600.3.1256.966.1036.18.1976.1299 [GMT 0:00] Running from: c:\documents and settings\khavile\Bureau\ComboFix.exe AV: Kaspersky Anti-Virus *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0} . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat c:\windows\system32\twain_32.dll D:\winRAR.exe ----- BITS: Possible infected sites ----- hxxp://updates.swarmcast.net . ((((((((((((((((((((((((( Files Created from 2010-02-06 to 2010-03-06 ))))))))))))))))))))))))))))))) . 2010-03-05 17:09 . 2008-04-14 02:33 116736 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll 2010-03-05 17:09 . 2001-08-23 17:47 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll 2010-03-05 17:09 . 2008-04-14 02:33 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll 2010-03-05 17:09 . 2001-08-23 17:47 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe 2010-03-05 17:09 . 2001-08-23 17:47 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe 2010-03-05 17:09 . 2001-08-23 17:47 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe 2010-03-05 17:09 . 2001-08-17 20:11 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys 2010-03-05 17:09 . 2004-08-03 22:29 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys 2010-03-05 17:09 . 2004-08-03 22:29 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys 2010-03-05 17:09 . 2008-04-14 02:33 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll 2010-03-05 17:07 . 2001-08-17 21:28 64605 -c--a-w- c:\windows\system32\dllcache\vvoice.sys 2010-03-05 17:06 . 2001-08-23 17:47 94720 -c--a-w- c:\windows\system32\dllcache\umaxud32.dll 2010-03-05 17:05 . 2001-08-23 17:46 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll 2010-03-05 17:04 . 2001-08-17 20:50 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys 2010-03-05 17:03 . 2001-08-23 17:47 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll 2010-03-05 17:02 . 2001-08-23 17:47 45568 -c--a-w- c:\windows\system32\dllcache\smb3w.dll 2010-03-05 17:01 . 2001-07-21 22:29 18400 -c--a-w- c:\windows\system32\dllcache\sgsmld.sys 2010-03-05 17:00 . 2001-08-23 17:46 179264 -c--a-w- c:\windows\system32\dllcache\s3sav3d.dll 2010-03-05 16:59 . 2001-08-17 21:51 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys 2010-03-05 16:58 . 2008-04-13 18:40 8832 -c--a-w- c:\windows\system32\dllcache\powerfil.sys 2010-03-05 16:57 . 2001-08-17 20:12 30495 -c--a-w- c:\windows\system32\dllcache\pc100nds.sys 2010-03-05 16:56 . 2001-08-17 20:49 51552 -c--a-w- c:\windows\system32\dllcache\ntgrip.sys 2010-03-05 16:55 . 2001-08-23 17:09 76928 -c--a-w- c:\windows\system32\dllcache\mxport.sys 2010-03-05 16:54 . 2008-04-13 18:46 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys 2010-03-05 16:53 . 2001-08-23 17:00 728554 -c--a-w- c:\windows\system32\dllcache\ltck000c.sys 2010-03-05 16:52 . 2001-08-17 21:49 26624 -c--a-w- c:\windows\system32\dllcache\irstusb.sys 2010-03-05 16:51 . 2001-08-17 22:05 141056 -c--a-w- c:\windows\system32\dllcache\icam3.sys 2010-03-05 16:50 . 2001-08-17 21:28 289887 -c--a-w- c:\windows\system32\dllcache\hsf_fall.sys 2010-03-05 16:49 . 2001-08-23 17:18 322560 -c--a-w- c:\windows\system32\dllcache\g400m.sys 2010-03-05 16:48 . 2004-08-03 22:32 137088 -c--a-w- c:\windows\system32\dllcache\essm2e.sys 2010-03-05 16:47 . 2001-08-17 20:20 334208 -c--a-w- c:\windows\system32\dllcache\ds1wdm.sys 2010-03-05 16:46 . 2001-08-23 17:47 28160 -c--a-w- c:\windows\system32\dllcache\cyzports.dll 2010-03-05 16:45 . 2001-08-23 17:02 14080 -c--a-w- c:\windows\system32\dllcache\bulltlp3.sys 2010-03-05 16:44 . 2001-08-17 21:51 5248 -c--a-w- c:\windows\system32\dllcache\aliide.sys 2010-03-05 08:21 . 2010-03-05 14:58 -------- d-----w- c:\windows\SxsCaPendDel 2010-03-05 06:00 . 2010-03-05 06:00 -------- d-sh--w- c:\documents and settings\khavile\PrivacIE 2010-03-04 13:15 . 2010-03-04 13:15 439816 ----a-w- c:\documents and settings\khavile\Application Data\Real\Update\setup3.10\setup.exe 2010-03-03 18:27 . 2010-03-03 18:27 503808 ----a-w- c:\documents and settings\khavile\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-6953fe40-n\msvcp71.dll 2010-03-03 18:27 . 2010-03-03 18:27 499712 ----a-w- c:\documents and settings\khavile\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-6953fe40-n\jmc.dll 2010-03-03 18:27 . 2010-03-03 18:27 348160 ----a-w- c:\documents and settings\khavile\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-6953fe40-n\msvcr71.dll 2010-03-03 00:00 . 2010-03-03 00:00 -------- d-----w- c:\documents and settings\LocalService\Application Data\McAfee 2010-03-02 20:45 . 2010-03-02 20:45 -------- d-----w- c:\documents and settings\khavile\Application Data\Malwarebytes 2010-03-02 20:45 . 2010-03-02 20:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2010-03-02 20:45 . 2010-03-04 00:20 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-03-02 16:10 . 2010-03-03 00:47 -------- d-----w- c:\program files\trend micro 2010-03-02 01:43 . 2010-03-02 01:43 80400 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav9exec\9.0.0.736\fssync.dll 2010-03-02 01:43 . 2010-03-02 01:43 315408 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav9exec\9.0.0.736\sys\i386\5.1\klif.sys 2010-03-02 01:43 . 2010-03-02 01:43 109072 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kav9exec\9.0.0.736\mzvkbd3.dll 2010-03-02 01:43 . 2010-03-02 01:43 80400 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.736\fssync.dll 2010-03-02 01:43 . 2010-03-02 01:43 109072 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.736\mzvkbd3.dll 2010-03-02 01:43 . 2010-03-02 01:43 315408 ----a-w- c:\documents and settings\All Users\Application Data\Kaspersky Lab\AVP9\Data\Updater\Temporary Files\temporaryFolder\AutoPatches\kav9exec\9.0.0.736\sys\i386\5.1\klif.sys 2010-03-02 01:16 . 2010-03-02 01:16 95259 ----a-w- c:\windows\system32\drivers\klick.dat 2010-03-02 01:16 . 2010-03-02 01:16 108059 ----a-w- c:\windows\system32\drivers\klin.dat 2010-03-02 01:15 . 2010-03-06 13:09 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab 2010-03-02 01:15 . 2010-03-02 01:15 -------- d-----w- c:\program files\Kaspersky Lab 2010-03-02 01:06 . 2010-03-02 01:06 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files 2010-03-01 17:52 . 2010-03-01 17:52 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee 2010-03-01 01:19 . 2010-03-01 01:19 -------- d-----w- c:\documents and settings\khavile\Local Settings\Application Data\Yahoo! 2010-02-28 00:43 . 2010-03-05 08:20 -------- d-----w- c:\program files\360desktop 2010-02-28 00:43 . 2010-02-28 00:43 -------- d-----w- c:\documents and settings\khavile\Application Data\360desktop 2010-02-28 00:11 . 2010-02-28 00:42 -------- d-----w- c:\program files\Fichiers communs\Wise Installation Wizard 2010-02-26 11:34 . 2010-02-26 11:34 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache 2010-02-23 22:30 . 2007-10-23 09:27 110592 ----a-w- c:\documents and settings\khavile\Application Data\U3\temp\cleanup.exe 2010-02-23 22:19 . 2008-05-02 10:41 3493888 ---ha-w- c:\documents and settings\khavile\Application Data\U3\temp\Launchpad Removal.exe 2010-02-23 22:18 . 2010-03-06 12:15 -------- d-----w- c:\documents and settings\khavile\Application Data\U3 2010-02-23 14:26 . 2010-02-23 14:26 -------- d-----w- c:\windows\system32\fr 2010-02-23 14:26 . 2010-02-23 14:26 -------- d-----w- c:\windows\system32\bits 2010-02-23 14:26 . 2010-02-23 14:26 -------- d-----w- c:\windows\l2schemas 2010-02-23 13:04 . 2010-02-23 13:04 -------- d-----w- c:\windows\ie8updates 2010-02-23 08:49 . 2009-12-21 19:06 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll 2010-02-23 08:48 . 2009-12-21 19:06 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll 2010-02-23 08:48 . 2009-12-21 19:06 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll 2010-02-23 08:48 . 2009-12-21 19:06 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll 2010-02-23 08:48 . 2009-12-21 19:07 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll 2010-02-23 08:48 . 2009-12-21 19:06 11070464 -c----w- c:\windows\system32\dllcache\ieframe.dll 2010-02-22 19:17 . 2010-02-22 19:17 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache 2010-02-22 19:17 . 2010-02-22 19:17 -------- d-sh--w- c:\documents and settings\khavile\IETldCache 2010-02-22 15:04 . 2010-02-23 14:26 -------- d-----w- c:\windows\system32\fr-FR 2010-02-22 15:04 . 2010-02-22 15:04 -------- dc-h--w- c:\windows\ie8 2010-02-22 14:57 . 2010-02-22 14:57 61440 ----a-w- c:\documents and settings\khavile\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-3e67798e-n\decora-sse.dll 2010-02-22 14:57 . 2010-02-22 14:57 12800 ----a-w- c:\documents and settings\khavile\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-3e67798e-n\decora-d3d.dll 2010-02-22 13:37 . 2010-02-23 14:24 -------- d-----w- c:\windows\ServicePackFiles 2010-02-22 13:37 . 2010-02-22 13:37 -------- d-----w- c:\program files\MSXML 4.0 2010-02-22 00:14 . 2009-12-17 17:14 411368 ----a-w- c:\windows\system32\deploytk.dll 2010-02-21 23:52 . 2010-02-21 23:52 -------- d-----w- c:\windows\Sun 2010-02-21 23:36 . 2010-02-21 23:36 86576 ----a-w- c:\documents and settings\khavile\Application Data\Microsoft\Services Windows Live\Raccourci Galerie de Photos Windows Live.exe 2010-02-21 23:36 . 2010-02-21 23:36 132672 ----a-w- c:\documents and settings\khavile\Application Data\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe 2010-02-21 23:36 . 2010-02-21 23:36 392728 ----a-w- c:\documents and settings\khavile\Application Data\Microsoft\Services Windows Live\Services Windows Live.dll 2010-02-21 23:36 . 2010-02-21 23:36 135680 ----a-w- c:\documents and settings\khavile\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe 2010-02-21 21:08 . 2009-12-09 10:09 2191232 -c--a-w- c:\windows\system32\dllcache\ntoskrnl.exe 2010-02-21 13:41 . 2010-02-21 14:06 96920 ------w- c:\windows\system32\KakaTool.dll 2010-02-21 13:31 . 2008-06-14 17:33 272768 -c--a-w- c:\windows\system32\dllcache\bthport.sys 2010-02-21 13:31 . 2008-06-14 17:33 272768 ------w- c:\windows\system32\drivers\bthport.sys 2010-02-21 00:31 . 2010-02-21 13:38 -------- d-----r- C:\RavBin 2010-02-21 00:31 . 2010-02-21 00:26 1060864 ----a-w- c:\windows\system32\mfc71.dll 2010-02-21 00:31 . 2007-04-02 18:26 19456 -c--a-w- c:\windows\system32\dllcache\agt0804.dll 2010-02-21 00:31 . 2007-04-02 18:26 19456 -c--a-w- c:\windows\system32\dllcache\agt0411.dll 2010-02-21 00:31 . 2007-04-02 18:25 19456 -c--a-w- c:\windows\system32\dllcache\agt0404.dll 2010-02-21 00:31 . 2010-03-02 01:10 -------- d-----w- c:\program files\Rising 2010-02-21 00:26 . 2010-02-21 00:31 -------- d-----w- c:\documents and settings\All Users\Application Data\Rising 2010-02-20 22:38 . 2010-03-03 20:48 -------- d-----w- c:\documents and settings\khavile\Application Data\skypePM 2010-02-20 22:38 . 2010-02-20 22:38 56 ---ha-w- c:\windows\system32\ezsidmv.dat 2010-02-20 22:37 . 2010-03-04 00:19 -------- d-----w- c:\documents and settings\khavile\Application Data\Skype 2010-02-20 22:33 . 2010-02-20 22:33 -------- d-----w- c:\program files\Fichiers communs\Skype 2010-02-20 22:33 . 2010-02-20 22:37 -------- d-----r- c:\program files\Skype 2010-02-20 22:33 . 2010-02-20 22:33 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype 2010-02-20 19:05 . 2010-02-20 19:06 -------- d-----w- c:\program files\Fichiers communs\Nero 2010-02-20 19:05 . 2010-02-20 19:05 -------- d-----w- c:\program files\Nero 2010-02-20 18:37 . 2008-08-26 16:39 21632 ----a-w- c:\windows\system32\drivers\lgevdommodem.sys 2010-02-20 18:37 . 2008-08-26 16:39 19840 ----a-w- c:\windows\system32\drivers\lgevdomdiag.sys 2010-02-20 18:37 . 2008-08-26 16:39 13696 ----a-w- c:\windows\system32\drivers\lgevdombus.sys 2010-02-20 18:37 . 2008-08-26 16:39 19840 ----a-w- c:\windows\system32\drivers\lgevdomatc.sys 2010-02-20 18:37 . 2010-02-20 18:37 -------- d-----w- c:\program files\LG Electronics 2010-02-20 18:37 . 2010-02-20 18:37 -------- d-----w- C:\LG Electronics 2010-02-20 18:36 . 2008-04-13 18:45 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys 2010-02-20 18:24 . 2005-09-16 16:28 1052672 ----a-w- c:\documents and settings\khavile\Application Data\Macromedia\Dreamweaver 8\Configuration\Flash Player\FlashPlayerW.dll 2010-02-20 18:15 . 2010-02-20 18:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Macrovision 2010-02-20 18:13 . 2003-09-17 12:57 974848 ----a-w- c:\windows\system32\mfc70.dll 2010-02-20 18:13 . 2003-09-17 12:57 487424 ----a-w- c:\windows\system32\msvcp70.dll 2010-02-20 18:13 . 2003-09-17 12:57 344064 ----a-w- c:\windows\system32\msvcr70.dll 2010-02-20 18:13 . 2010-02-20 18:23 -------- d-----w- c:\program files\Fichiers communs\Macromedia 2010-02-20 18:13 . 2010-02-20 18:23 -------- d-----w- c:\program files\Macromedia 2010-02-20 17:38 . 2010-02-20 17:38 143973 ----a-w- c:\documents and settings\khavile\Application Data\Move Networks\uninstall.exe 2010-02-20 17:38 . 2010-03-06 01:53 -------- d-----w- c:\documents and settings\khavile\Application Data\Move Networks 2010-02-20 17:38 . 2010-02-20 17:38 -------- d-----w- c:\documents and settings\khavile\.autobahn . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-03-06 12:41 . 2006-03-02 11:00 49796 ----a-w- c:\windows\system32\perfc00C.dat 2010-03-06 12:41 . 2006-03-02 11:00 370678 ----a-w- c:\windows\system32\perfh00C.dat 2010-02-23 14:28 . 2010-02-20 15:22 86331 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2010-02-20 18:37 . 2010-02-20 15:33 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-02-20 18:22 . 2010-02-20 15:33 -------- d-----w- c:\program files\Fichiers communs\InstallShield 2010-02-20 17:38 . 2009-09-24 21:45 5644224 ----a-w- c:\documents and settings\khavile\Application Data\Move Networks\plugins\npqmp071700000016.dll 2010-02-20 16:35 . 2010-02-20 16:35 -------- d-----w- c:\program files\Fichiers communs\xing shared 2010-02-20 16:35 . 2010-02-20 16:35 -------- d-----w- c:\program files\Real 2010-02-20 16:35 . 2010-02-20 16:35 -------- d-----w- c:\program files\Fichiers communs\Real 2010-02-20 16:35 . 2010-02-20 16:35 499712 ----a-w- c:\windows\system32\msvcp71.dll 2010-02-20 16:35 . 2010-02-20 16:35 348160 ----a-w- c:\windows\system32\msvcr71.dll 2010-02-20 15:50 . 2010-02-20 15:50 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_HpqKbFiltr_01005.Wdf 2010-02-20 15:50 . 2010-02-20 15:50 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2010-02-20 15:49 . 2010-02-20 15:33 -------- d-----w- c:\program files\Hewlett-Packard 2010-02-20 15:48 . 2010-02-20 15:48 -------- d-----w- c:\program files\Synaptics 2010-02-20 15:48 . 2010-02-20 15:48 -------- d-----w- c:\program files\Marvell 2010-02-20 15:47 . 2010-02-20 15:47 -------- d-----w- c:\program files\Fichiers communs\SNP2UVC 2010-02-20 15:47 . 2010-02-20 15:47 -------- d-----w- c:\documents and settings\khavile\Application Data\InstallShield 2010-02-20 15:46 . 2010-02-20 15:46 -------- d-----w- c:\program files\SCM Microsystems 2010-02-20 15:46 . 2010-02-20 15:44 -------- d-----w- c:\program files\Intel 2010-02-20 15:42 . 2010-02-20 15:42 -------- d-----w- c:\program files\WIDCOMM 2010-02-20 15:41 . 2010-02-20 15:41 1613 --sha-r- c:\windows\system32\drivers\103C_HP_NTBK_HP Compaq 6730s_YN_0U_QCNU91135F3_EU_46_I30E8_SHP_VKBC Version 94.1C_B68PZU Ver. F.0A_T090220_WXP2_L40C_M1977_J250_7Intel_8Core2 Duo T5870_92_#100220_N_()_XMOBILE_CN10_Z_2F.0A_G.MRK 2010-02-20 15:40 . 2010-02-20 15:40 -------- d-----w- c:\program files\HPQ 2010-02-20 15:34 . 2010-02-20 15:34 -------- d-----w- c:\program files\Analog Devices 2010-02-20 15:24 . 2010-02-20 15:24 -------- d-----w- c:\program files\microsoft frontpage 2010-02-20 15:20 . 2010-02-20 15:20 -------- d-----w- c:\program files\Services en ligne 2010-02-20 15:17 . 2010-02-20 15:17 21892 ----a-w- c:\windows\system32\emptyregdb.dat 2009-12-31 16:50 . 2006-03-02 11:00 353792 ----a-w- c:\windows\system32\drivers\srv.sys 2009-12-21 19:07 . 2006-03-02 11:00 916480 ----a-w- c:\windows\system32\wininet.dll 2009-12-17 07:41 . 2010-02-20 15:16 347648 ----a-w- c:\windows\system32\mspaint.exe 2009-12-14 07:09 . 2006-03-02 11:00 33280 ----a-w- c:\windows\system32\csrsrv.dll 2009-12-09 10:08 . 2006-03-02 11:00 2147328 ----a-w- c:\windows\system32\ntoskrnl.exe 2009-12-09 10:08 . 2004-08-19 16:04 2025984 ----a-w- c:\windows\system32\ntkrnlpa.exe . