Etranges problème d'un seul coup...

spaversu · le 29 octobre 2008

Bonjour tout le monde...

Voilà mon souci: 1) Je n'arrive plus à lancer la "configuration avancée" de mon acces internet/modem Alice ( pour configurer les ports pour logiciel p2p et des options de sécurité).

J'obtiens ce message: "aucun programme n'est associé à ce fichier pour exécuter cette action".

2) Je n'arrive plus à lancer/configurer le firewall nvidia et obtiens le même message " aucun programme..."

3) Je ne peux plus obtenir les mises à jour de mon antivirus Avira antivir personal... ni automatiques ni manuelles.

Précision: ces trois fonctions programmes utilisent internet. C'est à dire que la configuration Alice et firewall Nvidia se font depuis une page internet ainsi que bien sûr l'update antivir.

Je poste mon message dans la section securite / malwares car ces trois problèmes sont apparus en même temps + ce sont étrangement trois logiciels qui concernent la securité du PC.

J'ai effectué des scans antivir et ccleaner en mode sans echec mais ça n'a rien donné.

Bien sûr ces derniers jours l'antivirus avait détecté des virus/malwares (comme un certain Heur/html etc. ) mais bon c'est plutôt fréquent.

Voilà, si quelqu'un avait la gentillesse de m'aider...

pear · le 29 octobre 2008

Bonjour,

Téléchargezrandom's system information tool (RSIT) par random/random et sauvegardez-le sur le Bureau.

Double-cliquez sur RSIT.exe afin de lancer RSIT.

* Cliquez Continue à l'écran Disclaimer.

* Si l'outil HIjackThis (version à jour) n'est pas présent ou détecté sur l'ordinateur, RSIT le télécharge et vous acceptez la licence.

* L'analyse terminée, deux fichiers texte s'ouvriront.:

Poster le contenu de log.txt (qui sera affiché)

ainsi que de info.txt (qui sera réduit dans la Barre des Tâches).

* Si ces deux rapports n'apparaissent pas, vous les trouverez dans le dossier C:\rsit

spaversu · le 29 octobre 2008

Merci...

Voici le premier:

Logfile of random's system information tool 1.04 (written by random/random)

Run by julien at 2008-10-29 21:19:00

Microsoft Windows XP Édition familiale Service Pack 3

System drive C: has 13 GB (52%) free of 25 GB

Total RAM: 3070 MB (83% free)

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 21:19:26, on 29/10/2008

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\TBPanel.exe

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\C0100Mon.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

D:\Program Files\DAEMON Tools Lite\daemon.exe

D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

D:\Program Files\Logitech\SetPoint\SetPoint.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe

C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe

C:\WINDOWS\system32\wscntfy.exe

D:\Program Files\Mozilla Firefox\firefox.exe

C:\Documents and Settings\julien\Bureau\RSIT.exe

C:\Program Files\trend micro\julien.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aliceadsl.fr

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.aliceadsl.fr

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll

O4 - HKLM\..\Run: [Gainward] C:\WINDOWS\TBPanel.exe /A

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exe

O4 - HKLM\..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidSetup.exe boot

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKLM\..\Run: [nTrayFw] C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe

O4 - HKLM\..\Run: [C0100Mon.exe] C:\WINDOWS\C0100Mon.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

O4 - HKCU\..\Run: [LDM] D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Global Startup: Logitech Desktop Messenger.lnk = D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

O4 - Global Startup: Logitech SetPoint.lnk = D:\Program Files\Logitech\SetPoint\SetPoint.exe

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)

O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe

O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe

O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe

O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--

End of file - 7951 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-10-29 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2008-10-10 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]

Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll [2008-10-28 737776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-10-29 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]

JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-10-29 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2008-10-10 2436160]

{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2008-10-14 863688]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Gainward"=C:\WINDOWS\TBPanel.exe [2007-03-23 2173744]

"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-11-14 16270848]

"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]

"JMB36X IDE Setup"=C:\WINDOWS\JM\JMInsIDE.exe [2006-10-30 36864]

"JMB36X Configure"=C:\WINDOWS\system32\JMRaidSetup.exe [2006-10-30 1953792]

"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]

"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-04-12 8429568]

"nwiz"=nwiz.exe /install []

"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2007-04-12 81920]

"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []

"nTrayFw"=C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe [2006-02-17 270336]

"C0100Mon.exe"=C:\WINDOWS\C0100Mon.exe [2007-04-29 32768]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2007-09-21 55824]

"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-10-29 136600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-10-28 68856]

"DAEMON Tools Lite"=D:\Program Files\DAEMON Tools Lite\daemon.exe [2008-08-08 490952]

"LDM"=D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2008-10-29 67128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AliceSAV]

C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe [2005-12-16 81408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Live! Cam Manager]

C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]

C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

C:\Program Files\Skype\Phone\Skype.exe [2008-09-29 21755688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]

C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Speed Launch.lnk]

C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE []

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage

Logitech Desktop Messenger.lnk - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

Logitech SetPoint.lnk - D:\Program Files\Logitech\SetPoint\SetPoint.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]

c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll [2007-11-15 72208]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

"C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe"="C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe:*:Enabled:Apache HTTP Server"

"D:\Program Files\eMule\emule.exe"="D:\Program Files\eMule\emule.exe:*:Enabled:eMule"

"C:\WINDOWS\system32\drivers\svchost.exe"="C:\WINDOWS\system32\drivers\svchost.exe:*:Enabled:svchost"

"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

"D:\Program Files\THQ\Gas Powered Games\Supreme Commander - Forged Alliance\bin\ForgedAlliance.exe"="D:\Program Files\THQ\Gas Powered Games\Supreme Commander - Forged Alliance\bin\ForgedAlliance.exe:*:Enabled:Supreme Commander - Forged Alliance"

"D:\Program Files\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe"="D:\Program Files\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe:*:Enabled:GPGNet - Supreme Commander - Forged Alliance"

"D:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="D:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty® 4 - Modern Warfare"

"D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"

"D:\Program Files\TVUPlayer\TVUPlayer.exe"="D:\Program Files\TVUPlayer\TVUPlayer.exe:*:Enabled:TVUPlayer Component"

"D:\Program Files\Vuze\Azureus.exe"="D:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

"D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"

======List of files/folders created in the last 1 months======

2008-10-29 21:19:01 ----D---- C:\Program Files\trend micro

2008-10-29 21:19:00 ----D---- C:\rsit

2008-10-29 15:06:13 ----A---- C:\WINDOWS\SchedLgU.Txt

2008-10-29 02:59:34 ----D---- C:\Documents and Settings\All Users\Application Data\Azureus

2008-10-29 02:59:31 ----D---- C:\Documents and Settings\julien\Application Data\Azureus

2008-10-29 02:55:38 ----A---- C:\WINDOWS\system32\javaws.exe

2008-10-29 02:55:38 ----A---- C:\WINDOWS\system32\javaw.exe

2008-10-29 02:55:38 ----A---- C:\WINDOWS\system32\java.exe

2008-10-29 02:55:30 ----D---- C:\Program Files\Java

2008-10-29 02:18:14 ----D---- C:\Documents and Settings\All Users\Application Data\TVU Networks

2008-10-29 00:07:37 ----D---- C:\Documents and Settings\julien\Application Data\Logitech

2008-10-29 00:07:08 ----R---- C:\WINDOWS\bwUnin-8.1.1.50-8876480SL.exe

2008-10-29 00:06:32 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$

2008-10-29 00:06:07 ----A---- C:\WINDOWS\system32\BtCoreIf.dll

2008-10-29 00:06:04 ----A---- C:\WINDOWS\system32\KemXML.dll

2008-10-29 00:06:04 ----A---- C:\WINDOWS\system32\KemWnd.dll

2008-10-29 00:06:04 ----A---- C:\WINDOWS\system32\KemUtil.dll

2008-10-29 00:06:04 ----A---- C:\WINDOWS\system32\kemutb.dll

2008-10-29 00:05:54 ----D---- C:\Documents and Settings\All Users\Application Data\Logitech

2008-10-29 00:05:52 ----D---- C:\Program Files\Fichiers communs\Logishrd

2008-10-29 00:05:36 ----D---- C:\Documents and Settings\All Users\Application Data\LogiShrd

2008-10-28 17:48:57 ----D---- C:\Program Files\Sun

2008-10-28 17:48:36 ----A---- C:\WINDOWS\system32\deploytk.dll

2008-10-28 15:53:47 ----D---- C:\Documents and Settings\julien\Application Data\Sun

2008-10-27 16:08:43 ----D---- C:\Program Files\TechCity Solutions

2008-10-27 16:06:38 ----D---- C:\Program Files\Alice

2008-10-27 00:09:12 ----D---- C:\WINDOWS\system32\LogFiles

2008-10-26 23:52:27 ----SHD---- C:\WINDOWS\ftpcache

2008-10-26 23:51:44 ----A---- C:\WINDOWS\game.ini

2008-10-26 19:03:22 ----D---- C:\temp

2008-10-26 19:03:07 ----D---- C:\Documents and Settings\All Users\Application Data\Media Center Programs