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Nero\Lib\NMBgMonitor.exe" [2007-09-20 202024] "REVAService"="c:\program files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\REVAService.exe" [2008-12-02 23040] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2008-04-04 1044480] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-06-05 150040] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-06-05 170520] "Persistence"="c:\windows\system32\igfxpers.exe" [2008-06-05 141848] "AccelerometerSysTrayApplet"="c:\windows\system32\AccelerometerSt.Exe" [2008-06-09 82224] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-04-18 178712] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-03-27 1040384] "QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-05-14 177456] "TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2010-02-20 185896] "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 1836328] "NeroFilterCheck"="c:\program files\Fichiers communs\Nero\Lib\NeroCheck.exe" [2007-03-01 153136] "SunJavaUpdateSched"="c:\program files\Fichiers communs\Java\Java Update\jusched.exe" [2010-01-11 246504] "AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe" [2009-10-20 340456] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-22 35760] "Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 948672] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\khavile\Menu D‚marrer\Programmes\D‚marrage\ autobahn.lnk - c:\documents and settings\khavile\Local Settings\Application Data\Autobahn\autobahn.exe [2009-9-17 711384] Ela-Salaty.lnk - c:\program files\Ela-Salaty\Salaty.exe [2007-3-5 5349888] Notification de cadeaux MSN.lnk - c:\documents and settings\khavile\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe [2010-2-21 135680] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-3-31 576104] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "HonorAutoRunSetting"= 0 (0x0) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "HonorAutoRunSetting"= 0 (0x0) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [14/10/2009 21:18 36880] R0 SFAUDIO;Sonic Focus DSP Driver;c:\windows\system32\drivers\sfaudio.sys [20/02/2010 15:34 24064] R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [20/02/2010 15:49 193840] R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [14/09/2009 14:42 32272] R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [02/10/2009 19:39 19472] S3 SCR3XX2K;SCR3xx USB SmartCardReader;c:\windows\system32\drivers\SCR3XX2K.sys [21/06/2007 04:40 56448] S3 UsbEvdomAtc;LGE EVDOM USB Serial Port;c:\windows\system32\drivers\lgevdomatc.sys [20/02/2010 18:37 19840] S3 usbevdombus;LGE EVDOM Composite USB Device;c:\windows\system32\drivers\lgevdombus.sys [20/02/2010 18:37 13696] S3 UsbEvdomDiag;LGE EVDOM USB Serial DM Port;c:\windows\system32\drivers\lgevdomdiag.sys [20/02/2010 18:37 19840] S3 USBEVDOmModem;LGE EVDOM USB Modem;c:\windows\system32\drivers\lgevdommodem.sys [20/02/2010 18:37 21632] . . ------- Supplementary Scan ------- . uInternet Connection Wizard,ShellNext = hxxp://center.rising.com.cn/service.asp uInternet Settings,ProxyOverride = *.local IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Envoyer au périphérique &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: Envoyer à Bluetooth - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm FF - ProfilePath - c:\documents and settings\khavile\Application Data\Mozilla\Firefox\Profiles\9tnoigjx.default\ FF - component: c:\program files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll FF - component: c:\program files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru\components\KavLinkFilter.dll FF - plugin: c:\documents and settings\khavile\Application Data\Move Networks\plugins\npqmp071700000016.dll FF - plugin: c:\documents and settings\khavile\Local Settings\Application Data\Yahoo!\BrowserPlus\2.5.1\Plugins\npybrowserplus_2.5.1.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll ---- FIREFOX POLICIES ---- c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false); c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32); c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false); c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false); c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1); c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false); c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2); c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1); c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25); c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800); c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25); c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5); c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false); c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600); c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com"); c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com"); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20); . - - - - ORPHANS REMOVED - - - - HKCU-Run-360desktop - c:\program files\360desktop\360desktop.exe AddRemove-Ad-Remover - c:\ad-remover\Un-ADR.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-03-06 13:09 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'explorer.exe'(4092) c:\windows\system32\btmmhook.dll c:\windows\system32\eappprxy.dll c:\windows\system32\webcheck.dll c:\windows\system32\xpsp3res.dll . ------------------------ Other Running Processes ------------------------ . c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe c:\windows\System32\SCardSvr.exe c:\windows\system32\igfxsrvc.exe c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE c:\windows\system32\agrsmsvc.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe c:\windows\system32\wdfmgr.exe c:\program files\Fichiers communs\Nero\Lib\NMIndexingService.exe c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe c:\program files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe c:\windows\system32\wscntfy.exe c:\windows\system32\wbem\wmiapsrv.exe . ************************************************************************** . Completion time: 2010-03-06 13:13:13 - machine was rebooted ComboFix-quarantined-files.txt 2010-03-06 13:13 Pre-Run: 138 882 248 704 octets libres Post-Run: 138 817 695 744 octets libres WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect - - End Of File - - B2192A53B8194C08FE7471839ECCD4C6

Salut Rapprot ComboFix: http://cjoint.com/?dgoMB2mQrX Le problème de l'ordinateur est résolu, elle reste ma clé USB dont le fichier "autorun.inf" est infecté et je n'arrive pas à le supprimer.. si vous avez une idée aidez moi SVP

Je crois pas que c'est un problème software car c'est ma clé qui a reçu le virus et après il est propager vers l'ordinateur.... mais je n'ai jamais vu ce genre de virus...

Bonjour, Mon copié/coller ne fonctionne pas dans le sens par exemple on copie un dossier qui est dans Mes documents et pour le coller sur le bureau ou dans le D: ........impossible J'utilise Firefox.. Lien: http://www.getsysteminfo.com/read.php?file...b6a7f009ab0055b

C'est étonnant... En tout cas merci beaucoup je t'ai fatigué avec moi @++

Toujours le même souci si tu fait copier pour un fichier coller ne fonctionne pas a part ça tout fonctionne normalement

UsbFix désinstaller. Rapport RSIT :(log.txt) Logfile of random's system information tool 1.06 (written by random/random) Run by khavile at 2010-03-03 00:47:13 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 131 GB (87%) free of 150 GB Total RAM: 1976 MB (58% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 00:47:20, on 03/03/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\agrsmsvc.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\explorer.exe C:\Program Files\360desktop\360desktop.exe C:\Program Files\360desktop\360desktopd.exe C:\Program Files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\REVAService.exe C:\Program Files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\IEUM.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtblfs.exe C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\khavile\Mes documents\Téléchargements\RSIT.exe C:\Program Files\trend micro\khavile.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.fr/spbasic.htm R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://center.rising.com.cn/service.asp R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll O2 - BHO: ?¨?¨EI??°²E«??E? - {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} - C:\WINDOWS\system32\UrlFilter.dll (file missing) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\WINDOWS\system32\AccelerometerSt.Exe O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\RunOnce: [uninstall Adobe Download Manager] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\NOS\bin\getPlus_Helper.dll",Uninstall /IE2883E8F-472F-4fb0-9522-AC9BF37916A7 /Get1noarp O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [REVAService] C:\Program Files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\REVAService.exe O4 - HKCU\..\Run: [360desktop] "C:\Program Files\360desktop\360desktop.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RESEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: autobahn.lnk = C:\Documents and Settings\khavile\Local Settings\Application Data\Autobahn\autobahn.exe O4 - Startup: Ela-Salaty.lnk = C:\Program Files\Ela-Salaty\Salaty.exe O4 - Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\khavile\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: Envoyer à Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{23F564D8-B3E4-40F7-B2D8-77425DE99F40}: NameServer = 192.168.50.58 192.168.50.55 O17 - HKLM\System\CS1\Services\Tcpip\..\{23F564D8-B3E4-40F7-B2D8-77425DE99F40}: NameServer = 192.168.50.58 192.168.50.55 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\WINDOWS\system32\agrsmsvc.exe O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe -- End of file - 9826 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2010-02-20 370296] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}] IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll [2009-10-20 68112] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}] ؟¨؟¨ةدحّ°²ب«ضْتض - C:\WINDOWS\system32\UrlFilter.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-11 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll [2009-10-20 268816] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-01-11 79648] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1044480] "SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2008-03-24 884736] "IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-06-05 150040] "HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-06-05 170520] "Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-06-05 141848] "AccelerometerSysTrayApplet"=C:\WINDOWS\system32\AccelerometerSt.Exe [2008-06-09 82224] "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1040384] "QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-05-14 177456] "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2010-02-20 185896] "NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-09-20 1836328] "NeroFilterCheck"=C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe [2007-03-01 153136] "SunJavaUpdateSched"=C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [2010-01-11 246504] "AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe [2009-10-20 340456] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760] "Adobe ARM"=C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] "Uninstall Adobe Download Manager"=C:\Program Files\NOS\bin\getPlus_Helper.dll [2010-02-19 67360] "Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-01-07 429392] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe [2007-09-20 202024] "REVAService"=C:\Program Files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\REVAService.exe [2008-12-02 23040] "360desktop"=C:\Program Files\360desktop\360desktop.exe [2009-09-14 1065728] C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Documents and Settings\khavile\Menu Démarrer\Programmes\Démarrage autobahn.lnk - C:\Documents and Settings\khavile\Local Settings\Application Data\Autobahn\autobahn.exe Ela-Salaty.lnk - C:\Program Files\Ela-Salaty\Salaty.exe Notification de cadeaux MSN.lnk - C:\Documents and Settings\khavile\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2008-05-21 212992] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon] C:\WINDOWS\system32\klogon.dll [2009-10-20 219664] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=255 "NoDriveAutoRun"=255 "HonorAutoRunSetting"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\360desktop\360desktop.exe"="C:\Program Files\360desktop\360desktop.exe:*:Enabled:360desktop" "C:\Program Files\360desktop\360manager.exe"="C:\Program Files\360desktop\360manager.exe:*:Enabled:360desktop Manager" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{520f024f-1e4b-11df-b6af-0022fa45c614}] shell\AutoRun\command - H:\SWLauncher.exe ======File associations====== .js - edit - "C:\Program Files\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1" .js - open - ======List of files/folders created in the last 1 months====== 2010-03-02 20:45:34 ----D---- C:\Documents and Settings\khavile\Application Data\Malwarebytes 2010-03-02 20:45:29 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2010-03-02 20:45:28 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2010-03-02 19:39:47 ----D---- C:\Program Files\NOS 2010-03-02 19:39:47 ----D---- C:\Documents and Settings\All Users\Application Data\NOS 2010-03-02 19:25:58 ----D---- C:\Program Files\Adobe 2010-03-02 19:06:01 ----SHD---- C:\Config.Msi 2010-03-02 16:10:56 ----D---- C:\rsit 2010-03-02 16:10:56 ----D---- C:\Program Files\trend micro 2010-03-02 14:57:36 ----A---- C:\WINDOWS\ModemLog_LGE EVDOM USB Modem #2.txt 2010-03-02 01:15:51 ----D---- C:\Program Files\Kaspersky Lab 2010-03-02 01:15:51 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2010-03-02 01:06:24 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files 2010-03-01 20:38:58 ----RASHD---- C:\autorun.inf 2010-03-01 19:53:04 ----D---- C:\UsbFix 2010-03-01 17:52:11 ----D---- C:\Documents and Settings\All Users\Application Data\McAfee 2010-03-01 17:34:18 ----A---- C:\WINDOWS\ModemLog_Agere Systems HDA Modem.txt 2010-02-28 00:43:11 ----D---- C:\Program Files\360desktop 2010-02-28 00:43:11 ----D---- C:\Documents and Settings\khavile\Application Data\360desktop 2010-02-28 00:43:06 ----A---- C:\WINDOWS\{21D15DED-F125-46C8-8017-CB9F1CEB5B4D}_WiseFW.ini 2010-02-28 00:11:11 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard 2010-02-24 19:22:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$ 2010-02-24 19:22:33 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$ 2010-02-24 19:22:24 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$ 2010-02-24 19:22:08 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$ 2010-02-23 22:18:54 ----D---- C:\Documents and Settings\khavile\Application Data\U3 2010-02-23 17:50:24 ----D---- C:\WINDOWS\Prefetch 2010-02-23 17:50:13 ----D---- C:\WINDOWS\Minidump 2010-02-23 14:35:11 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$ 2010-02-23 14:35:04 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$ 2010-02-23 14:34:57 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$ 2010-02-23 14:34:51 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$ 2010-02-23 14:34:41 ----HDC---- C:\WINDOWS\$NtUninstallKB977165$ 2010-02-23 14:34:35 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$ 2010-02-23 14:34:28 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$ 2010-02-23 14:34:23 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$ 2010-02-23 14:34:18 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$ 2010-02-23 14:34:13 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$ 2010-02-23 14:34:08 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$ 2010-02-23 14:34:03 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$ 2010-02-23 14:33:58 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$ 2010-02-23 14:33:52 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$ 2010-02-23 14:33:47 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$ 2010-02-23 14:33:41 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$ 2010-02-23 14:33:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$ 2010-02-23 14:33:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$ 2010-02-23 14:33:26 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$ 2010-02-23 14:33:19 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$ 2010-02-23 14:33:14 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$ 2010-02-23 14:33:06 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$ 2010-02-23 14:33:00 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$ 2010-02-23 14:32:55 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$ 2010-02-23 14:32:49 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$ 2010-02-23 14:32:43 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$ 2010-02-23 14:32:36 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$ 2010-02-23 14:32:29 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$ 2010-02-23 14:32:21 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$ 2010-02-23 14:32:16 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$ 2010-02-23 14:32:10 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$ 2010-02-23 14:32:05 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$ 2010-02-23 14:32:00 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$ 2010-02-23 14:31:55 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$ 2010-02-23 14:31:49 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$ 2010-02-23 14:31:44 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$ 2010-02-23 14:31:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$ 2010-02-23 14:31:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$ 2010-02-23 14:31:24 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$ 2010-02-23 14:31:18 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$ 2010-02-23 14:31:12 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$ 2010-02-23 14:31:07 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$ 2010-02-23 14:31:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$ 2010-02-23 14:30:56 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$ 2010-02-23 14:30:50 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$ 2010-02-23 14:30:44 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$ 2010-02-23 14:30:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$ 2010-02-23 14:30:33 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$ 2010-02-23 14:30:27 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$ 2010-02-23 14:30:21 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$ 2010-02-23 14:30:16 ----HDC---- C:\WINDOWS\$NtUninstallKB949764$ 2010-02-23 14:30:11 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$ 2010-02-23 14:30:03 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$ 2010-02-23 14:26:36 ----D---- C:\WINDOWS\system32\fr 2010-02-23 14:26:36 ----D---- C:\WINDOWS\system32\bits 2010-02-23 14:26:36 ----D---- C:\WINDOWS\l2schemas 2010-02-23 14:21:57 ----D---- C:\WINDOWS\network diagnostic 2010-02-23 14:16:38 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$ 2010-02-23 13:04:26 ----D---- C:\WINDOWS\ie8updates 2010-02-23 06:31:20 ----HDC---- C:\WINDOWS\$NtUninstallKB977165_0$ 2010-02-22 15:05:39 ----HDC---- C:\WINDOWS\$NtUninstallKB970430_0$ 2010-02-22 15:04:35 ----D---- C:\WINDOWS\WBEM 2010-02-22 15:04:14 ----HDC---- C:\WINDOWS\ie8 2010-02-22 15:04:14 ----D---- C:\WINDOWS\system32\fr-FR 2010-02-22 15:02:23 ----HDC---- C:\WINDOWS\$NtUninstallKB971737_0$ 2010-02-22 15:01:01 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage 2010-02-22 14:57:47 ----D---- C:\Documents and Settings\All Users\Application Data\Sun 2010-02-22 14:57:33 ----A---- C:\WINDOWS\system32\javaws.exe 2010-02-22 14:57:32 ----A---- C:\WINDOWS\system32\javaw.exe 2010-02-22 14:57:32 ----A---- C:\WINDOWS\system32\java.exe 2010-02-22 13:43:55 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$ 2010-02-22 13:43:51 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$ 2010-02-22 13:43:47 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$ 2010-02-22 13:43:41 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$ 2010-02-22 13:43:36 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$ 2010-02-22 13:43:31 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$ 2010-02-22 13:43:24 ----HDC---- C:\WINDOWS\$NtUninstallKB960859_0$ 2010-02-22 13:43:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971468_0$ 2010-02-22 13:42:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978207$ 2010-02-22 13:42:46 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$ 2010-02-22 13:42:41 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$ 2010-02-22 13:42:38 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$ 2010-02-22 13:42:33 ----HDC---- C:\WINDOWS\$NtUninstallKB955759_0$ 2010-02-22 13:42:24 ----HDC---- C:\WINDOWS\$NtUninstallKB974318_0$ 2010-02-22 13:42:10 ----HDC---- C:\WINDOWS\$NtUninstallKB969059_0$ 2010-02-22 13:42:05 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$ 2010-02-22 13:42:00 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$ 2010-02-22 13:41:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975713_0$ 2010-02-22 13:41:48 ----HDC---- C:\WINDOWS\$NtUninstallKB971657_0$ 2010-02-22 13:41:42 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$ 2010-02-22 13:41:26 ----HDC---- C:\WINDOWS\$NtUninstallKB972270_0$ 2010-02-22 13:41:16 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_0$ 2010-02-22 13:41:02 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$ 2010-02-22 13:40:55 ----HDC---- C:\WINDOWS\$NtUninstallKB956844_0$ 2010-02-22 13:40:50 ----HDC---- C:\WINDOWS\$NtUninstallKB961501_0$ 2010-02-22 13:40:45 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$ 2010-02-22 13:40:41 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$ 2010-02-22 13:40:37 ----HDC---- C:\WINDOWS\$NtUninstallKB978251_0$ 2010-02-22 13:40:33 ----HDC---- C:\WINDOWS\$NtUninstallKB973869_0$ 2010-02-22 13:40:28 ----HDC---- C:\WINDOWS\$NtUninstallKB975025_0$ 2010-02-22 13:40:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$ 2010-02-22 13:40:15 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$ 2010-02-22 13:40:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974571_0$ 2010-02-22 13:40:03 ----HDC---- C:\WINDOWS\$NtUninstallKB975560_0$ 2010-02-22 13:39:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973507_0$ 2010-02-22 13:39:52 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$ 2010-02-22 13:39:27 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_0$ 2010-02-22 13:39:23 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$ 2010-02-22 13:39:18 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$ 2010-02-22 13:39:13 ----HDC---- C:\WINDOWS\$NtUninstallKB973354_0$ 2010-02-22 13:39:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$ 2010-02-22 13:38:56 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$ 2010-02-22 13:38:50 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$ 2010-02-22 13:38:46 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$ 2010-02-22 13:38:41 ----HDC---- C:\WINDOWS\$NtUninstallKB974392_0$ 2010-02-22 13:38:34 ----HDC---- C:\WINDOWS\$NtUninstallKB977914_0$ 2010-02-22 13:38:22 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$ 2010-02-22 13:38:17 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$ 2010-02-22 13:38:13 ----HDC---- C:\WINDOWS\$NtUninstallKB970238_0$ 2010-02-22 13:38:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971486_0$ 2010-02-22 13:37:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978706_0$ 2010-02-22 13:37:47 ----D---- C:\WINDOWS\ServicePackFiles 2010-02-22 13:37:45 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$ 2010-02-22 13:37:40 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$ 2010-02-22 13:37:35 ----HDC---- C:\WINDOWS\$NtUninstallKB973815_0$ 2010-02-22 13:37:25 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$ 2010-02-22 13:37:19 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$ 2010-02-22 13:37:13 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$ 2010-02-22 13:37:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$ 2010-02-22 13:37:01 ----D---- C:\Program Files\MSXML 4.0 2010-02-22 13:36:54 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$ 2010-02-22 13:36:40 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$ 2010-02-22 13:36:34 ----HDC---- C:\WINDOWS\$NtUninstallKB975467_0$ 2010-02-22 13:36:25 ----HDC---- C:\WINDOWS\$NtUninstallKB968389_0$ 2010-02-22 13:36:15 ----HDC---- C:\WINDOWS\$NtUninstallKB969947_0$ 2010-02-22 00:14:14 ----A---- C:\WINDOWS\system32\deploytk.dll 2010-02-21 23:57:50 ----A---- C:\WINDOWS\system32\MRT.exe 2010-02-21 23:57:14 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$ 2010-02-21 23:52:46 ----D---- C:\WINDOWS\Sun 2010-02-21 13:41:58 ----N---- C:\WINDOWS\system32\KakaTool.dll 2010-02-21 12:45:11 ----N---- C:\WINDOWS\system32\tzchange.exe 2010-02-21 11:10:07 ----D---- C:\WINDOWS\system32\PreInstall 2010-02-21 11:10:05 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$ 2010-02-21 00:31:34 ----RD---- C:\RavBin 2010-02-21 00:31:27 ----A---- C:\WINDOWS\system32\mfc71.dll 2010-02-21 00:31:05 ----D---- C:\Program Files\Rising 2010-02-21 00:26:17 ----D---- C:\Documents and Settings\All Users\Application Data\Rising 2010-02-20 23:40:54 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2010-02-20 22:38:21 ----D---- C:\Documents and Settings\khavile\Application Data\skypePM 2010-02-20 22:37:11 ----D---- C:\Documents and Settings\khavile\Application Data\Skype 2010-02-20 22:33:24 ----D---- C:\Program Files\Fichiers communs\Skype 2010-02-20 22:33:22 ----RD---- C:\Program Files\Skype 2010-02-20 22:33:18 ----D---- C:\Documents and Settings\All Users\Application Data\Skype 2010-02-20 19:05:10 ----D---- C:\Program Files\Nero 2010-02-20 19:05:10 ----D---- C:\Program Files\Fichiers communs\Nero 2010-02-20 18:45:55 ----A---- C:\WINDOWS\ModemLog_LGE EVDOM USB Modem.txt 2010-02-20 18:37:25 ----D---- C:\Program Files\LG Electronics 2010-02-20 18:37:00 ----D---- C:\LG Electronics 2010-02-20 18:23:38 ----D---- C:\Documents and Settings\All Users\Application Data\Macromedia 2010-02-20 18:21:01 ----D---- C:\Documents and Settings\khavile\Application Data\Macromedia 2010-02-20 18:15:18 ----D---- C:\Documents and Settings\All Users\Application Data\Macrovision 2010-02-20 18:13:36 ----A---- C:\WINDOWS\system32\msvcr70.dll 2010-02-20 18:13:36 ----A---- C:\WINDOWS\system32\msvcp70.dll 2010-02-20 18:13:36 ----A---- C:\WINDOWS\system32\mfc70.dll 2010-02-20 18:13:25 ----D---- C:\Program Files\Fichiers communs\Macromedia 2010-02-20 18:13:02 ----D---- C:\Program Files\Macromedia 2010-02-20 17:41:15 ----D---- C:\WINDOWS\system32\appmgmt 2010-02-20 17:38:45 ----D---- C:\Documents and Settings\khavile\Application Data\Move Networks 2010-02-20 17:35:32 ----A---- C:\WINDOWS\system32\wmpns.dll 2010-02-20 17:31:46 ----D---- C:\Program Files\Java 2010-02-20 17:31:41 ----D---- C:\Program Files\Fichiers communs\Java 2010-02-20 17:31:26 ----D---- C:\Documents and Settings\khavile\Application Data\Sun 2010-02-20 17:29:25 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet 2010-02-20 17:25:07 ----D---- C:\Program Files\Bonjour 2010-02-20 17:24:50 ----D---- C:\Documents and Settings\khavile\Application Data\Adobe 2010-02-20 17:15:19 ----D---- C:\Program Files\Fichiers communs\Macrovision Shared 2010-02-20 17:13:49 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ 2010-02-20 17:10:07 ----D---- C:\Documents and Settings\khavile\Application Data\TeraCopy 2010-02-20 17:09:19 ----D---- C:\Program Files\Microsoft Works 2010-02-20 17:09:14 ----D---- C:\Program Files\MSBuild 2010-02-20 17:09:05 ----D---- C:\Program Files\Microsoft Visual Studio 2010-02-20 17:09:05 ----D---- C:\Program Files\Fichiers communs\DESIGNER 2010-02-20 17:08:10 ----SHD---- C:\RECYCLER 2010-02-20 17:08:09 ----A---- C:\WINDOWS\NeroDigital.ini 2010-02-20 17:06:24 ----D---- C:\WINDOWS\SHELLNEW 2010-02-20 17:06:01 ----D---- C:\Program Files\Microsoft Office 2010-02-20 17:06:01 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2010-02-20 17:05:46 ----RHD---- C:\MSOCache 2010-02-20 17:04:36 ----D---- C:\Program Files\Maestria 2010-02-20 17:04:36 ----D---- C:\Program Files\Fichiers communs\SAGE 2010-02-20 17:04:36 ----A---- C:\WINDOWS\system32\SAGEPERS.DLL 2010-02-20 17:04:35 ----A---- C:\WINDOWS\system32\mlcorert.dll 2010-02-20 17:04:35 ----A---- C:\WINDOWS\system32\cbaselocal.dll 2010-02-20 17:04:35 ----A---- C:\WINDOWS\system32\cbaseintf.dll 2010-02-20 17:03:30 ----D---- C:\Documents and Settings\All Users\Application Data\Sage 2010-02-20 17:02:14 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe 2010-02-20 17:02:08 ----D---- C:\Program Files\Fichiers communs\Adobe 2010-02-20 17:01:11 ----D---- C:\Program Files\EasyPHP1-8 2010-02-20 17:00:47 ----D---- C:\Documents and Settings\khavile\Application Data\CrypTool 2010-02-20 16:57:04 ----A---- C:\WINDOWS\system32\Thawbrkr.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdvntc.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdintel.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdintam.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdinpun.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdinmar.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdinkan.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdinhin.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdinguj.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdindev.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdgeo.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdarmw.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdarme.dll 2010-02-20 16:57:03 ----A---- C:\WINDOWS\system32\c_iscii.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbdurdu.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbdsyr2.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbdsyr1.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbdfa.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbddiv2.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbddiv1.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbda3.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbda2.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbda1.dll 2010-02-20 16:57:01 ----A---- C:\WINDOWS\system32\kbdusa.dll 2010-02-20 16:56:58 ----RA---- C:\WINDOWS\system32\kbdheb.dll 2010-02-20 16:56:54 ----RA---- C:\WINDOWS\system32\kbdth3.dll 2010-02-20 16:56:54 ----RA---- C:\WINDOWS\system32\kbdth2.dll 2010-02-20 16:56:54 ----RA---- C:\WINDOWS\system32\kbdth1.dll 2010-02-20 16:56:54 ----RA---- C:\WINDOWS\system32\kbdth0.dll 2010-02-20 16:56:54 ----A---- C:\WINDOWS\system32\ftlx041e.dll 2010-02-20 16:52:28 ----D---- C:\WINDOWS\Ela-Salaty 2010-02-20 16:52:28 ----D---- C:\Program Files\Ela-Salaty 2010-02-20 16:52:26 ----D---- C:\Documents and Settings\khavile\Application Data\Mozilla 2010-02-20 16:51:33 ----D---- C:\Program Files\CrypTool 2010-02-20 16:51:20 ----D---- C:\Program Files\Mozilla Firefox 2010-02-20 16:51:00 ----D---- C:\Documents and Settings\khavile\Application Data\WinRAR 2010-02-20 16:50:47 ----D---- C:\Program Files\WinRAR 2010-02-20 16:50:02 ----D---- C:\WINDOWS\system32\NtmsData 2010-02-20 16:46:05 ----D---- C:\Documents and Settings\khavile\Application Data\Nero 2010-02-20 16:45:58 ----A---- C:\WINDOWS\system32\MsiExec.exe.log 2010-02-20 16:44:35 ----D---- C:\Documents and Settings\All Users\Application Data\Nero 2010-02-20 16:44:03 ----D---- C:\WINDOWS\RegisteredPackages 2010-02-20 16:43:07 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2010-02-20 16:43:05 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2010-02-20 16:37:43 ----D---- C:\Program Files\TeraCopy 2010-02-20 16:35:54 ----D---- C:\Program Files\Fichiers communs\xing shared 2010-02-20 16:35:47 ----A---- C:\WINDOWS\system32\rmoc3260.dll 2010-02-20 16:35:44 ----A---- C:\WINDOWS\system32\pndx5032.dll 2010-02-20 16:35:44 ----A---- C:\WINDOWS\system32\pndx5016.dll 2010-02-20 16:35:43 ----D---- C:\Program Files\Fichiers communs\Real 2010-02-20 16:35:43 ----A---- C:\WINDOWS\system32\pncrt.dll 2010-02-20 16:35:43 ----A---- C:\WINDOWS\system32\msvcr71.dll 2010-02-20 16:35:43 ----A---- C:\WINDOWS\system32\msvcp71.dll 2010-02-20 16:35:42 ----D---- C:\Program Files\Real 2010-02-20 16:35:09 ----D---- C:\Documents and Settings\khavile\Application Data\Real 2010-02-20 15:50:03 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$ 2010-02-20 15:49:39 ----A---- C:\WINDOWS\system32\wdfcoinstaller01005.dll 2010-02-20 15:49:39 ----A---- C:\WINDOWS\system32\BttnCmns_64.dll 2010-02-20 15:49:39 ----A---- C:\WINDOWS\system32\BttnCmns.dll 2010-02-20 15:49:39 ----A---- C:\WINDOWS\system32\BttnCmn.dll 2010-02-20 15:49:20 ----N---- C:\WINDOWS\biwlandrvxpver.dll 2010-02-20 15:49:08 ----A---- C:\WINDOWS\system32\NETw5r32.dll 2010-02-20 15:49:08 ----A---- C:\WINDOWS\system32\NETw5c32.dll 2010-02-20 15:48:39 ----A---- C:\WINDOWS\system32\SynTPCo4.dll 2010-02-20 15:48:39 ----A---- C:\WINDOWS\system32\SynTPAPI.dll 2010-02-20 15:48:38 ----A---- C:\WINDOWS\system32\SynCtrl.dll 2010-02-20 15:48:38 ----A---- C:\WINDOWS\system32\SynCOM.dll 2010-02-20 15:48:37 ----D---- C:\Program Files\Synaptics 2010-02-20 15:48:13 ----D---- C:\Program Files\Marvell 2010-02-20 15:47:26 ----A---- C:\WINDOWS\system32\vsnp2uvc.dll 2010-02-20 15:47:26 ----A---- C:\WINDOWS\system32\csnp2uvc.dll 2010-02-20 15:47:26 ----A---- C:\WINDOWS\snp2uvc.ini 2010-02-20 15:47:21 ----A---- C:\WINDOWS\system32\rsnp2uvc.dll 2010-02-20 15:47:19 ----D---- C:\Program Files\Fichiers communs\SNP2UVC 2010-02-20 15:47:13 ----D---- C:\Documents and Settings\khavile\Application Data\InstallShield 2010-02-20 15:46:50 ----A---- C:\WINDOWS\HBCIKRNL.INI 2010-02-20 15:46:45 ----D---- C:\Program Files\SCM Microsystems 2010-02-20 15:46:44 ----D---- C:\WINDOWS\Downloaded Installations 2010-02-20 15:46:19 ----D---- C:\WINDOWS\system32\FRA 2010-02-20 15:46:17 ----RA---- C:\WINDOWS\system32\imsmudlg.exe 2010-02-20 15:45:48 ----D---- C:\WINDOWS\system32\HP3DG 2010-02-20 15:44:26 ----RA---- C:\WINDOWS\system32\CSVer.dll 2010-02-20 15:44:25 ----D---- C:\Program Files\Intel 2010-02-20 15:43:50 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxzoom.exe 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxtray.exe 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxress.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxpers.exe 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxext.exe 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxexps.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxdo.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxdev.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxCoIn_v4953.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\ig4icd32.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\ig4dev32.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\hkcmd.exe 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igxprd32.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igxpgd32.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igxpdx32.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igxpdv32.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igfxsrvc.exe 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igfxsrvc.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igfxpph.