2008-10-26 18:50:53 ----RSD---- C:\WINDOWS\assembly

2008-10-26 18:50:38 ----D---- C:\WINDOWS\Microsoft.NET

2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\xactengine2_9.dll

2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\xactengine2_8.dll

2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\x3daudio1_2.dll

2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\d3dx9_35.dll

2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\d3dx10_35.dll

2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\d3dx10_34.dll

2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll

2008-10-26 18:49:17 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll

2008-10-26 18:49:16 ----A---- C:\WINDOWS\system32\d3dx9_34.dll

2008-10-26 18:49:13 ----A---- C:\WINDOWS\system32\xactengine2_7.dll

2008-10-26 18:49:10 ----A---- C:\WINDOWS\system32\d3dx10_33.dll

2008-10-26 18:49:10 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll

2008-10-26 18:49:09 ----A---- C:\WINDOWS\system32\d3dx9_33.dll

2008-10-24 00:57:42 ----D---- C:\Program Files\Mozilla Firefox

2008-10-24 00:57:41 ----D---- C:\Program Files\DAEMON Tools Toolbar

2008-10-24 00:28:22 ----D---- C:\Documents and Settings\julien\Application Data\DAEMON Tools

2008-10-21 15:16:30 ----D---- C:\Program Files\Fichiers communs\Adobe

2008-10-21 15:16:30 ----D---- C:\Program Files\Adobe

2008-10-18 18:01:55 ----D---- C:\Documents and Settings\julien\Application Data\skypePM

2008-10-18 17:59:20 ----D---- C:\Documents and Settings\julien\Application Data\Skype

2008-10-18 17:59:11 ----D---- C:\Program Files\Skype

2008-10-18 17:59:11 ----D---- C:\Program Files\Fichiers communs\Skype

2008-10-18 17:59:06 ----D---- C:\Documents and Settings\All Users\Application Data\Skype

2008-10-18 17:48:51 ----D---- C:\Documents and Settings\All Users\Application Data\Creative

2008-10-17 18:09:27 ----N---- C:\WINDOWS\Ctregrun.exe

2008-10-17 18:08:58 ----RA---- C:\WINDOWS\system32\C0100Vfw.dll

2008-10-17 18:08:58 ----RA---- C:\WINDOWS\CtDrvIns.exe

2008-10-17 18:08:58 ----RA---- C:\WINDOWS\C0100Mon.exe

2008-10-17 18:08:58 ----RA---- C:\WINDOWS\C0100Cfg.exe

2008-10-17 18:08:57 ----RA---- C:\WINDOWS\system32\C0100Afx.dll

2008-10-17 18:08:56 ----RA---- C:\WINDOWS\system32\CtCamMgr.dll

2008-10-17 18:08:56 ----RA---- C:\WINDOWS\system32\C0100Srv.exe

2008-10-17 18:08:56 ----RA---- C:\WINDOWS\system32\C0100Pin.dll

2008-10-17 18:08:56 ----RA---- C:\WINDOWS\system32\C0100Hwx.dll

2008-10-17 18:08:56 ----RA---- C:\WINDOWS\system32\C0100Cvw.dll

2008-10-17 18:08:00 ----D---- C:\Documents and Settings\julien\Application Data\Creative

2008-10-17 18:07:15 ----N---- C:\WINDOWS\system32\pxwma.dll

2008-10-17 18:06:53 ----D---- C:\Program Files\Fichiers communs\muvee Technologies

2008-10-17 18:06:08 ----D---- C:\Documents and Settings\All Users\Application Data\muvee Technologies

2008-10-17 18:05:55 ----D---- C:\Documents and Settings\julien\Application Data\InstallShield

2008-10-17 18:05:31 ----D---- C:\Program Files\SightSpeed

2008-10-17 18:05:15 ----A---- C:\WINDOWS\IsUn040c.exe

2008-10-17 18:04:09 ----N---- C:\WINDOWS\system32\MFC71u.dll

2008-10-17 18:04:08 ----N---- C:\WINDOWS\system32\MFC71.DLL

2008-10-17 17:58:55 ----A---- C:\WINDOWS\system32\vfwwdm32.dll

2008-10-15 20:07:09 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe

2008-10-15 20:00:40 ----D---- C:\Program Files\MSECACHE

2008-10-15 02:40:57 ----D---- C:\Program Files\NOS

2008-10-15 02:40:57 ----D---- C:\Documents and Settings\All Users\Application Data\NOS