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igfxcfg.exe 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\hccutils.dll 2010-02-20 15:43:02 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-02-20 15:43:01 ----D---- C:\WINDOWS\system32\Lang 2010-02-20 15:43:00 ----RA---- C:\WINDOWS\system32\igxpun.exe 2010-02-20 15:43:00 ----RA---- C:\WINDOWS\system32\difxapi.dll 2010-02-20 15:42:48 ----D---- C:\Intel 2010-02-20 15:42:09 ----A---- C:\WINDOWS\system32\btw_ci.dll 2010-02-20 15:42:03 ----D---- C:\Program Files\WIDCOMM 2010-02-20 15:41:27 ----HDC---- C:\WINDOWS\$NtUninstallKB949764_0$ 2010-02-20 15:41:22 ----HDC---- C:\WINDOWS\$NtUninstallKB915326$ 2010-02-20 15:41:15 ----HDC---- C:\WINDOWS\$NtUninstallKB889673$ 2010-02-20 15:41:09 ----HDC---- C:\WINDOWS\$NtUninstallKB888402$ 2010-02-20 15:41:04 ----HDC---- C:\WINDOWS\$NtUninstallKB885464$ 2010-02-20 15:40:58 ----HDC---- C:\WINDOWS\$NtUninstallKB883667$ 2010-02-20 15:40:53 ----HDC---- C:\WINDOWS\$NtUninstallKB918005$ 2010-02-20 15:40:47 ----HDC---- C:\WINDOWS\$NtUninstallKB912436$ 2010-02-20 15:40:42 ----HDC---- C:\WINDOWS\$NtUninstallKB909667$ 2010-02-20 15:40:34 ----HDC---- C:\WINDOWS\$NtUninstallKB909095$ 2010-02-20 15:40:26 ----HDC---- C:\WINDOWS\$NtUninstallKB896256$ 2010-02-20 15:40:20 ----HDC---- C:\WINDOWS\$NtUninstallKB892559-v3$ 2010-02-20 15:40:12 ----HDC---- C:\WINDOWS\$NtUninstallKB888239$ 2010-02-20 15:40:08 ----N---- C:\WINDOWS\system32\spmsg.dll 2010-02-20 15:40:07 ----HDC---- C:\WINDOWS\$NtUninstallKB885855$ 2010-02-20 15:40:00 ----D---- C:\Program Files\HPQ 2010-02-20 15:39:42 ----N---- C:\WINDOWS\system32\agrsmdel.exe 2010-02-20 15:39:42 ----N---- C:\WINDOWS\HPModemVersion.dll 2010-02-20 15:39:34 ----D---- C:\WINDOWS\Options 2010-02-20 15:39:29 ----N---- C:\WINDOWS\system32\agrscoin.dll 2010-02-20 15:39:29 ----A---- C:\WINDOWS\agrsmdel.exe 2010-02-20 15:39:28 ----D---- C:\SWSetup 2010-02-20 15:39:28 ----A---- C:\WINDOWS\system32\agrsmsvc.exe 2010-02-20 15:34:39 ----RA---- C:\WINDOWS\system32\PostProc.dll 2010-02-20 15:34:33 ----N---- C:\WINDOWS\system32\wdmioctl.dll 2010-02-20 15:34:33 ----N---- C:\WINDOWS\system32\SMMedia.dll 2010-02-20 15:34:32 ----D---- C:\Program Files\Analog Devices 2010-02-20 15:34:32 ----A---- C:\WINDOWS\system32\DSndUp.exe 2010-02-20 15:33:58 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2010-02-20 15:33:57 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$ 2010-02-20 15:33:39 ----D---- C:\Program Files\Hewlett-Packard 2010-02-20 15:33:38 ----HD---- C:\Program Files\InstallShield Installation Information 2010-02-20 15:33:36 ----D---- C:\Program Files\Fichiers communs\InstallShield 2010-02-20 15:32:45 ----D---- C:\SYSTEM.SAV 2010-02-20 15:30:00 ----D---- C:\Documents and Settings\khavile\Application Data\Identities 2010-02-20 15:29:59 ----HD---- C:\Program Files\Uninstall Information 2010-02-20 15:29:54 ----SD---- C:\Documents and Settings\khavile\Application Data\Microsoft 2010-02-20 15:29:54 ----ASH---- C:\Documents and Settings\khavile\Application Data\desktop.ini 2010-02-20 15:28:50 ----D---- C:\WINDOWS\SoftwareDistribution 2010-02-20 15:28:48 ----SD---- C:\WINDOWS\system32\Microsoft 2010-02-20 15:28:48 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-02-20 15:24:00 ----D---- C:\WINDOWS\system32\xircom 2010-02-20 15:24:00 ----D---- C:\Program Files\xerox 2010-02-20 15:24:00 ----D---- C:\Program Files\microsoft frontpage 2010-02-20 15:23:36 ----HD---- C:\WINDOWS\$hf_mig$ 2010-02-20 15:23:21 ----A---- C:\WINDOWS\control.ini 2010-02-20 15:23:21 ----A---- C:\AUTOEXEC.BAT 2010-02-20 15:23:00 ----A---- C:\WINDOWS\OEWABLog.txt 2010-02-20 15:22:57 ----A---- C:\WINDOWS\system32\mapi32.dll 2010-02-20 15:21:15 ----RD---- C:\WINDOWS\Offline Web Pages 2010-02-20 15:21:14 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-02-20 15:21:14 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-02-20 15:21:01 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-02-20 15:20:53 ----HD---- C:\Program Files\WindowsUpdate 2010-02-20 15:20:49 ----D---- C:\Program Files\Services en ligne 2010-02-20 15:20:23 ----D---- C:\WINDOWS\system32\DirectX 2010-02-20 15:19:46 ----A---- C:\WINDOWS\system32\atrace.dll 2010-02-20 15:19:43 ----A---- C:\WINDOWS\system32\desktop.ini 2010-02-20 15:19:43 ----A---- C:\WINDOWS\desktop.ini 2010-02-20 15:19:33 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2010-02-20 15:19:31 ----A---- C:\WINDOWS\system32\acctres.dll 2010-02-20 15:19:30 ----D---- C:\Program Files\Fichiers communs\Services 2010-02-20 15:19:25 ----SD---- C:\WINDOWS\Tasks 2010-02-20 15:19:25 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2010-02-20 15:19:24 ----D---- C:\Program Files\Fichiers communs\MSSoap 2010-02-20 15:19:19 ----D---- C:\WINDOWS\srchasst 2010-02-20 15:19:18 ----D---- C:\WINDOWS\system32\Macromed 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wuweb.dll 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wups.dll 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wucltui.dll 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wuauserv.dll 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wuaueng.dll 2010-02-20 15:19:12 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2010-02-20 15:19:12 ----A---- C:\WINDOWS\system32\wuauclt.exe 2010-02-20 15:19:12 ----A---- C:\WINDOWS\system32\wuapi.dll 2010-02-20 15:19:12 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2010-02-20 15:19:11 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2010-02-20 15:19:11 ----A---- C:\WINDOWS\system32\qmgr.dll 2010-02-20 15:19:11 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2010-02-20 15:19:06 ----D---- C:\Program Files\Movie Maker 2010-02-20 15:19:00 ----A---- C:\WINDOWS\system32\safrslv.dll 2010-02-20 15:19:00 ----A---- C:\WINDOWS\system32\safrdm.dll 2010-02-20 15:19:00 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2010-02-20 15:18:59 ----A---- C:\WINDOWS\system32\racpldlg.dll 2010-02-20 15:18:55 ----A---- C:\WINDOWS\system32\fltmc.exe 2010-02-20 15:18:55 ----A---- C:\WINDOWS\system32\fltlib.dll 2010-02-20 15:18:54 ----D---- C:\WINDOWS\system32\Restore 2010-02-20 15:18:54 ----A---- C:\WINDOWS\system32\srsvc.dll 2010-02-20 15:18:54 ----A---- C:\WINDOWS\system32\srrstr.dll 2010-02-20 15:18:54 ----A---- C:\WINDOWS\system32\srclient.dll 2010-02-20 15:18:53 ----A---- C:\WINDOWS\system32\mnmdd.dll 2010-02-20 15:18:53 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2010-02-20 15:18:53 ----A---- C:\WINDOWS\system32\ils.dll 2010-02-20 15:18:52 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2010-02-20 15:18:52 ----A---- C:\WINDOWS\system32\msconf.dll 2010-02-20 15:18:52 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2010-02-20 15:18:48 ----D---- C:\Program Files\NetMeeting 2010-02-20 15:18:48 ----A---- C:\WINDOWS\system32\msoert2.dll 2010-02-20 15:18:48 ----A---- C:\WINDOWS\system32\msoeacct.dll 2010-02-20 15:18:46 ----A---- C:\WINDOWS\system32\inetres.dll 2010-02-20 15:18:46 ----A---- C:\WINDOWS\system32\inetcomm.dll 2010-02-20 15:18:44 ----D---- C:\Program Files\Outlook Express 2010-02-20 15:18:44 ----A---- C:\WINDOWS\system32\schedsvc.dll 2010-02-20 15:18:43 ----A---- C:\WINDOWS\system32\mstinit.exe 2010-02-20 15:18:43 ----A---- C:\WINDOWS\system32\mstask.dll 2010-02-20 15:18:42 ----A---- C:\WINDOWS\system32\isign32.dll 2010-02-20 15:18:42 ----A---- C:\WINDOWS\system32\inetcfg.dll 2010-02-20 15:18:42 ----A---- C:\WINDOWS\system32\icwphbk.dll 2010-02-20 15:18:42 ----A---- C:\WINDOWS\system32\icwdial.dll 2010-02-20 15:18:33 ----D---- C:\Program Files\Fichiers communs\System 2010-02-20 15:18:27 ----D---- C:\Program Files\Internet Explorer 2010-02-20 15:17:24 ----D---- C:\Program Files\ComPlus Applications 2010-02-20 15:17:23 ----A---- C:\WINDOWS\vbaddin.ini 2010-02-20 15:17:23 ----A---- C:\WINDOWS\vb.ini 2010-02-20 15:17:21 ----D---- C:\WINDOWS\Registration 2010-02-20 15:17:16 ----D---- C:\Program Files\Windows Media Player 2010-02-20 15:17:16 ----D---- C:\Program Files\Online Services 2010-02-20 15:17:10 ----D---- C:\Program Files\Messenger 2010-02-20 15:17:05 ----D---- C:\Program Files\MSN Gaming Zone 2010-02-20 15:17:04 ----A---- C:\WINDOWS\system32\write.exe 2010-02-20 15:16:48 ----A---- C:\WINDOWS\system32\sndvol32.exe 2010-02-20 15:16:48 ----A---- C:\WINDOWS\system32\hticons.dll 2010-02-20 15:16:47 ----A---- C:\WINDOWS\system32\avwav.dll 2010-02-20 15:16:47 ----A---- C:\WINDOWS\system32\avtapi.dll 2010-02-20 15:16:47 ----A---- C:\WINDOWS\system32\avmeter.dll 2010-02-20 15:16:46 ----A---- C:\WINDOWS\system32\winchat.exe 2010-02-20 15:16:35 ----A---- C:\WINDOWS\system32\getuname.dll 2010-02-20 15:16:34 ----A---- C:\WINDOWS\system32\charmap.exe 2010-02-20 15:16:34 ----A---- C:\WINDOWS\system32\calc.exe 2010-02-20 15:16:33 ----A---- C:\WINDOWS\system32\winmine.exe 2010-02-20 15:16:33 ----A---- C:\WINDOWS\system32\sol.exe 2010-02-20 15:16:33 ----A---- C:\WINDOWS\system32\mshearts.exe 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\tslabels.ini 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\tskill.exe 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\reset.exe 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\freecell.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\tscon.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\shadow.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\rwinsta.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\regini.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2010-02-20 15:16:30 ----A---- C:\WINDOWS\system32\qwinsta.exe 2010-02-20 15:16:30 ----A---- C:\WINDOWS\system32\qappsrv.exe 2010-02-20 15:16:30 ----A---- C:\WINDOWS\system32\msg.exe 2010-02-20 15:16:30 ----A---- C:\WINDOWS\system32\logoff.exe 2010-02-20 15:16:30 ----A---- C:\WINDOWS\system32\cdmodem.dll 2010-02-20 15:16:29 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\mtxex.dll 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\mtxdm.dll 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\comrepl.dll 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\comaddin.dll 2010-02-20 15:16:27 ----A---- C:\WINDOWS\system32\stclient.dll 2010-02-20 15:16:27 ----A---- C:\WINDOWS\system32\comsnap.dll 2010-02-20 15:16:18 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2010-02-20 15:16:08 ----D---- C:\Program Files\MSN 2010-02-20 15:16:07 ----A---- C:\WINDOWS\system32\accwiz.exe 2010-02-20 15:16:06 ----A---- C:\WINDOWS\system32\sndrec32.exe 2010-02-20 15:16:06 ----A---- C:\WINDOWS\system32\mplay32.exe 2010-02-20 15:16:06 ----A---- C:\WINDOWS\system32\hypertrm.dll 2010-02-20 15:16:05 ----D---- C:\Program Files\Windows NT 2010-02-20 15:16:05 ----A---- C:\WINDOWS\system32\mspaint.exe 2010-02-20 15:16:05 ----A---- C:\WINDOWS\system32\clipbrd.exe 2010-02-20 15:16:04 ----A---- C:\WINDOWS\system32\spider.exe 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\remotepg.dll 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\rdshost.exe 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\mstscax.dll 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\mstsc.exe 2010-02-20 15:16:02 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2010-02-20 15:16:02 ----A---- C:\WINDOWS\system32\termsrv.dll 2010-02-20 15:16:02 ----A---- C:\WINDOWS\system32\sessmgr.exe 2010-02-20 15:16:02 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2010-02-20 15:16:02 ----A---- C:\WINDOWS\system32\rdchost.dll 2010-02-20 15:16:01 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2010-02-20 15:16:01 ----A---- C:\WINDOWS\system32\rdpclip.exe 2010-02-20 15:16:01 ----A---- C:\WINDOWS\system32\qprocess.exe 2010-02-20 15:16:01 ----A---- C:\WINDOWS\system32\icaapi.dll 2010-02-20 15:16:01 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2010-02-20 15:16:00 ----D---- C:\WINDOWS\system32\MsDtc 2010-02-20 15:16:00 ----A---- C:\WINDOWS\system32\mtxoci.dll 2010-02-20 15:16:00 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2010-02-20 15:16:00 ----A---- C:\WINDOWS\system32\msdtctm.dll 2010-02-20 15:16:00 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2010-02-20 15:15:59 ----A---- C:\WINDOWS\system32\xolehlp.dll 2010-02-20 15:15:59 ----A---- C:\WINDOWS\system32\msdtclog.dll 2010-02-20 15:15:59 ----A---- C:\WINDOWS\system32\msdtc.exe 2010-02-20 15:15:58 ----D---- C:\WINDOWS\system32\Com 2010-02-20 15:15:58 ----A---- C:\WINDOWS\system32\colbact.dll 2010-02-20 15:15:58 ----A---- C:\WINDOWS\system32\clbcatex.dll 2010-02-20 15:15:58 ----A---- C:\WINDOWS\system32\catsrvps.dll 2010-02-20 15:15:57 ----A---- C:\WINDOWS\system32\comsvcs.dll 2010-02-20 15:15:57 ----A---- C:\WINDOWS\system32\catsrvut.dll 2010-02-20 15:15:57 ----A---- C:\WINDOWS\system32\catsrv.dll 2010-02-20 15:15:56 ----A---- C:\WINDOWS\system32\comuid.dll 2010-02-20 15:15:56 ----A---- C:\WINDOWS\system32\clbcatq.dll 2010-02-20 15:15:47 ----A---- C:\WINDOWS\system32\servdeps.dll 2010-02-20 15:15:47 ----A---- C:\WINDOWS\system32\mmfutil.dll 2010-02-20 15:15:47 ----A---- C:\WINDOWS\system32\licwmi.dll 2010-02-20 15:15:47 ----A---- C:\WINDOWS\system32\cmprops.dll 2010-02-20 15:14:30 ----A---- C:\WINDOWS\system32\h323log.txt 2010-02-20 15:11:44 ----A---- C:\WINDOWS\system32\vfwwdm32.dll 2010-02-20 15:11:44 ----A---- C:\WINDOWS\system32\ksuser.dll 2010-02-20 15:10:56 ----A---- C:\WINDOWS\system32\usbui.dll 2010-02-20 15:10:17 ----A---- C:\WINDOWS\imsins.BAK 2010-02-20 15:10:15 ----SHD---- C:\WINDOWS\Installer 2010-02-20 15:10:15 ----D---- C:\Program Files\Fichiers communs\ODBC 2010-02-20 15:10:15 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-02-20 15:10:15 ----A---- C:\WINDOWS\ODBCINST.INI 2010-02-20 15:10:12 ----RD---- C:\Program Files 2010-02-20 15:10:12 ----D---- C:\Program Files\Fichiers communs\SpeechEngines 2010-02-20 15:10:12 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2010-02-20 15:10:12 ----D---- C:\Program Files\Fichiers communs 2010-02-20 15:10:10 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2010-02-20 15:10:10 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2010-02-20 15:10:10 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdur.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdru.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2010-02-20 15:10:05 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2010-02-20 15:10:05 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2010-02-20 15:10:05 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2010-02-20 15:10:05 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2010-02-20 15:10:05 ----RA---- C:\WINDOWS\system32\kbdest.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdro.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2010-02-20 15:10:01 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-02-20 15:10:01 ----A---- C:\WINDOWS\system32\irclass.dll 2010-02-20 15:10:01 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2010-02-20 15:10:01 ----A---- C:\WINDOWS\system32\dgsetup.dll 2010-02-20 15:10:01 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2010-02-20 15:09:59 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2010-02-20 15:09:59 ----A---- C:\WINDOWS\TASKMAN.EXE 2010-02-20 15:09:58 ----A---- C:\WINDOWS\system32\batt.dll 2010-02-20 15:09:58 ----A---- C:\WINDOWS\notepad.exe 2010-02-20 15:09:57 ----A---- C:\WINDOWS\system32\storprop.dll 2010-02-20 15:09:54 ----RA---- C:\WINDOWS\SET29.tmp 2010-02-20 15:09:54 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2010-02-20 15:09:51 ----RA---- C:\WINDOWS\SET8.tmp 2010-02-20 15:09:50 ----RA---- C:\WINDOWS\SET4.tmp 2010-02-20 15:09:49 ----RA---- C:\WINDOWS\SET3.tmp 2010-02-20 15:09:45 ----D---- C:\WINDOWS\system32\CatRoot2 2010-02-20 15:09:45 ----D---- C:\WINDOWS\system32\CatRoot 2010-02-20 15:09:39 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2010-02-20 15:09:23 ----A---- C:\WINDOWS\setuplog.txt 2010-02-20 15:09:21 ----D---- C:\Documents and Settings 2010-02-20 15:09:20 ----SHD---- C:\System Volume Information 2010-02-20 15:08:37 ----SH---- C:\boot.ini 2010-02-20 15:03:13 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-02-20 15:03:13 ----RSD---- C:\WINDOWS\Fonts 2010-02-20 15:03:13 ----RD---- C:\WINDOWS\Web 2010-02-20 15:03:13 ----HD---- C:\WINDOWS\inf 2010-02-20 15:03:13 ----D---- C:\WINDOWS\WinSxS 2010-02-20 15:03:13 ----D---- C:\WINDOWS\twain_32 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Temp 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\wins 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\wbem 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\usmt 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\spool 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\ShellExt 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\Setup 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\ras 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\oobe 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\npp 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\mui 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\inetsrv 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\IME 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\icsxml 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\ias 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\export 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\drivers 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\dhcp 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\config 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\3com_dmi 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\3076 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\2052 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1054 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1042 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1041 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1037 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1036 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1033 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1031 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1028 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1025 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system 2010-02-20 15:03:13 ----D---- C:\WINDOWS\security 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Resources 2010-02-20 15:03:13 ----D---- C:\WINDOWS\repair 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Provisioning 2010-02-20 15:03:13 ----D---- C:\WINDOWS\PeerNet 2010-02-20 15:03:13 ----D---- C:\WINDOWS\pchealth 2010-02-20 15:03:13 ----D---- C:\WINDOWS\mui 2010-02-20 15:03:13 ----D---- C:\WINDOWS\msapps 2010-02-20 15:03:13 ----D---- C:\WINDOWS\msagent 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Media 2010-02-20 15:03:13 ----D---- C:\WINDOWS\java 2010-02-20 15:03:13 ----D---- C:\WINDOWS\ime 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Help 2010-02-20 15:03:13 ----D---- C:\WINDOWS\ehome 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Driver Cache 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Debug 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Cursors 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Connection Wizard 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Config 2010-02-20 15:03:13 ----D---- C:\WINDOWS\AppPatch 2010-02-20 15:03:13 ----D---- C:\WINDOWS\addins 2010-02-20 15:03:13 ----D---- C:\WINDOWS ======List of files/folders modified in the last 1 months====== 2010-02-20 17:06:45 ----A---- C:\WINDOWS\win.ini 2010-02-20 17:00:24 ----A---- C:\WINDOWS\system.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576] R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] R1 kl1;Kl1; \??\C:\WINDOWS\system32\drivers\kl1.sys [] R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2010-03-02 315408] R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832] R3 Accelerometer;HP Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2008-05-23 28592] R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2008-04-11 338944] R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976] R3 BTKRNL;Enumérateur de bus Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2008-04-03 879624] R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-04-03 74688] R3 CmBatt;Pilote d'adaptateur secteur Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952] R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2008-04-28 9344] R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] R3 HpqKbFiltr;HpqKbFilter Driver; C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-05-21 6018464] R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2009-09-14 32272] R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-10-02 19472] R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys [] R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288] R3 NETw5x32;Pilote de carte Intel® Wireless WiFi Link pour Windows XP 32 bits ; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-04-28 3626112] R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-03-27 224672] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 UsbEvdomAtc;LGE EVDOM USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgevdomatc.sys [2008-08-26 19840] R3 usbevdombus;LGE EVDOM Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgevdombus.sys [2008-08-26 13696] R3 UsbEvdomDiag;LGE EVDOM USB Serial DM Port; C:\WINDOWS\system32\DRIVERS\lgevdomdiag.sys [2008-08-26 19840] R3 USBEVDOmModem;LGE EVDOM USB Modem; C:\WINDOWS\system32\DRIVERS\lgevdommodem.sys [2008-08-26 21632] R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000] R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2008-04-04 296320] S3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 SCR3XX2K;SCR3xx USB SmartCardReader; C:\WINDOWS\system32\DRIVERS\SCR3XX2K.sys [2007-06-21 56448] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbvideo;Périphérique vidéo USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S4 atapi;atapi; C:\WINDOWS\system32\drivers\atapi.sys [2008-04-13 96512] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\WINDOWS\system32\agrsmsvc.exe [2007-12-11 12800] R2 AVP;Kaspersky Anti-Virus; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe [2009-10-20 340456] R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376] R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-03-31 264800] R2 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-12-17 153376] R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288] R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912] S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-02-20 654848] S3 getPlusHelper;getPlus® Helper; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] S3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-05-01 165192] S3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe [2007-09-20 382248] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136] S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] -----------------EOF-----------------

le rapport d'analyse(MBAM ): Malwarebytes' Anti-Malware 1.44 Version de la base de données: 3815 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 02/03/2010 22:13:12 mbam-log-2010-03-02 (22-13-12).txt Type de recherche: Examen complet (C:\|D:\|E:\|F:\|G:\|) Eléments examinés: 302630 Temps écoulé: 1 hour(s), 13 minute(s), 34 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)

info.txt info.txt logfile of random's system information tool 1.06 2010-03-02 16:12:22 ======Uninstall list====== -->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 -->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL -->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL -->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL -->C:\WINDOWS\UNRecode.exe /UNINSTALL -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf 360desktop-->MsiExec.exe /X{21D15DED-F125-46C8-8017-CB9F1CEB5B4D} Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95} Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61} Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394} Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23} Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C} Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C} Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E} Adobe Color Common Settings-->MsiExec.exe /I{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9} Adobe Color EU Recommended Settings-->MsiExec.exe /I{73B5D990-04EA-4751-B10F-5534770B91F2} Adobe Color JA Extra Settings-->MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029} Adobe Color NA Extra Settings-->MsiExec.exe /I{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A} Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D} Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD} Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{C2D69781-F392-4118-A5A7-C7E9C38DBFC2} Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B} Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245} Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078} Adobe PDF Library Files-->MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C} Adobe Photoshop CS3-->C:\Program Files\Fichiers communs\Adobe\Installers\32e9033392a51340b32fdc6ad893ab7\Setup.exe Adobe Photoshop CS3-->MsiExec.exe /I{BF794769-8875-4E01-B7BE-E00104604F4A} Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001} Adobe Setup-->MsiExec.exe /I{926DEB4E-2B0A-4C5C-AE4A-BF6C06949702} Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183} Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312} Adobe Update Manager CS3-->MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8} Adobe Version Cue CS3 Client-->MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5} Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6} Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923} Agere Systems HDA Modem-->agrsmdel Autobahn-->C:\Documents and Settings\khavile\Local Settings\Application Data\Autobahn\Uninstall.exe Comptabilité-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{93A837CB-5919-4BBA-B1AE-2E42F0E00794}\setup.exe" -l0x40c Correctif pour Windows XP (KB949764)-->"C:\WINDOWS\$NtUninstallKB949764$\spuninst\spuninst.exe" Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe" Correctif pour Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe" Correctif pour Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe" CrypTool 1.4.30-->C:\Program Files\CrypTool\uninstall.exe EasyPHP 1.8-->"C:\Program Files\EasyPHP1-8\unins000.exe" Ela-Salaty-->"C:\WINDOWS\Ela-Salaty\uninstall.exe" "/U:C:\Program Files\Ela-Salaty\Uninstall\uninstall.xml" HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall HP 3D DriveGuard-->MsiExec.exe /X{A70B15A5-AABC-41D0-A2AC-678BED567894} HP Integrated Module with Bluetooth wireless technology-->MsiExec.exe /X{84814E6B-2581-46EC-926A-823BD1C670F6} HP Quick Launch Buttons 6.40 E1-->C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe -runfromtemp -l0x040c -removeonly uninst HP Webcam-->C:\Program Files\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x040c -removeonly Intel® Graphics Media Accelerator Driver-->C:\WINDOWS\system32\igxpun.exe -uninstall Intel® Matrix Storage Manager-->C:\WINDOWS\system32\imsmudlg.exe -uninstall Java 6 Update 18-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216016FF} Java SE Development Kit 6-->MsiExec.exe /I{32A3A4F4-B792-11D6-A78A-00B0D0160000} Java SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000} Kaspersky Anti-Virus 2010-->MsiExec.exe /I{943B6738-4801-4982-90EC-0442EF7AEB16} Kaspersky Anti-Virus 2010-->MsiExec.exe /I{943B6738-4801-4982-90EC-0442EF7AEB16} Logiciel d'archivage WinRAR-->C:\Program Files\WinRAR\uninstall.exe Macromedia Dreamweaver 8-->MsiExec.exe /I{5FD788ED-1A37-4496-9BDD-463F493B27FA} Macromedia Extension Manager-->MsiExec.exe /I{3C8C9FB3-5FDF-40B4-B314-EAD722728C76} Marvell Miniport Driver-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe" Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE} Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE} Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE} Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE} Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE} Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE} Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE} Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE} Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE} Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE} Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE} Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE} Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE} Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE} Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE} Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe" Mise à jour de sécurité pour Lecteur Windows Media (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows Internet Explorer 8 (KB978207)-->"C:\WINDOWS\ie8updates\KB978207-IE8\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB977165)-->"C:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe" Mise à jour de sécurité pour Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe" Mise à jour pour Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe" Mise à jour pour Windows XP (KB978207)-->"C:\WINDOWS\$NtUninstallKB978207$\spuninst\spuninst.exe" Modem LG LDU-1900D-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{43DB077F-C85F-42CC-8302-17CBEE4A6BC6}\setup.exe" -l0x40c -removeonly Mozilla Firefox (3.6)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} Nero 8-->MsiExec.exe /X{B944FA21-81AF-4A77-8328-CE4F4CC51036} neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} PDF Settings-->MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5} RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 Rhapsody Player Engine-->MsiExec.exe /I{22DE1881-9D24-4981-B5CC-EC7E9F2F4D52} SCR3xxx Smart Card Reader-->MsiExec.exe /I{983980FC-66FB-4ECC-A5D8-4565BE217733} Skype Toolbars-->MsiExec.exe /I{981029E0-7FC9-4CF3-AB39-6F133621921A} Skype™ 4.1-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36} SoundMAX-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe" -l0x40c -removeonly Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall TeraCopy 1.22 Pro-->"C:\Program Files\TeraCopy\unins000.exe" VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027} Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe" ======Security center information====== AV: Kaspersky Anti-Virus ======System event log====== Computer Name: KHAVILE-862F191 Event Code: 29 Message: Le fournisseur de temps NtpClient est configuré pour acquérir le temps à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 14 minutes. NtpClient n'a pas de source de temps précis. Record Number: 242 Source Name: W32Time Time Written: 20100220184600.000000+000 Event Type: error User: Computer Name: KHAVILE-862F191 Event Code: 17 Message: Fournisseur de temps NtpClient : une erreur s'est produite lors de la recherche DNS de l'homologue manuellement configuré 'time.windows.com,0x1'. NtpClient va essayer à nouveau la recherche DNS dans 15 minutes. L'erreur était : Une opération a été tentée sur un hôte impossible à atteindre. (0x80072751) Record Number: 241 Source Name: W32Time Time Written: 20100220184600.000000+000 Event Type: error User: Computer Name: KHAVILE-862F191 Event Code: 29 Message: Le fournisseur de temps NtpClient est configuré pour acquérir le temps à partir d'une ou plusieurs sources de temps, cependant aucune source n'est actuellement accessible. Aucune tentative pour en contacter une ne sera effectuée d'ici 14 minutes. NtpClient n'a pas de source de temps précis. Record Number: 240 Source Name: W32Time Time Written: 20100220183731.000000+000 Event Type: error User: Computer Name: KHAVILE-862F191 Event Code: 17 Message: Fournisseur de temps NtpClient : une erreur s'est produite lors de la recherche DNS de l'homologue manuellement configuré 'time.windows.com,0x1'. NtpClient va essayer à nouveau la recherche DNS dans 15 minutes. L'erreur était : Une opération a été tentée sur un hôte impossible à atteindre. (0x80072751) Record Number: 239 Source Name: W32Time Time Written: 20100220183731.000000+000 Event Type: error User: Computer Name: KHAVILE-862F191 Event Code: 1007 Message: Votre ordinateur a automatiquement configuré l'adresse IP pour la carte avec l'adresse réseau 0024814C3F5E. L'adresse IP utilisée est 169.254.207.142. Record Number: 238 Source Name: Dhcp Time Written: 20100220183731.000000+000 Event Type: warning User: =====Application event log===== Computer Name: KHAVILE-862F191 Event Code: 5603 Message: Un fournisseur, Provider_BIOSInterface, était inscrit dans l'espace de noms WMI, root\HP\InstrumentedBIOS, mais n'a pas spécifié la propriété HostingModel. Ce fournisseur sera exécuté avec le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s'il ne représente pas correctement les demandes utilisateur. Vérifiez que le comportement sécuritaire du fournisseur a été contrôlé, et mettez à jour la propriété HostingModel de l'inscription du fournisseur vers un compte disposant du moins d'autorisations possible pour la fonctionnalité requise. Record Number: 15 Source Name: WinMgmt Time Written: 20100220151813.000000+000 Event Type: warning User: AUTORITE NT\SYSTEM Computer Name: KHAVILE-862F191 Event Code: 5603 Message: Un fournisseur, Provider_BIOSInterface, était inscrit dans l'espace de noms WMI, root\HP\InstrumentedBIOS, mais n'a pas spécifié la propriété HostingModel. Ce fournisseur sera exécuté avec le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s'il ne représente pas correctement les demandes utilisateur. Vérifiez que le comportement sécuritaire du fournisseur a été contrôlé, et mettez à jour la propriété HostingModel de l'inscription du fournisseur vers un compte disposant du moins d'autorisations possible pour la fonctionnalité requise. Record Number: 14 Source Name: WinMgmt Time Written: 20100220151813.000000+000 Event Type: warning User: AUTORITE NT\SYSTEM Computer Name: KHAVILE-862F191 Event Code: 63 Message: Un fournisseur, CmdTriggerConsumer, a été enregistré dans l'espace de noms WMI, Root\cimv2, afin d'utiliser le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s'il ne représente pas correctement les demandes utilisateur. Record Number: 13 Source Name: WinMgmt Time Written: 20100220151812.000000+000 Event Type: warning User: AUTORITE NT\SYSTEM Computer Name: KHAVILE-862F191 Event Code: 63 Message: Un fournisseur, CmdTriggerConsumer, a été enregistré dans l'espace de noms WMI, Root\cimv2, afin d'utiliser le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s'il ne représente pas correctement les demandes utilisateur. Record Number: 12 Source Name: WinMgmt Time Written: 20100220151812.000000+000 Event Type: warning User: AUTORITE NT\SYSTEM Computer Name: KHAVILE-862F191 Event Code: 63 Message: Un fournisseur, HiPerfCooker_v1, a été enregistré dans l'espace de noms WMI, Root\WMI, afin d'utiliser le compte LocalSystem. Ce compte bénéficie de privilèges et le fournisseur peut provoquer une violation de sécurité s'il ne représente pas correctement les demandes utilisateur. Record Number: 11 Source Name: WinMgmt Time Written: 20100220151805.000000+000 Event Type: warning User: AUTORITE NT\SYSTEM ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel "PROCESSOR_REVISION"=0f0d "NUMBER_OF_PROCESSORS"=2 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- LOG.TXT Logfile of random's system information tool 1.06 (written by random/random) Run by khavile at 2010-03-02 16:10:56 Microsoft Windows XP Professionnel Service Pack 3 System drive C: has 131 GB (87%) free of 150 GB Total RAM: 1976 MB (68% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:12:19, on 02/03/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\agrsmsvc.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\explorer.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtblfs.exe C:\Program Files\360desktop\360desktop.exe C:\Program Files\360desktop\360desktopd.exe C:\Documents and Settings\khavile\Mes documents\Téléchargements\RSIT.exe C:\Program Files\trend micro\khavile.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.fr/spbasic.htm R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://center.rising.com.cn/service.asp R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll O2 - BHO: ?¨?¨EI??°²E«??E? - {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} - C:\WINDOWS\system32\UrlFilter.dll (file missing) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [AccelerometerSysTrayApplet] C:\WINDOWS\system32\AccelerometerSt.Exe O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [REVAService] C:\Program Files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\REVAService.exe O4 - HKCU\..\Run: [360desktop] "C:\Program Files\360desktop\360desktop.