2008-10-13 17:45:28 ----D---- C:\Program Files\NVIDIA Corporation

2008-10-13 17:44:08 ----A---- C:\WINDOWS\system32\CapabilityTable.exe

2008-10-13 17:44:01 ----N---- C:\WINDOWS\system32\nvuide.exe

2008-10-13 17:44:00 ----RA---- C:\WINDOWS\system32\NVCOI.DLL

2008-10-13 17:43:47 ----RA---- C:\WINDOWS\system32\fdco1.dll

2008-10-13 17:43:45 ----RA---- C:\WINDOWS\system32\nvunrm.exe

2008-10-13 17:43:45 ----D---- C:\WINDOWS\NV38563876.TMP

2008-10-13 17:43:44 ----RA---- C:\WINDOWS\system32\bdco1.dll

2008-10-13 17:43:43 ----RA---- C:\WINDOWS\system32\nvusmb.exe

2008-10-13 17:40:50 ----D---- C:\Program Files\ASUS

2008-10-13 16:54:35 ----D---- C:\Documents and Settings\julien\Application Data\DeepBurner

2008-10-13 16:18:32 ----D---- C:\Documents and Settings\julien\Application Data\Mozilla

2008-10-13 15:10:58 ----D---- C:\WINDOWS\Prefetch

2008-10-13 14:34:03 ----D---- C:\WINDOWS\system32\fr-fr

2008-10-13 14:34:02 ----D---- C:\WINDOWS\system32\fr

2008-10-13 14:34:02 ----D---- C:\WINDOWS\system32\bits

2008-10-13 14:34:02 ----D---- C:\WINDOWS\l2schemas

2008-10-13 14:32:54 ----D---- C:\WINDOWS\ServicePackFiles

2008-10-13 14:31:25 ----D---- C:\WINDOWS\network diagnostic

2008-10-13 14:29:01 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$

2008-10-13 14:29:01 ----D---- C:\WINDOWS\EHome

2008-10-13 01:23:45 ----RHD---- C:\Documents and Settings\julien\Application Data\SecuROM

2008-10-13 01:23:45 ----A---- C:\WINDOWS\system32\CmdLineExt.dll

2008-10-12 22:10:50 ----D---- C:\WINDOWS\nview

2008-10-12 22:10:50 ----A---- C:\WINDOWS\system32\nvudisp.exe

2008-10-12 22:10:30 ----A---- C:\WINDOWS\system32\NVUNINST.EXE

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nwiz.exe

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwssr.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwss.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrszht.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrszhc.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrstr.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrssv.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrssl.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrssk.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsru.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsptb.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrspt.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrspl.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsno.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsnl.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsko.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsja.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsit.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrshu.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrshe.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsfr.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsfi.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsesm.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrses.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrseng.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsel.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsde.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsda.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrscs.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwrsar.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwimg.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvwddi.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvvitvsr.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvvitvs.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvsvc32.exe

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvshell.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrszht.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrszhc.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrstr.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrssv.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrssl.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrssk.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsru.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsptb.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrspt.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrspl.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsno.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsnl.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsko.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsja.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsit.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrshu.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrshe.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsfr.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsfi.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsesm.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrses.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrseng.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsel.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsde.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsda.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrscs.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvrsar.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvoglnt.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvnt4cpl.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmoblsr.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmobls.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmctray.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmccssr.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmccss.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmccsrs.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvmccs.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nview.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvgamesr.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvgames.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvexpbar.dll

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvdspsch.exe

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvcplui.exe

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvcolor.exe

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\nvappbar.exe

2008-10-12 22:10:21 ----A---- C:\WINDOWS\system32\keystone.exe

2008-10-12 22:10:20 ----A---- C:\WINDOWS\system32\nvdispsr.dll

2008-10-12 22:10:20 ----A---- C:\WINDOWS\system32\nvdisps.dll

2008-10-12 22:10:20 ----A---- C:\WINDOWS\system32\nvcpluir.dll

2008-10-12 22:10:19 ----A---- C:\WINDOWS\system32\nvcpl.dll

2008-10-12 22:10:19 ----A---- C:\WINDOWS\system32\nvcodins.dll

2008-10-12 22:10:19 ----A---- C:\WINDOWS\system32\nvcod.dll

2008-10-12 22:10:19 ----A---- C:\WINDOWS\system32\nvapi.dll

2008-10-12 21:50:20 ----A---- C:\WINDOWS\Cadx3.ini

2008-10-12 21:49:06 ----D---- C:\Documents and Settings\All Users\Application Data\nView_Profiles

2008-10-12 21:22:31 ----RD---- C:\WINDOWS\AsDmiHtm

2008-10-12 20:27:06 ----D---- C:\Documents and Settings\julien\Application Data\dvdcss

2008-10-12 20:26:22 ----D---- C:\Documents and Settings\julien\Application Data\vlc

2008-10-12 19:30:27 ----D---- C:\WINDOWS\Minidump

2008-10-12 12:42:29 ----D---- C:\Documents and Settings\julien\Application Data\WinRAR

2008-10-12 03:42:50 ----A---- C:\WINDOWS\system32\MRT.exe

2008-10-11 14:18:27 ----D---- C:\WINDOWS\pss

2008-10-11 10:37:37 ----A---- C:\WINDOWS\system32\muweb.dll

2008-10-11 10:37:37 ----A---- C:\WINDOWS\system32\mucltui.dll.mui

2008-10-11 10:37:37 ----A---- C:\WINDOWS\system32\mucltui.dll

2008-10-11 00:32:22 ----DC---- C:\WINDOWS\system32\DRVSTORE

2008-10-11 00:24:59 ----D---- C:\Documents and Settings\julien\Application Data\MSNInstaller

2008-10-11 00:20:25 ----SHDC---- C:\Program Files\Fichiers communs\WindowsLiveInstaller

2008-10-11 00:19:57 ----D---- C:\Program Files\Windows Live

2008-10-11 00:19:52 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller

2008-10-10 17:48:24 ----A---- C:\WINDOWS\system32\wpa.bak

2008-10-10 16:31:47 ----D---- C:\Program Files\WinRAR

2008-10-10 16:06:13 ----A---- C:\WINDOWS\system32\hidserv.dll

2008-10-10 01:20:22 ----D---- C:\WINDOWS\RegisteredPackages

2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\vxblock.dll

2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxwave.dll

2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxsfs.dll

2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxmas.dll

2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxinsa64.exe

2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxhpinst.exe

2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxdrv.dll

2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxcpya64.exe

2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\pxafs.dll

2008-10-10 01:19:31 ----N---- C:\WINDOWS\system32\px.dll

2008-10-10 01:19:27 ----D---- C:\Documents and Settings\julien\Application Data\Winamp

2008-10-10 01:18:01 ----D---- C:\Documents and Settings\julien\Application Data\Media Player Classic

2008-10-10 00:35:21 ----D---- C:\Program Files\Avira

2008-10-10 00:35:21 ----D---- C:\Documents and Settings\All Users\Application Data\Avira

2008-10-10 00:17:57 ----D---- C:\Documents and Settings\julien\Application Data\Google

2008-10-10 00:17:39 ----D---- C:\Documents and Settings\julien\Application Data\Macromedia

2008-10-10 00:17:36 ----D---- C:\Documents and Settings\All Users\Application Data\Google

2008-10-10 00:17:35 ----D---- C:\Program Files\Google

2008-10-09 20:31:54 ----N---- C:\WINDOWS\system32\spmsg.dll

2008-10-09 20:31:54 ----D---- C:\WINDOWS\system32\PreInstall

2008-10-09 20:31:53 ----HD---- C:\WINDOWS\$hf_mig$

2008-10-09 20:20:20 ----SHD---- C:\RECYCLER

2008-10-09 20:16:07 ----A---- C:\WINDOWS\system32\h323log.txt

2008-10-09 20:11:42 ----A---- C:\WINDOWS\system32\usbui.dll

2008-10-09 20:10:48 ----SHD---- C:\WINDOWS\Installer

2008-10-09 20:10:48 ----D---- C:\Program Files\Fichiers communs\ODBC

2008-10-09 20:10:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2008-10-09 20:10:48 ----A---- C:\WINDOWS\ODBCINST.INI

2008-10-09 20:10:45 ----RD---- C:\Program Files

2008-10-09 20:10:45 ----D---- C:\Program Files\Fichiers communs\SpeechEngines

2008-10-09 20:10:45 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared

2008-10-09 20:10:45 ----D---- C:\Program Files\Fichiers communs

2008-10-09 20:10:42 ----RA---- C:\WINDOWS\system32\kbdtuq.dll

2008-10-09 20:10:42 ----RA---- C:\WINDOWS\system32\kbdtuf.dll

2008-10-09 20:10:42 ----RA---- C:\WINDOWS\system32\kbdazel.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdycc.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbduzb.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdur.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdtat.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdru1.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdru.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdmon.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdkyr.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdkaz.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdbu.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdblr.dll