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RESEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: autobahn.lnk = C:\Documents and Settings\khavile\Local Settings\Application Data\Autobahn\autobahn.exe O4 - Startup: Ela-Salaty.lnk = C:\Program Files\Ela-Salaty\Salaty.exe O4 - Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\khavile\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe O4 - Global Startup: BTTray.lnk = ? O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: Envoyer à Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\WINDOWS\system32\agrsmsvc.exe O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe -- End of file - 8809 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2010-02-20 370296] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}] IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\ievkbd.dll [2009-10-20 68112] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}] ؟¨؟¨ةدحّ°²ب«ضْتض - C:\WINDOWS\system32\UrlFilter.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-11 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}] FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\klwtbbho.dll [2009-10-20 268816] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-01-11 79648] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1044480] "SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2008-03-24 884736] "IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-06-05 150040] "HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-06-05 170520] "Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-06-05 141848] "AccelerometerSysTrayApplet"=C:\WINDOWS\system32\AccelerometerSt.Exe [2008-06-09 82224] "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1040384] "QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-05-14 177456] "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2010-02-20 185896] "NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-09-20 1836328] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672] "NeroFilterCheck"=C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe [2007-03-01 153136] "SunJavaUpdateSched"=C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [2010-01-11 246504] "AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe [2009-10-20 340456] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe [2007-09-20 202024] "REVAService"=C:\Program Files\LG Electronics\LG EV-DO Rev.A USB Modem\Modem Software\REVAService.exe [2008-12-02 23040] "360desktop"=C:\Program Files\360desktop\360desktop.exe [2009-09-14 1065728] C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Documents and Settings\khavile\Menu Démarrer\Programmes\Démarrage autobahn.lnk - C:\Documents and Settings\khavile\Local Settings\Application Data\Autobahn\autobahn.exe Ela-Salaty.lnk - C:\Program Files\Ela-Salaty\Salaty.exe Notification de cadeaux MSN.lnk - C:\Documents and Settings\khavile\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2008-05-21 212992] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon] C:\WINDOWS\system32\klogon.dll [2009-10-20 219664] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=255 "NoDriveAutoRun"=255 "HonorAutoRunSetting"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\360desktop\360desktop.exe"="C:\Program Files\360desktop\360desktop.exe:*:Enabled:360desktop" "C:\Program Files\360desktop\360manager.exe"="C:\Program Files\360desktop\360manager.exe:*:Enabled:360desktop Manager" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======File associations====== .js - edit - "C:\Program Files\Macromedia\Dreamweaver 8\dreamweaver.exe" "%1" .js - open - ======List of files/folders created in the last 1 months====== 2010-03-02 16:10:56 ----D---- C:\rsit 2010-03-02 16:10:56 ----D---- C:\Program Files\trend micro 2010-03-02 15:06:45 ----A---- C:\UsbFix.txt 2010-03-02 14:57:36 ----A---- C:\WINDOWS\ModemLog_LGE EVDOM USB Modem #2.txt 2010-03-02 01:15:51 ----D---- C:\Program Files\Kaspersky Lab 2010-03-02 01:15:51 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2010-03-02 01:06:24 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files 2010-03-01 20:38:58 ----RASHD---- C:\autorun.inf 2010-03-01 19:53:04 ----D---- C:\UsbFix 2010-03-01 17:52:11 ----D---- C:\Documents and Settings\All Users\Application Data\McAfee 2010-03-01 17:34:18 ----A---- C:\WINDOWS\ModemLog_Agere Systems HDA Modem.txt 2010-02-28 00:43:11 ----D---- C:\Program Files\360desktop 2010-02-28 00:43:11 ----D---- C:\Documents and Settings\khavile\Application Data\360desktop 2010-02-28 00:43:06 ----A---- C:\WINDOWS\{21D15DED-F125-46C8-8017-CB9F1CEB5B4D}_WiseFW.ini 2010-02-28 00:11:11 ----D---- C:\Program Files\Fichiers communs\Wise Installation Wizard 2010-02-24 19:22:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$ 2010-02-24 19:22:33 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$ 2010-02-24 19:22:24 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$ 2010-02-24 19:22:08 ----HDC---- C:\WINDOWS\$NtUninstallKB979306$ 2010-02-23 22:18:54 ----D---- C:\Documents and Settings\khavile\Application Data\U3 2010-02-23 17:50:24 ----D---- C:\WINDOWS\Prefetch 2010-02-23 17:50:13 ----D---- C:\WINDOWS\Minidump 2010-02-23 14:35:11 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$ 2010-02-23 14:35:04 ----HDC---- C:\WINDOWS\$NtUninstallKB978251$ 2010-02-23 14:34:57 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$ 2010-02-23 14:34:51 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$ 2010-02-23 14:34:41 ----HDC---- C:\WINDOWS\$NtUninstallKB977165$ 2010-02-23 14:34:35 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$ 2010-02-23 14:34:28 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$ 2010-02-23 14:34:23 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$ 2010-02-23 14:34:18 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$ 2010-02-23 14:34:13 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$ 2010-02-23 14:34:08 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$ 2010-02-23 14:34:03 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$ 2010-02-23 14:33:58 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$ 2010-02-23 14:33:52 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$ 2010-02-23 14:33:47 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$ 2010-02-23 14:33:41 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$ 2010-02-23 14:33:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$ 2010-02-23 14:33:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$ 2010-02-23 14:33:26 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$ 2010-02-23 14:33:19 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$ 2010-02-23 14:33:14 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$ 2010-02-23 14:33:06 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$ 2010-02-23 14:33:00 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$ 2010-02-23 14:32:55 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$ 2010-02-23 14:32:49 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$ 2010-02-23 14:32:43 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$ 2010-02-23 14:32:36 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$ 2010-02-23 14:32:29 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$ 2010-02-23 14:32:21 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$ 2010-02-23 14:32:16 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$ 2010-02-23 14:32:10 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$ 2010-02-23 14:32:05 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$ 2010-02-23 14:32:00 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$ 2010-02-23 14:31:55 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$ 2010-02-23 14:31:49 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$ 2010-02-23 14:31:44 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$ 2010-02-23 14:31:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$ 2010-02-23 14:31:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$ 2010-02-23 14:31:24 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$ 2010-02-23 14:31:18 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$ 2010-02-23 14:31:12 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$ 2010-02-23 14:31:07 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$ 2010-02-23 14:31:02 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$ 2010-02-23 14:30:56 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$ 2010-02-23 14:30:50 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$ 2010-02-23 14:30:44 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$ 2010-02-23 14:30:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$ 2010-02-23 14:30:33 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$ 2010-02-23 14:30:27 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$ 2010-02-23 14:30:21 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$ 2010-02-23 14:30:16 ----HDC---- C:\WINDOWS\$NtUninstallKB949764$ 2010-02-23 14:30:11 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$ 2010-02-23 14:30:03 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$ 2010-02-23 14:26:36 ----D---- C:\WINDOWS\system32\fr 2010-02-23 14:26:36 ----D---- C:\WINDOWS\system32\bits 2010-02-23 14:26:36 ----D---- C:\WINDOWS\l2schemas 2010-02-23 14:21:57 ----D---- C:\WINDOWS\network diagnostic 2010-02-23 14:16:38 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$ 2010-02-23 13:04:26 ----D---- C:\WINDOWS\ie8updates 2010-02-23 06:31:20 ----HDC---- C:\WINDOWS\$NtUninstallKB977165_0$ 2010-02-22 15:05:39 ----HDC---- C:\WINDOWS\$NtUninstallKB970430_0$ 2010-02-22 15:04:35 ----D---- C:\WINDOWS\WBEM 2010-02-22 15:04:14 ----HDC---- C:\WINDOWS\ie8 2010-02-22 15:04:14 ----D---- C:\WINDOWS\system32\fr-FR 2010-02-22 15:02:23 ----HDC---- C:\WINDOWS\$NtUninstallKB971737_0$ 2010-02-22 15:01:01 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage 2010-02-22 14:57:47 ----D---- C:\Documents and Settings\All Users\Application Data\Sun 2010-02-22 14:57:33 ----A---- C:\WINDOWS\system32\javaws.exe 2010-02-22 14:57:32 ----A---- C:\WINDOWS\system32\javaw.exe 2010-02-22 14:57:32 ----A---- C:\WINDOWS\system32\java.exe 2010-02-22 13:43:55 ----HDC---- C:\WINDOWS\$NtUninstallKB978262$ 2010-02-22 13:43:51 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$ 2010-02-22 13:43:47 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$ 2010-02-22 13:43:41 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$ 2010-02-22 13:43:36 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$ 2010-02-22 13:43:31 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$ 2010-02-22 13:43:24 ----HDC---- C:\WINDOWS\$NtUninstallKB960859_0$ 2010-02-22 13:43:18 ----HDC---- C:\WINDOWS\$NtUninstallKB971468_0$ 2010-02-22 13:42:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978207$ 2010-02-22 13:42:46 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$ 2010-02-22 13:42:41 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$ 2010-02-22 13:42:38 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$ 2010-02-22 13:42:33 ----HDC---- C:\WINDOWS\$NtUninstallKB955759_0$ 2010-02-22 13:42:24 ----HDC---- C:\WINDOWS\$NtUninstallKB974318_0$ 2010-02-22 13:42:10 ----HDC---- C:\WINDOWS\$NtUninstallKB969059_0$ 2010-02-22 13:42:05 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$ 2010-02-22 13:42:00 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$ 2010-02-22 13:41:54 ----HDC---- C:\WINDOWS\$NtUninstallKB975713_0$ 2010-02-22 13:41:48 ----HDC---- C:\WINDOWS\$NtUninstallKB971657_0$ 2010-02-22 13:41:42 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$ 2010-02-22 13:41:26 ----HDC---- C:\WINDOWS\$NtUninstallKB972270_0$ 2010-02-22 13:41:16 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_0$ 2010-02-22 13:41:02 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$ 2010-02-22 13:40:55 ----HDC---- C:\WINDOWS\$NtUninstallKB956844_0$ 2010-02-22 13:40:50 ----HDC---- C:\WINDOWS\$NtUninstallKB961501_0$ 2010-02-22 13:40:45 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$ 2010-02-22 13:40:41 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$ 2010-02-22 13:40:37 ----HDC---- C:\WINDOWS\$NtUninstallKB978251_0$ 2010-02-22 13:40:33 ----HDC---- C:\WINDOWS\$NtUninstallKB973869_0$ 2010-02-22 13:40:28 ----HDC---- C:\WINDOWS\$NtUninstallKB975025_0$ 2010-02-22 13:40:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$ 2010-02-22 13:40:15 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$ 2010-02-22 13:40:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974571_0$ 2010-02-22 13:40:03 ----HDC---- C:\WINDOWS\$NtUninstallKB975560_0$ 2010-02-22 13:39:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973507_0$ 2010-02-22 13:39:52 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$ 2010-02-22 13:39:27 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_0$ 2010-02-22 13:39:23 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$ 2010-02-22 13:39:18 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$ 2010-02-22 13:39:13 ----HDC---- C:\WINDOWS\$NtUninstallKB973354_0$ 2010-02-22 13:39:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$ 2010-02-22 13:38:56 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$ 2010-02-22 13:38:50 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$ 2010-02-22 13:38:46 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$ 2010-02-22 13:38:41 ----HDC---- C:\WINDOWS\$NtUninstallKB974392_0$ 2010-02-22 13:38:34 ----HDC---- C:\WINDOWS\$NtUninstallKB977914_0$ 2010-02-22 13:38:22 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$ 2010-02-22 13:38:17 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$ 2010-02-22 13:38:13 ----HDC---- C:\WINDOWS\$NtUninstallKB970238_0$ 2010-02-22 13:38:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971486_0$ 2010-02-22 13:37:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978706_0$ 2010-02-22 13:37:47 ----D---- C:\WINDOWS\ServicePackFiles 2010-02-22 13:37:45 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$ 2010-02-22 13:37:40 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$ 2010-02-22 13:37:35 ----HDC---- C:\WINDOWS\$NtUninstallKB973815_0$ 2010-02-22 13:37:25 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$ 2010-02-22 13:37:19 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$ 2010-02-22 13:37:13 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$ 2010-02-22 13:37:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$ 2010-02-22 13:37:01 ----D---- C:\Program Files\MSXML 4.0 2010-02-22 13:36:54 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$ 2010-02-22 13:36:40 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$ 2010-02-22 13:36:34 ----HDC---- C:\WINDOWS\$NtUninstallKB975467_0$ 2010-02-22 13:36:25 ----HDC---- C:\WINDOWS\$NtUninstallKB968389_0$ 2010-02-22 13:36:15 ----HDC---- C:\WINDOWS\$NtUninstallKB969947_0$ 2010-02-22 00:14:14 ----A---- C:\WINDOWS\system32\deploytk.dll 2010-02-21 23:57:50 ----A---- C:\WINDOWS\system32\MRT.exe 2010-02-21 23:57:14 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$ 2010-02-21 23:52:46 ----D---- C:\WINDOWS\Sun 2010-02-21 13:41:58 ----N---- C:\WINDOWS\system32\KakaTool.dll 2010-02-21 12:45:11 ----N---- C:\WINDOWS\system32\tzchange.exe 2010-02-21 11:10:07 ----D---- C:\WINDOWS\system32\PreInstall 2010-02-21 11:10:05 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$ 2010-02-21 00:31:34 ----RD---- C:\RavBin 2010-02-21 00:31:27 ----A---- C:\WINDOWS\system32\mfc71.dll 2010-02-21 00:31:05 ----D---- C:\Program Files\Rising 2010-02-21 00:26:17 ----D---- C:\Documents and Settings\All Users\Application Data\Rising 2010-02-20 23:40:54 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2010-02-20 22:38:21 ----D---- C:\Documents and Settings\khavile\Application Data\skypePM 2010-02-20 22:37:11 ----D---- C:\Documents and Settings\khavile\Application Data\Skype 2010-02-20 22:33:24 ----D---- C:\Program Files\Fichiers communs\Skype 2010-02-20 22:33:22 ----RD---- C:\Program Files\Skype 2010-02-20 22:33:18 ----D---- C:\Documents and Settings\All Users\Application Data\Skype 2010-02-20 19:05:10 ----D---- C:\Program Files\Nero 2010-02-20 19:05:10 ----D---- C:\Program Files\Fichiers communs\Nero 2010-02-20 18:45:55 ----A---- C:\WINDOWS\ModemLog_LGE EVDOM USB Modem.txt 2010-02-20 18:37:25 ----D---- C:\Program Files\LG Electronics 2010-02-20 18:37:00 ----D---- C:\LG Electronics 2010-02-20 18:23:38 ----D---- C:\Documents and Settings\All Users\Application Data\Macromedia 2010-02-20 18:21:01 ----D---- C:\Documents and Settings\khavile\Application Data\Macromedia 2010-02-20 18:15:18 ----D---- C:\Documents and Settings\All Users\Application Data\Macrovision 2010-02-20 18:13:36 ----A---- C:\WINDOWS\system32\msvcr70.dll 2010-02-20 18:13:36 ----A---- C:\WINDOWS\system32\msvcp70.dll 2010-02-20 18:13:36 ----A---- C:\WINDOWS\system32\mfc70.dll 2010-02-20 18:13:25 ----D---- C:\Program Files\Fichiers communs\Macromedia 2010-02-20 18:13:02 ----D---- C:\Program Files\Macromedia 2010-02-20 17:41:15 ----D---- C:\WINDOWS\system32\appmgmt 2010-02-20 17:38:45 ----D---- C:\Documents and Settings\khavile\Application Data\Move Networks 2010-02-20 17:35:32 ----A---- C:\WINDOWS\system32\wmpns.dll 2010-02-20 17:31:46 ----D---- C:\Program Files\Java 2010-02-20 17:31:41 ----D---- C:\Program Files\Fichiers communs\Java 2010-02-20 17:31:26 ----D---- C:\Documents and Settings\khavile\Application Data\Sun 2010-02-20 17:29:25 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet 2010-02-20 17:25:07 ----D---- C:\Program Files\Bonjour 2010-02-20 17:24:50 ----D---- C:\Documents and Settings\khavile\Application Data\Adobe 2010-02-20 17:15:19 ----D---- C:\Program Files\Fichiers communs\Macrovision Shared 2010-02-20 17:13:49 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ 2010-02-20 17:10:07 ----D---- C:\Documents and Settings\khavile\Application Data\TeraCopy 2010-02-20 17:09:19 ----D---- C:\Program Files\Microsoft Works 2010-02-20 17:09:14 ----D---- C:\Program Files\MSBuild 2010-02-20 17:09:05 ----D---- C:\Program Files\Microsoft Visual Studio 2010-02-20 17:09:05 ----D---- C:\Program Files\Fichiers communs\DESIGNER 2010-02-20 17:08:10 ----SHD---- C:\RECYCLER 2010-02-20 17:08:09 ----A---- C:\WINDOWS\NeroDigital.ini 2010-02-20 17:06:24 ----D---- C:\WINDOWS\SHELLNEW 2010-02-20 17:06:01 ----D---- C:\Program Files\Microsoft Office 2010-02-20 17:06:01 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2010-02-20 17:05:46 ----RHD---- C:\MSOCache 2010-02-20 17:04:36 ----D---- C:\Program Files\Maestria 2010-02-20 17:04:36 ----D---- C:\Program Files\Fichiers communs\SAGE 2010-02-20 17:04:36 ----A---- C:\WINDOWS\system32\SAGEPERS.DLL 2010-02-20 17:04:35 ----A---- C:\WINDOWS\system32\mlcorert.dll 2010-02-20 17:04:35 ----A---- C:\WINDOWS\system32\cbaselocal.dll 2010-02-20 17:04:35 ----A---- C:\WINDOWS\system32\cbaseintf.dll 2010-02-20 17:03:30 ----D---- C:\Documents and Settings\All Users\Application Data\Sage 2010-02-20 17:02:14 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe 2010-02-20 17:02:08 ----D---- C:\Program Files\Fichiers communs\Adobe 2010-02-20 17:02:08 ----D---- C:\Program Files\Adobe 2010-02-20 17:01:11 ----D---- C:\Program Files\EasyPHP1-8 2010-02-20 17:00:47 ----D---- C:\Documents and Settings\khavile\Application Data\CrypTool 2010-02-20 16:57:04 ----A---- C:\WINDOWS\system32\Thawbrkr.