2008-10-09 20:10:41 ----RA---- C:\WINDOWS\system32\kbdaze.dll

2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhept.dll

2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhela3.dll

2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhela2.dll

2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhe319.dll

2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhe220.dll

2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdhe.dll

2008-10-09 20:10:40 ----RA---- C:\WINDOWS\system32\kbdgkl.dll

2008-10-09 20:10:39 ----RA---- C:\WINDOWS\system32\kbdlv1.dll

2008-10-09 20:10:39 ----RA---- C:\WINDOWS\system32\kbdlv.dll

2008-10-09 20:10:39 ----RA---- C:\WINDOWS\system32\kbdlt1.dll

2008-10-09 20:10:39 ----RA---- C:\WINDOWS\system32\kbdlt.dll

2008-10-09 20:10:39 ----RA---- C:\WINDOWS\system32\kbdest.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdycl.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdsl1.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdsl.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdro.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdpl1.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdpl.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdhu1.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdhu.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdcz2.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdcz1.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdcz.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\kbdcr.dll

2008-10-09 20:10:37 ----RA---- C:\WINDOWS\system32\KBDAL.DLL

2008-10-09 20:10:36 ----A---- C:\WINDOWS\system32\irclass.dll

2008-10-09 20:10:35 ----A---- C:\WINDOWS\system32\spxcoins.dll

2008-10-09 20:10:35 ----A---- C:\WINDOWS\system32\EqnClass.Dll

2008-10-09 20:10:35 ----A---- C:\WINDOWS\system32\dgsetup.dll

2008-10-09 20:10:35 ----A---- C:\WINDOWS\system32\dgrpsetu.dll

2008-10-09 20:10:34 ----N---- C:\WINDOWS\system32\CONFIG.TMP

2008-10-09 20:10:34 ----A---- C:\WINDOWS\TASKMAN.EXE

2008-10-09 20:10:33 ----A---- C:\WINDOWS\system32\batt.dll

2008-10-09 20:10:33 ----A---- C:\WINDOWS\notepad.exe

2008-10-09 20:10:31 ----A---- C:\WINDOWS\system32\storprop.dll

2008-10-09 20:10:26 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini

2008-10-09 20:08:45 ----RA---- C:\WINDOWS\SET8.tmp

2008-10-09 20:08:43 ----RA---- C:\WINDOWS\SET4.tmp

2008-10-09 20:08:42 ----RA---- C:\WINDOWS\SET3.tmp

2008-10-09 20:08:38 ----D---- C:\WINDOWS\system32\CatRoot2

2008-10-09 20:08:38 ----D---- C:\WINDOWS\system32\CatRoot

2008-10-09 20:08:32 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft

2008-10-09 20:08:15 ----SHD---- C:\System Volume Information

2008-10-09 20:08:15 ----D---- C:\Documents and Settings

2008-10-09 20:07:24 ----SH---- C:\boot.ini

2008-10-09 20:02:47 ----RSHDC---- C:\WINDOWS\system32\dllcache

2008-10-09 20:02:47 ----RSD---- C:\WINDOWS\Fonts

2008-10-09 20:02:47 ----RD---- C:\WINDOWS\Web

2008-10-09 20:02:47 ----HD---- C:\WINDOWS\inf

2008-10-09 20:02:47 ----D---- C:\WINDOWS\WinSxS

2008-10-09 20:02:47 ----D---- C:\WINDOWS\twain_32

2008-10-09 20:02:47 ----D---- C:\WINDOWS\Temp

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\wins

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\wbem

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\usmt

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\spool

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\ShellExt

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\Setup

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\ras

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\oobe

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\npp

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\mui