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdvntc.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdintel.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdintam.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdinpun.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdinmar.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdinkan.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdinhin.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdinguj.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdindev.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdgeo.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdarmw.dll 2010-02-20 16:57:03 ----RA---- C:\WINDOWS\system32\kbdarme.dll 2010-02-20 16:57:03 ----A---- C:\WINDOWS\system32\c_iscii.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbdurdu.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbdsyr2.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbdsyr1.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbdfa.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbddiv2.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbddiv1.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbda3.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbda2.dll 2010-02-20 16:57:01 ----RA---- C:\WINDOWS\system32\kbda1.dll 2010-02-20 16:57:01 ----A---- C:\WINDOWS\system32\kbdusa.dll 2010-02-20 16:56:58 ----RA---- C:\WINDOWS\system32\kbdheb.dll 2010-02-20 16:56:54 ----RA---- C:\WINDOWS\system32\kbdth3.dll 2010-02-20 16:56:54 ----RA---- C:\WINDOWS\system32\kbdth2.dll 2010-02-20 16:56:54 ----RA---- C:\WINDOWS\system32\kbdth1.dll 2010-02-20 16:56:54 ----RA---- C:\WINDOWS\system32\kbdth0.dll 2010-02-20 16:56:54 ----A---- C:\WINDOWS\system32\ftlx041e.dll 2010-02-20 16:52:28 ----D---- C:\WINDOWS\Ela-Salaty 2010-02-20 16:52:28 ----D---- C:\Program Files\Ela-Salaty 2010-02-20 16:52:26 ----D---- C:\Documents and Settings\khavile\Application Data\Mozilla 2010-02-20 16:51:33 ----D---- C:\Program Files\CrypTool 2010-02-20 16:51:20 ----D---- C:\Program Files\Mozilla Firefox 2010-02-20 16:51:00 ----D---- C:\Documents and Settings\khavile\Application Data\WinRAR 2010-02-20 16:50:47 ----D---- C:\Program Files\WinRAR 2010-02-20 16:50:02 ----D---- C:\WINDOWS\system32\NtmsData 2010-02-20 16:46:05 ----D---- C:\Documents and Settings\khavile\Application Data\Nero 2010-02-20 16:45:58 ----A---- C:\WINDOWS\system32\MsiExec.exe.log 2010-02-20 16:44:35 ----D---- C:\Documents and Settings\All Users\Application Data\Nero 2010-02-20 16:44:03 ----D---- C:\WINDOWS\RegisteredPackages 2010-02-20 16:43:07 ----A---- C:\WINDOWS\system32\d3dx9_30.dll 2010-02-20 16:43:05 ----A---- C:\WINDOWS\system32\d3dx9_28.dll 2010-02-20 16:37:43 ----D---- C:\Program Files\TeraCopy 2010-02-20 16:35:54 ----D---- C:\Program Files\Fichiers communs\xing shared 2010-02-20 16:35:47 ----A---- C:\WINDOWS\system32\rmoc3260.dll 2010-02-20 16:35:44 ----A---- C:\WINDOWS\system32\pndx5032.dll 2010-02-20 16:35:44 ----A---- C:\WINDOWS\system32\pndx5016.dll 2010-02-20 16:35:43 ----D---- C:\Program Files\Fichiers communs\Real 2010-02-20 16:35:43 ----A---- C:\WINDOWS\system32\pncrt.dll 2010-02-20 16:35:43 ----A---- C:\WINDOWS\system32\msvcr71.dll 2010-02-20 16:35:43 ----A---- C:\WINDOWS\system32\msvcp71.dll 2010-02-20 16:35:42 ----D---- C:\Program Files\Real 2010-02-20 16:35:09 ----D---- C:\Documents and Settings\khavile\Application Data\Real 2010-02-20 15:50:03 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$ 2010-02-20 15:49:39 ----A---- C:\WINDOWS\system32\wdfcoinstaller01005.dll 2010-02-20 15:49:39 ----A---- C:\WINDOWS\system32\BttnCmns_64.dll 2010-02-20 15:49:39 ----A---- C:\WINDOWS\system32\BttnCmns.dll 2010-02-20 15:49:39 ----A---- C:\WINDOWS\system32\BttnCmn.dll 2010-02-20 15:49:20 ----N---- C:\WINDOWS\biwlandrvxpver.dll 2010-02-20 15:49:08 ----A---- C:\WINDOWS\system32\NETw5r32.dll 2010-02-20 15:49:08 ----A---- C:\WINDOWS\system32\NETw5c32.dll 2010-02-20 15:48:39 ----A---- C:\WINDOWS\system32\SynTPCo4.dll 2010-02-20 15:48:39 ----A---- C:\WINDOWS\system32\SynTPAPI.dll 2010-02-20 15:48:38 ----A---- C:\WINDOWS\system32\SynCtrl.dll 2010-02-20 15:48:38 ----A---- C:\WINDOWS\system32\SynCOM.dll 2010-02-20 15:48:37 ----D---- C:\Program Files\Synaptics 2010-02-20 15:48:13 ----D---- C:\Program Files\Marvell 2010-02-20 15:47:26 ----A---- C:\WINDOWS\system32\vsnp2uvc.dll 2010-02-20 15:47:26 ----A---- C:\WINDOWS\system32\csnp2uvc.dll 2010-02-20 15:47:26 ----A---- C:\WINDOWS\snp2uvc.ini 2010-02-20 15:47:21 ----A---- C:\WINDOWS\system32\rsnp2uvc.dll 2010-02-20 15:47:19 ----D---- C:\Program Files\Fichiers communs\SNP2UVC 2010-02-20 15:47:13 ----D---- C:\Documents and Settings\khavile\Application Data\InstallShield 2010-02-20 15:46:50 ----A---- C:\WINDOWS\HBCIKRNL.INI 2010-02-20 15:46:45 ----D---- C:\Program Files\SCM Microsystems 2010-02-20 15:46:44 ----D---- C:\WINDOWS\Downloaded Installations 2010-02-20 15:46:19 ----D---- C:\WINDOWS\system32\FRA 2010-02-20 15:46:17 ----RA---- C:\WINDOWS\system32\imsmudlg.exe 2010-02-20 15:45:48 ----D---- C:\WINDOWS\system32\HP3DG 2010-02-20 15:44:26 ----RA---- C:\WINDOWS\system32\CSVer.dll 2010-02-20 15:44:25 ----D---- C:\Program Files\Intel 2010-02-20 15:43:50 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxzoom.exe 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxtray.exe 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxress.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxpers.exe 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxext.exe 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxexps.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxdo.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxdev.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\igfxCoIn_v4953.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\ig4icd32.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\ig4dev32.dll 2010-02-20 15:43:13 ----RA---- C:\WINDOWS\system32\hkcmd.exe 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igxprd32.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igxpgd32.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igxpdx32.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igxpdv32.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igfxsrvc.exe 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igfxsrvc.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igfxpph.dll 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\igfxcfg.exe 2010-02-20 15:43:12 ----RA---- C:\WINDOWS\system32\hccutils.dll 2010-02-20 15:43:02 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-02-20 15:43:01 ----D---- C:\WINDOWS\system32\Lang 2010-02-20 15:43:00 ----RA---- C:\WINDOWS\system32\igxpun.exe 2010-02-20 15:43:00 ----RA---- C:\WINDOWS\system32\difxapi.dll 2010-02-20 15:42:48 ----D---- C:\Intel 2010-02-20 15:42:09 ----A---- C:\WINDOWS\system32\btw_ci.dll 2010-02-20 15:42:03 ----D---- C:\Program Files\WIDCOMM 2010-02-20 15:41:27 ----HDC---- C:\WINDOWS\$NtUninstallKB949764_0$ 2010-02-20 15:41:22 ----HDC---- C:\WINDOWS\$NtUninstallKB915326$ 2010-02-20 15:41:15 ----HDC---- C:\WINDOWS\$NtUninstallKB889673$ 2010-02-20 15:41:09 ----HDC---- C:\WINDOWS\$NtUninstallKB888402$ 2010-02-20 15:41:04 ----HDC---- C:\WINDOWS\$NtUninstallKB885464$ 2010-02-20 15:40:58 ----HDC---- C:\WINDOWS\$NtUninstallKB883667$ 2010-02-20 15:40:53 ----HDC---- C:\WINDOWS\$NtUninstallKB918005$ 2010-02-20 15:40:47 ----HDC---- C:\WINDOWS\$NtUninstallKB912436$ 2010-02-20 15:40:42 ----HDC---- C:\WINDOWS\$NtUninstallKB909667$ 2010-02-20 15:40:34 ----HDC---- C:\WINDOWS\$NtUninstallKB909095$ 2010-02-20 15:40:26 ----HDC---- C:\WINDOWS\$NtUninstallKB896256$ 2010-02-20 15:40:20 ----HDC---- C:\WINDOWS\$NtUninstallKB892559-v3$ 2010-02-20 15:40:12 ----HDC---- C:\WINDOWS\$NtUninstallKB888239$ 2010-02-20 15:40:08 ----N---- C:\WINDOWS\system32\spmsg.dll 2010-02-20 15:40:07 ----HDC---- C:\WINDOWS\$NtUninstallKB885855$ 2010-02-20 15:40:00 ----D---- C:\Program Files\HPQ 2010-02-20 15:39:42 ----N---- C:\WINDOWS\system32\agrsmdel.exe 2010-02-20 15:39:42 ----N---- C:\WINDOWS\HPModemVersion.dll 2010-02-20 15:39:34 ----D---- C:\WINDOWS\Options 2010-02-20 15:39:29 ----N---- C:\WINDOWS\system32\agrscoin.dll 2010-02-20 15:39:29 ----A---- C:\WINDOWS\agrsmdel.exe 2010-02-20 15:39:28 ----D---- C:\SWSetup 2010-02-20 15:39:28 ----A---- C:\WINDOWS\system32\agrsmsvc.exe 2010-02-20 15:34:39 ----RA---- C:\WINDOWS\system32\PostProc.dll 2010-02-20 15:34:33 ----N---- C:\WINDOWS\system32\wdmioctl.dll 2010-02-20 15:34:33 ----N---- C:\WINDOWS\system32\SMMedia.dll 2010-02-20 15:34:32 ----D---- C:\Program Files\Analog Devices 2010-02-20 15:34:32 ----A---- C:\WINDOWS\system32\DSndUp.exe 2010-02-20 15:33:58 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2010-02-20 15:33:57 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$ 2010-02-20 15:33:39 ----D---- C:\Program Files\Hewlett-Packard 2010-02-20 15:33:38 ----HD---- C:\Program Files\InstallShield Installation Information 2010-02-20 15:33:36 ----D---- C:\Program Files\Fichiers communs\InstallShield 2010-02-20 15:32:45 ----D---- C:\SYSTEM.SAV 2010-02-20 15:30:00 ----D---- C:\Documents and Settings\khavile\Application Data\Identities 2010-02-20 15:29:59 ----HD---- C:\Program Files\Uninstall Information 2010-02-20 15:29:54 ----SD---- C:\Documents and Settings\khavile\Application Data\Microsoft 2010-02-20 15:29:54 ----ASH---- C:\Documents and Settings\khavile\Application Data\desktop.ini 2010-02-20 15:28:50 ----D---- C:\WINDOWS\SoftwareDistribution 2010-02-20 15:28:48 ----SD---- C:\WINDOWS\system32\Microsoft 2010-02-20 15:28:48 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-02-20 15:24:00 ----D---- C:\WINDOWS\system32\xircom 2010-02-20 15:24:00 ----D---- C:\Program Files\xerox 2010-02-20 15:24:00 ----D---- C:\Program Files\microsoft frontpage 2010-02-20 15:23:36 ----HD---- C:\WINDOWS\$hf_mig$ 2010-02-20 15:23:21 ----A---- C:\WINDOWS\control.ini 2010-02-20 15:23:21 ----A---- C:\AUTOEXEC.BAT 2010-02-20 15:23:00 ----A---- C:\WINDOWS\OEWABLog.txt 2010-02-20 15:22:57 ----A---- C:\WINDOWS\system32\mapi32.dll 2010-02-20 15:21:15 ----RD---- C:\WINDOWS\Offline Web Pages 2010-02-20 15:21:14 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-02-20 15:21:14 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-02-20 15:21:01 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-02-20 15:20:53 ----HD---- C:\Program Files\WindowsUpdate 2010-02-20 15:20:49 ----D---- C:\Program Files\Services en ligne 2010-02-20 15:20:23 ----D---- C:\WINDOWS\system32\DirectX 2010-02-20 15:19:46 ----A---- C:\WINDOWS\system32\atrace.dll 2010-02-20 15:19:43 ----A---- C:\WINDOWS\system32\desktop.ini 2010-02-20 15:19:43 ----A---- C:\WINDOWS\desktop.ini 2010-02-20 15:19:33 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2010-02-20 15:19:31 ----A---- C:\WINDOWS\system32\acctres.dll 2010-02-20 15:19:30 ----D---- C:\Program Files\Fichiers communs\Services 2010-02-20 15:19:25 ----SD---- C:\WINDOWS\Tasks 2010-02-20 15:19:25 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2010-02-20 15:19:24 ----D---- C:\Program Files\Fichiers communs\MSSoap 2010-02-20 15:19:19 ----D---- C:\WINDOWS\srchasst 2010-02-20 15:19:18 ----D---- C:\WINDOWS\system32\Macromed 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wuweb.dll 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wups.dll 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wucltui.dll 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wuauserv.dll 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2010-02-20 15:19:13 ----A---- C:\WINDOWS\system32\wuaueng.dll 2010-02-20 15:19:12 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2010-02-20 15:19:12 ----A---- C:\WINDOWS\system32\wuauclt.exe 2010-02-20 15:19:12 ----A---- C:\WINDOWS\system32\wuapi.dll 2010-02-20 15:19:12 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2010-02-20 15:19:11 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2010-02-20 15:19:11 ----A---- C:\WINDOWS\system32\qmgr.dll 2010-02-20 15:19:11 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2010-02-20 15:19:06 ----D---- C:\Program Files\Movie Maker 2010-02-20 15:19:00 ----A---- C:\WINDOWS\system32\safrslv.dll 2010-02-20 15:19:00 ----A---- C:\WINDOWS\system32\safrdm.dll 2010-02-20 15:19:00 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2010-02-20 15:18:59 ----A---- C:\WINDOWS\system32\racpldlg.dll 2010-02-20 15:18:55 ----A---- C:\WINDOWS\system32\fltmc.exe 2010-02-20 15:18:55 ----A---- C:\WINDOWS\system32\fltlib.dll 2010-02-20 15:18:54 ----D---- C:\WINDOWS\system32\Restore 2010-02-20 15:18:54 ----A---- C:\WINDOWS\system32\srsvc.dll 2010-02-20 15:18:54 ----A---- C:\WINDOWS\system32\srrstr.dll 2010-02-20 15:18:54 ----A---- C:\WINDOWS\system32\srclient.dll 2010-02-20 15:18:53 ----A---- C:\WINDOWS\system32\mnmdd.dll 2010-02-20 15:18:53 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2010-02-20 15:18:53 ----A---- C:\WINDOWS\system32\ils.dll 2010-02-20 15:18:52 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2010-02-20 15:18:52 ----A---- C:\WINDOWS\system32\msconf.dll 2010-02-20 15:18:52 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2010-02-20 15:18:48 ----D---- C:\Program Files\NetMeeting 2010-02-20 15:18:48 ----A---- C:\WINDOWS\system32\msoert2.dll 2010-02-20 15:18:48 ----A---- C:\WINDOWS\system32\msoeacct.dll 2010-02-20 15:18:46 ----A---- C:\WINDOWS\system32\inetres.dll 2010-02-20 15:18:46 ----A---- C:\WINDOWS\system32\inetcomm.dll 2010-02-20 15:18:44 ----D---- C:\Program Files\Outlook Express 2010-02-20 15:18:44 ----A---- C:\WINDOWS\system32\schedsvc.dll 2010-02-20 15:18:43 ----A---- C:\WINDOWS\system32\mstinit.exe 2010-02-20 15:18:43 ----A---- C:\WINDOWS\system32\mstask.dll 2010-02-20 15:18:42 ----A---- C:\WINDOWS\system32\isign32.dll 2010-02-20 15:18:42 ----A---- C:\WINDOWS\system32\inetcfg.dll 2010-02-20 15:18:42 ----A---- C:\WINDOWS\system32\icwphbk.dll 2010-02-20 15:18:42 ----A---- C:\WINDOWS\system32\icwdial.dll 2010-02-20 15:18:33 ----D---- C:\Program Files\Fichiers communs\System 2010-02-20 15:18:27 ----D---- C:\Program Files\Internet Explorer 2010-02-20 15:17:24 ----D---- C:\Program Files\ComPlus Applications 2010-02-20 15:17:23 ----A---- C:\WINDOWS\vbaddin.ini 2010-02-20 15:17:23 ----A---- C:\WINDOWS\vb.ini 2010-02-20 15:17:21 ----D---- C:\WINDOWS\Registration 2010-02-20 15:17:16 ----D---- C:\Program Files\Windows Media Player 2010-02-20 15:17:16 ----D---- C:\Program Files\Online Services 2010-02-20 15:17:10 ----D---- C:\Program Files\Messenger 2010-02-20 15:17:05 ----D---- C:\Program Files\MSN Gaming Zone 2010-02-20 15:17:04 ----A---- C:\WINDOWS\system32\write.exe 2010-02-20 15:16:48 ----A---- C:\WINDOWS\system32\sndvol32.exe 2010-02-20 15:16:48 ----A---- C:\WINDOWS\system32\hticons.dll 2010-02-20 15:16:47 ----A---- C:\WINDOWS\system32\avwav.dll 2010-02-20 15:16:47 ----A---- C:\WINDOWS\system32\avtapi.dll 2010-02-20 15:16:47 ----A---- C:\WINDOWS\system32\avmeter.dll 2010-02-20 15:16:46 ----A---- C:\WINDOWS\system32\winchat.exe 2010-02-20 15:16:35 ----A---- C:\WINDOWS\system32\getuname.dll 2010-02-20 15:16:34 ----A---- C:\WINDOWS\system32\charmap.exe 2010-02-20 15:16:34 ----A---- C:\WINDOWS\system32\calc.exe 2010-02-20 15:16:33 ----A---- C:\WINDOWS\system32\winmine.exe 2010-02-20 15:16:33 ----A---- C:\WINDOWS\system32\sol.exe 2010-02-20 15:16:33 ----A---- C:\WINDOWS\system32\mshearts.exe 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\tslabels.ini 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\tskill.exe 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\reset.exe 2010-02-20 15:16:32 ----A---- C:\WINDOWS\system32\freecell.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\tscon.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\shadow.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\rwinsta.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\regini.exe 2010-02-20 15:16:31 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2010-02-20 15:16:30 ----A---- C:\WINDOWS\system32\qwinsta.exe 2010-02-20 15:16:30 ----A---- C:\WINDOWS\system32\qappsrv.exe 2010-02-20 15:16:30 ----A---- C:\WINDOWS\system32\msg.exe 2010-02-20 15:16:30 ----A---- C:\WINDOWS\system32\logoff.exe 2010-02-20 15:16:30 ----A---- C:\WINDOWS\system32\cdmodem.dll 2010-02-20 15:16:29 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\mtxex.dll 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\mtxdm.dll 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\comrepl.dll 2010-02-20 15:16:28 ----A---- C:\WINDOWS\system32\comaddin.dll 2010-02-20 15:16:27 ----A---- C:\WINDOWS\system32\stclient.dll 2010-02-20 15:16:27 ----A---- C:\WINDOWS\system32\comsnap.dll 2010-02-20 15:16:18 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2010-02-20 15:16:08 ----D---- C:\Program Files\MSN 2010-02-20 15:16:07 ----A---- C:\WINDOWS\system32\accwiz.exe 2010-02-20 15:16:06 ----A---- C:\WINDOWS\system32\sndrec32.exe 2010-02-20 15:16:06 ----A---- C:\WINDOWS\system32\mplay32.exe 2010-02-20 15:16:06 ----A---- C:\WINDOWS\system32\hypertrm.dll 2010-02-20 15:16:05 ----D---- C:\Program Files\Windows NT 2010-02-20 15:16:05 ----A---- C:\WINDOWS\system32\mspaint.exe 2010-02-20 15:16:05 ----A---- C:\WINDOWS\system32\clipbrd.exe 2010-02-20 15:16:04 ----A---- C:\WINDOWS\system32\spider.exe 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\remotepg.dll 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\rdshost.exe 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\mstscax.dll 2010-02-20 15:16:03 ----A---- C:\WINDOWS\system32\mstsc.exe 2010-02-20 15:16:02 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2010-02-20 15:16:02 ----A---- C:\WINDOWS\system32\termsrv.dll 2010-02-20 15:16:02 ----A---- C:\WINDOWS\system32\sessmgr.exe 2010-02-20 15:16:02 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2010-02-20 15:16:02 ----A---- C:\WINDOWS\system32\rdchost.dll 2010-02-20 15:16:01 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2010-02-20 15:16:01 ----A---- C:\WINDOWS\system32\rdpclip.exe 2010-02-20 15:16:01 ----A---- C:\WINDOWS\system32\qprocess.exe 2010-02-20 15:16:01 ----A---- C:\WINDOWS\system32\icaapi.dll 2010-02-20 15:16:01 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2010-02-20 15:16:00 ----D---- C:\WINDOWS\system32\MsDtc 2010-02-20 15:16:00 ----A---- C:\WINDOWS\system32\mtxoci.dll 2010-02-20 15:16:00 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2010-02-20 15:16:00 ----A---- C:\WINDOWS\system32\msdtctm.dll 2010-02-20 15:16:00 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2010-02-20 15:15:59 ----A---- C:\WINDOWS\system32\xolehlp.dll 2010-02-20 15:15:59 ----A---- C:\WINDOWS\system32\msdtclog.dll 2010-02-20 15:15:59 ----A---- C:\WINDOWS\system32\msdtc.exe 2010-02-20 15:15:58 ----D---- C:\WINDOWS\system32\Com 2010-02-20 15:15:58 ----A---- C:\WINDOWS\system32\colbact.dll 2010-02-20 15:15:58 ----A---- C:\WINDOWS\system32\clbcatex.dll 2010-02-20 15:15:58 ----A---- C:\WINDOWS\system32\catsrvps.dll 2010-02-20 15:15:57 ----A---- C:\WINDOWS\system32\comsvcs.dll 2010-02-20 15:15:57 ----A---- C:\WINDOWS\system32\catsrvut.dll 2010-02-20 15:15:57 ----A---- C:\WINDOWS\system32\catsrv.dll 2010-02-20 15:15:56 ----A---- C:\WINDOWS\system32\comuid.dll 2010-02-20 15:15:56 ----A---- C:\WINDOWS\system32\clbcatq.dll 2010-02-20 15:15:47 ----A---- C:\WINDOWS\system32\servdeps.dll 2010-02-20 15:15:47 ----A---- C:\WINDOWS\system32\mmfutil.dll 2010-02-20 15:15:47 ----A---- C:\WINDOWS\system32\licwmi.dll 2010-02-20 15:15:47 ----A---- C:\WINDOWS\system32\cmprops.dll 2010-02-20 15:14:30 ----A---- C:\WINDOWS\system32\h323log.txt 2010-02-20 15:11:44 ----A---- C:\WINDOWS\system32\vfwwdm32.dll 2010-02-20 15:11:44 ----A---- C:\WINDOWS\system32\ksuser.dll 2010-02-20 15:10:56 ----A---- C:\WINDOWS\system32\usbui.dll 2010-02-20 15:10:17 ----A---- C:\WINDOWS\imsins.BAK 2010-02-20 15:10:15 ----SHD---- C:\WINDOWS\Installer 2010-02-20 15:10:15 ----D---- C:\Program Files\Fichiers communs\ODBC 2010-02-20 15:10:15 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-02-20 15:10:15 ----A---- C:\WINDOWS\ODBCINST.INI 2010-02-20 15:10:12 ----RD---- C:\Program Files 2010-02-20 15:10:12 ----D---- C:\Program Files\Fichiers communs\SpeechEngines 2010-02-20 15:10:12 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared 2010-02-20 15:10:12 ----D---- C:\Program Files\Fichiers communs 2010-02-20 15:10:10 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2010-02-20 15:10:10 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2010-02-20 15:10:10 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdur.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdru.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2010-02-20 15:10:08 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2010-02-20 15:10:06 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2010-02-20 15:10:05 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2010-02-20 15:10:05 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2010-02-20 15:10:05 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2010-02-20 15:10:05 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2010-02-20 15:10:05 ----RA---- C:\WINDOWS\system32\kbdest.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdro.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2010-02-20 15:10:03 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2010-02-20 15:10:01 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-02-20 15:10:01 ----A---- C:\WINDOWS\system32\irclass.dll 2010-02-20 15:10:01 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2010-02-20 15:10:01 ----A---- C:\WINDOWS\system32\dgsetup.dll 2010-02-20 15:10:01 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2010-02-20 15:09:59 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2010-02-20 15:09:59 ----A---- C:\WINDOWS\TASKMAN.EXE 2010-02-20 15:09:58 ----A---- C:\WINDOWS\system32\batt.dll 2010-02-20 15:09:58 ----A---- C:\WINDOWS\notepad.exe 2010-02-20 15:09:57 ----A---- C:\WINDOWS\system32\storprop.dll 2010-02-20 15:09:54 ----RA---- C:\WINDOWS\SET29.tmp 2010-02-20 15:09:54 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2010-02-20 15:09:51 ----RA---- C:\WINDOWS\SET8.tmp 2010-02-20 15:09:50 ----RA---- C:\WINDOWS\SET4.tmp 2010-02-20 15:09:49 ----RA---- C:\WINDOWS\SET3.tmp 2010-02-20 15:09:45 ----D---- C:\WINDOWS\system32\CatRoot2 2010-02-20 15:09:45 ----D---- C:\WINDOWS\system32\CatRoot 2010-02-20 15:09:39 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2010-02-20 15:09:23 ----A---- C:\WINDOWS\setuplog.txt 2010-02-20 15:09:21 ----D---- C:\Documents and Settings 2010-02-20 15:09:20 ----SHD---- C:\System Volume Information 2010-02-20 15:08:37 ----SH---- C:\boot.ini 2010-02-20 15:03:13 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-02-20 15:03:13 ----RSD---- C:\WINDOWS\Fonts 2010-02-20 15:03:13 ----RD---- C:\WINDOWS\Web 2010-02-20 15:03:13 ----HD---- C:\WINDOWS\inf 2010-02-20 15:03:13 ----D---- C:\WINDOWS\WinSxS 2010-02-20 15:03:13 ----D---- C:\WINDOWS\twain_32 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Temp 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\wins 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\wbem 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\usmt 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\spool 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\ShellExt 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\Setup 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\ras 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\oobe 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\npp 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\mui 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\inetsrv 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\IME 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\icsxml 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\ias 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\export 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\drivers 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\dhcp 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\config 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\3com_dmi 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\3076 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\2052 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1054 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1042 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1041 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1037 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1036 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1033 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1031 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1028 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32\1025 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system32 2010-02-20 15:03:13 ----D---- C:\WINDOWS\system 2010-02-20 15:03:13 ----D---- C:\WINDOWS\security 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Resources 2010-02-20 15:03:13 ----D---- C:\WINDOWS\repair 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Provisioning 2010-02-20 15:03:13 ----D---- C:\WINDOWS\PeerNet 2010-02-20 15:03:13 ----D---- C:\WINDOWS\pchealth 2010-02-20 15:03:13 ----D---- C:\WINDOWS\mui 2010-02-20 15:03:13 ----D---- C:\WINDOWS\msapps 2010-02-20 15:03:13 ----D---- C:\WINDOWS\msagent 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Media 2010-02-20 15:03:13 ----D---- C:\WINDOWS\java 2010-02-20 15:03:13 ----D---- C:\WINDOWS\ime 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Help 2010-02-20 15:03:13 ----D---- C:\WINDOWS\ehome 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Driver Cache 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Debug 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Cursors 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Connection Wizard 2010-02-20 15:03:13 ----D---- C:\WINDOWS\Config 2010-02-20 15:03:13 ----D---- C:\WINDOWS\AppPatch 2010-02-20 15:03:13 ----D---- C:\WINDOWS\addins 2010-02-20 15:03:13 ----D---- C:\WINDOWS ======List of files/folders modified in the last 1 months====== 2010-02-20 17:06:45 ----A---- C:\WINDOWS\win.ini 2010-02-20 17:00:24 ----A---- C:\WINDOWS\system.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576] R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720] R1 kl1;Kl1; \??\C:\WINDOWS\system32\drivers\kl1.sys [] R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2010-03-02 315408] R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832] R3 Accelerometer;HP Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2008-05-23 28592] R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2008-04-11 338944] R3 AEAudio;AE Audio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2007-07-13 94976] R3 BTKRNL;Enumérateur de bus Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2008-04-03 879624] R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-04-03 74688] R3 CmBatt;Pilote d'adaptateur secteur Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952] R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2008-04-28 9344] R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384] R3 HpqKbFiltr;HpqKbFilter Driver; C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-05-21 6018464] R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2009-09-14 32272] R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-10-02 19472] R3 NETw5x32;Pilote de carte Intel® Wireless WiFi Link pour Windows XP 32 bits ; C:\WINDOWS\system32\DRIVERS\NETw5x32.sys [2008-04-28 3626112] R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-03-27 224672] R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208] R3 UsbEvdomAtc;LGE EVDOM USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgevdomatc.sys [2008-08-26 19840] R3 usbevdombus;LGE EVDOM Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgevdombus.sys [2008-08-26 13696] R3 UsbEvdomDiag;LGE EVDOM USB Serial DM Port; C:\WINDOWS\system32\DRIVERS\lgevdomdiag.sys [2008-08-26 19840] R3 USBEVDOmModem;LGE EVDOM USB Modem; C:\WINDOWS\system32\DRIVERS\lgevdommodem.sys [2008-08-26 21632] R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520] R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000] R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2008-04-04 296320] S3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024] S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880] S3 SCR3XX2K;SCR3xx USB SmartCardReader; C:\WINDOWS\system32\DRIVERS\SCR3XX2K.sys [2007-06-21 56448] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232] S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbvideo;Périphérique vidéo USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200] S4 atapi;atapi; C:\WINDOWS\system32\drivers\atapi.sys [2008-04-13 96512] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\WINDOWS\system32\agrsmsvc.exe [2007-12-11 12800] R2 AVP;Kaspersky Anti-Virus; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe [2009-10-20 340456] R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376] R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-03-31 264800] R2 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-12-17 153376] R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288] R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912] S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-02-20 654848] S3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-05-01 165192] S3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe [2007-09-20 382248] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136] S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] -----------------EOF-----------------

voici le rapport ############################## | UsbFix V6.097 | User : khavile (Administrateurs) # KHAVILE-862F191 Update on 20/02/2010 by El Desaparecido , C_XX & Chimay8 Start at: 15:07:15 | 02/03/2010 Website : http://pagesperso-orange.fr/NosTools/index.html Contact : FindyKill.Contact@gmail.com Intel® Core2 Duo CPU T5870 @ 2.00GHz Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3 Internet Explorer 8.0.6001.18702 Windows Firewall Status : Enabled AV : Kaspersky Anti-Virus 9.0.0.736 [ Enabled | Updated ] C:\ -> Disque fixe local # 146,48 Go (127,89 Go free) # NTFS D:\ -> Disque fixe local # 86,39 Go (59,56 Go free) # NTFS E:\ -> Disque CD-ROM F:\ -> Disque CD-ROM # 6,67 Mo (0 Mo free) [u3 System] # CDFS G:\ -> Disque amovible # 7,47 Go (7,36 Go free) [KHAVILE] # FAT32 ############################## | Processus actifs | C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\SCardSvr.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\agrsmsvc.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wdfmgr.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wbem\wmiprvse.exe ################## | Elements infectieux | Supprimé ! C:\Recycler\S-1-5-21-329068152-1682526488-725345543-1003 Supprimé ! D:\Recycler\S-1-5-21-329068152-1682526488-725345543-1003 (!) Non supprimé ! F:\autorun.inf ################## | Registre | ################## | Mountpoints2 | Supprimé ! HKCU\...\Explorer\MountPoints2\{520f024f-1e4b-11df-b6af-0022fa45c614}\Shell\AutoRun\Command ################## | Listing des fichiers présent | [20/02/2010 15:23|--a------|0] C:\AUTOEXEC.BAT [20/02/2010 15:15|---hs----|212] C:\boot.ini [02/03/2006 11:00|-rahs----|4952] C:\Bootfont.bin [20/02/2010 15:47|--a------|164] C:\chicony.log [20/02/2010 15:23|--a------|0] C:\CONFIG.SYS [20/02/2010 15:41|--a------|161] C:\esuinst.log [20/02/2010 15:34|--a------|198] C:\esu_xpsp2.log [20/02/2010 15:45|--a------|108982] C:\intel_chipset.log [20/02/2010 15:46|--a------|259972] C:\intel_msm.log [20/02/2010 15:23|-rahs----|0] C:\IO.SYS [20/02/2010 15:23|-rahs----|0] C:\MSDOS.SYS [02/03/2006 11:00|-rahs----|47564] C:\NTDETECT.COM [23/02/2010 14:21|-rahs----|252240] C:\ntldr [?|?|?] C:\pagefile.sys [20/02/2010 15:41|--a------|227] C:\sedinst2.log [20/02/2010 15:50|--a------|185] C:\setup.log [20/02/2010 15:48|--a------|190] C:\syntpad.log [02/03/2010 15:15|--a------|3227] C:\UsbFix.txt [02/03/2010 01:00|--a------|2385] C:\UsbFix_Upload_Me_KHAVILE-862F191.zip [19/07/2006 23:23|-ra------|23488648] D:\AdbeRdr708_fr_FR.exe [01/12/2008 08:14|--a------|26903840] D:\AdbeRdr90_fr_FR.exe [12/10/2009 22:52|--a------|7231800] D:\convertisseur.exe [23/01/2007 12:19|--a------|10837990] D:\easyphp1-6_setup.exe [07/11/2005 10:28|--a------|8085245] D:\easyphp1-8_setup.exe [13/09/2007 12:01|--a------|30323070] D:\ela_salaty_setup.exe [09/04/2009 13:54|--a------|5775129] D:\jcpro450_setup.exe [03/01/2010 23:40|--a------|70189632] D:\kav2010_9.0.0.736FR.exe [07/02/2010 13:16|--a------|8382888] D:\mozilla-firefox_mozilla_firefox_3.6_final_francais_11003.exe [30/11/2009 14:36|--a------|83249064] D:\N360S300FR.exe [01/12/2006 12:49|--a------|216933372] D:\OracleXEUniv.exe [21/06/2009 10:07|--a------|13709460] D:\real player 11.zip [16/10/2009 15:18|-ra------|13899168] D:\RealPlayer_ancien version.exe [26/10/2009 12:51|--a------|45077635] D:\SetupCrypTool_1_4_30_beta_04_en.exe [29/01/2010 13:02|--a------|2025768] D:\SkypeSetup.exe [16/10/2009 15:18|--a------|2897918] D:\txpeng520.exe [30/10/2009 15:41|--a------|1443065] D:\winRAR.exe [06/05/2008 12:26|-r-------|309] F:\autorun.inf [23/10/2007 07:45|-r-------|1336632] F:\LaunchU3.exe [06/05/2008 12:11|-r-------|5600229] F:\LaunchPad.zip [23/10/2007 09:45|-ra------|1336632] G:\LaunchU3.exe [14/12/2009 13:12|--ah-----|31744] G:\ACTRAY.EXE [06/01/2010 15:42|--a------|967] G:\exo3'.sql [12/01/2010 00:52|--a------|14435] G:\mon CV.docx [12/01/2010 01:36|--a------|12066] G:\Lettre de motivation.docx [12/01/2010 01:49|-ra------|50688] G:\demande de stage.doc [13/01/2010 14:40|--a------|409] G:\exo4.sql [13/01/2010 14:18|--a------|626] G:\exo3.sql [20/04/2008 03:54|--a------|540] G:\DemoScanner.java ################## | Vaccination | # C:\autorun.inf -> Dossier créé par UsbFix (El Desaparecido). # D:\autorun.inf -> Dossier créé par UsbFix (El Desaparecido). # G:\autorun.inf -> Dossier créé par UsbFix (El Desaparecido). ################## | Upload | Veuillez envoyer le fichier : C:\UsbFix_Upload_Me_KHAVILE-862F191.zip : http://chiquitine.changelog.fr/Sample/Upload.php Merci pour votre contribution . ################## | ! Fin du rapport # UsbFix V6.097 ! |

Bonjour à tous! Ma clé USB est infecté par un virus qui n'accepte pas d'être supprimer, je l'ai scanner avec 3 Antivirus et rien ne change il est même propager vers mon ordinateur.. si vous avez une solution aidez moi SVP