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\inetsrv

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\IME

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\icsxml

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\ias

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\export

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\drivers

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\dhcp

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\config

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\3com_dmi

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\3076

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\2052

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1054

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1042

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1041

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1037

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1036

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1033

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1031

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1028

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32\1025

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system32

2008-10-09 20:02:47 ----D---- C:\WINDOWS\system

2008-10-09 20:02:47 ----D---- C:\WINDOWS\security

2008-10-09 20:02:47 ----D---- C:\WINDOWS\Resources

2008-10-09 20:02:47 ----D---- C:\WINDOWS\repair

2008-10-09 20:02:47 ----D---- C:\WINDOWS\Provisioning

2008-10-09 20:02:47 ----D---- C:\WINDOWS\PeerNet

2008-10-09 20:02:47 ----D---- C:\WINDOWS\pchealth

2008-10-09 20:02:47 ----D---- C:\WINDOWS\mui

2008-10-09 20:02:47 ----D---- C:\WINDOWS\msapps

2008-10-09 20:02:47 ----D---- C:\WINDOWS\msagent

2008-10-09 20:02:47 ----D---- C:\WINDOWS\Media

2008-10-09 20:02:47 ----D---- C:\WINDOWS\java

2008-10-09 20:02:47 ----D---- C:\WINDOWS\ime

2008-10-09 20:02:47 ----D---- C:\WINDOWS\Help

2008-10-09 20:02:47 ----D---- C:\WINDOWS\Driver Cache

2008-10-09 20:02:47 ----D---- C:\WINDOWS\Debug

2008-10-09 20:02:47 ----D---- C:\WINDOWS\Cursors

2008-10-09 20:02:47 ----D---- C:\WINDOWS\Connection Wizard

2008-10-09 20:02:47 ----D---- C:\WINDOWS\Config

2008-10-09 20:02:47 ----D---- C:\WINDOWS\AppPatch

2008-10-09 20:02:47 ----D---- C:\WINDOWS\addins

2008-10-09 20:02:47 ----D---- C:\WINDOWS

2008-10-09 19:06:23 ----D---- C:\Documents and Settings\julien\Application Data\Adobe

2008-10-09 18:58:22 ----D---- C:\JM

2008-10-09 18:58:20 ----R---- C:\WINDOWS\system32\JMRaidSetup.exe

2008-10-09 18:58:20 ----R---- C:\WINDOWS\system32\JMRaidAPI.dll

2008-10-09 18:58:16 ----D---- C:\WINDOWS\JM

2008-10-09 18:57:39 ----D---- C:\WINDOWS\system32\Lang

2008-10-09 18:54:29 ----R---- C:\WINDOWS\system32\ChCfg.exe

2008-10-09 18:54:17 ----D---- C:\WINDOWS\system32\RTCOM

2008-10-09 18:54:16 ----A---- C:\WINDOWS\system32\ksuser.dll

2008-10-09 18:53:50 ----A---- C:\WINDOWS\DFC.INI

2008-10-09 18:53:48 ----A---- C:\WINDOWS\system32\spupdsvc.exe

2008-10-09 18:53:47 ----A---- C:\WINDOWS\Ascd_tmp.ini

2008-10-09 18:53:42 ----R---- C:\WINDOWS\SoundMan.exe

2008-10-09 18:53:42 ----R---- C:\WINDOWS\SkyTel.exe

2008-10-09 18:53:41 ----R---- C:\WINDOWS\RtlUpd.exe

2008-10-09 18:53:37 ----R---- C:\WINDOWS\RTLCPL.exe

2008-10-09 18:53:32 ----R---- C:\WINDOWS\RTHDCPL.exe

2008-10-09 18:53:31 ----R---- C:\WINDOWS\MicCal.exe

2008-10-09 18:53:29 ----R---- C:\WINDOWS\alcwzrd.exe

2008-10-09 18:53:29 ----R---- C:\WINDOWS\Alcmtr.exe

2008-10-09 18:53:28 ----D---- C:\Program Files\Realtek

2008-10-09 18:53:26 ----R---- C:\WINDOWS\RtlExUpd.dll

2008-10-09 18:45:05 ----D---- C:\WINDOWS\ASUSInstAll

2008-10-09 18:43:06 ----HD---- C:\Program Files\InstallShield Installation Information

2008-10-09 18:42:35 ----RA---- C:\WINDOWS\system32\raidmgmt.ini

2008-10-09 18:42:35 ----RA---- C:\WINDOWS\system32\AsusSetup.ini

2008-10-09 18:42:35 ----RA---- C:\WINDOWS\system32\AsusSetup.exe

2008-10-09 18:41:56 ----D---- C:\WINDOWS\system32\SoftwareDistribution

2008-10-09 18:41:11 ----RA---- C:\WINDOWS\system32\idecoiins.dll

2008-10-09 18:41:11 ----RA---- C:\WINDOWS\system32\idecoi.dll

2008-10-09 18:41:11 ----D---- C:\WINDOWS\system32\ReinstallBackups

2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco1ins.dll

2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l2052.dll

2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1046.dll

2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1042.dll

2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1041.dll

2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1040.dll

2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1036.dll

2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1034.dll

2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1031.dll

2008-10-09 18:41:06 ----RA---- C:\WINDOWS\system32\fdco_l1028.dll

2008-10-09 18:41:04 ----RA---- C:\WINDOWS\system32\bdco1ins.dll

2008-10-09 18:41:04 ----D---- C:\WINDOWS\NV784972.TMP

2008-10-09 18:40:04 ----A---- C:\WINDOWS\Ascd_log.ini

2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\xinput1_3.dll

2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\xactengine2_6.dll

2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\xactengine2_5.dll

2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\xactengine2_4.dll

2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll

2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\d3dx9_32.dll

2008-10-09 18:37:24 ----A---- C:\WINDOWS\system32\d3dx9_31.dll

2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\xinput1_2.dll

2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\xinput1_1.dll

2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\xactengine2_3.dll

2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\xactengine2_2.dll

2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\xactengine2_1.dll

2008-10-09 18:37:23 ----A---- C:\WINDOWS\system32\d3dx9_30.dll

2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll

2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\xactengine2_0.dll

2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll

2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\d3dx9_29.dll

2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\d3dx9_28.dll

2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\d3dx9_27.dll

2008-10-09 18:37:22 ----A---- C:\WINDOWS\system32\d3dx9_26.dll

2008-10-09 18:37:21 ----A---- C:\WINDOWS\system32\d3dx9_25.dll

2008-10-09 18:37:21 ----A---- C:\WINDOWS\system32\d3dx9_24.dll

2008-10-09 18:35:31 ----D---- C:\Program Files\Fichiers communs\InstallShield

2008-10-09 18:35:26 ----A---- C:\WINDOWS\system32\nv4_disp.dll

2008-10-09 18:34:46 ----D---- C:\WINDOWS\UI

2008-10-09 18:34:43 ----A---- C:\WINDOWS\TBZoom.exe

2008-10-09 18:34:43 ----A---- C:\WINDOWS\TBPanelExt.dll

2008-10-09 18:34:43 ----A---- C:\WINDOWS\TBPanel.exe

2008-10-09 18:34:43 ----A---- C:\WINDOWS\TBManage.dll

2008-10-09 18:34:43 ----A---- C:\WINDOWS\GWLib.dll

2008-10-09 18:34:43 ----A---- C:\WINDOWS\DXTool.exe

2008-10-09 18:26:33 ----D---- C:\Documents and Settings\julien\Application Data\Identities

2008-10-09 18:26:32 ----HD---- C:\Program Files\Uninstall Information

2008-10-09 18:26:23 ----SD---- C:\Documents and Settings\julien\Application Data\Microsoft

2008-10-09 18:26:23 ----ASH---- C:\Documents and Settings\julien\Application Data\desktop.ini

2008-10-09 18:23:45 ----D---- C:\WINDOWS\SoftwareDistribution

2008-10-09 18:23:43 ----SD---- C:\WINDOWS\system32\Microsoft

2008-10-09 18:20:36 ----D---- C:\WINDOWS\system32\xircom

2008-10-09 18:20:36 ----D---- C:\Program Files\xerox

2008-10-09 18:20:36 ----D---- C:\Program Files\microsoft frontpage

2008-10-09 18:20:24 ----A---- C:\WINDOWS\control.ini

2008-10-09 18:20:24 ----A---- C:\AUTOEXEC.BAT

2008-10-09 18:20:13 ----A---- C:\WINDOWS\system32\mapi32.dll

2008-10-09 18:19:37 ----SD---- C:\WINDOWS\Downloaded Program Files

2008-10-09 18:19:37 ----RD---- C:\WINDOWS\Offline Web Pages

2008-10-09 18:19:37 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest

2008-10-09 18:19:32 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest

2008-10-09 18:19:29 ----HD---- C:\Program Files\WindowsUpdate

2008-10-09 18:19:26 ----D---- C:\Program Files\Services en ligne

2008-10-09 18:19:15 ----D---- C:\WINDOWS\system32\DirectX

2008-10-09 18:19:01 ----A---- C:\WINDOWS\system32\atrace.dll

2008-10-09 18:18:59 ----A---- C:\WINDOWS\system32\desktop.ini

2008-10-09 18:18:59 ----A---- C:\WINDOWS\desktop.ini

2008-10-09 18:18:54 ----A---- C:\WINDOWS\system32\nmevtmsg.dll

2008-10-09 18:18:53 ----A---- C:\WINDOWS\system32\acctres.dll

2008-10-09 18:18:52 ----D---- C:\Program Files\Fichiers communs\Services

2008-10-09 18:18:51 ----SD---- C:\WINDOWS\Tasks

2008-10-09 18:18:51 ----A---- C:\WINDOWS\system32\icfgnt5.dll

2008-10-09 18:18:50 ----D---- C:\Program Files\Fichiers communs\MSSoap

2008-10-09 18:18:47 ----D---- C:\WINDOWS\system32\Macromed

2008-10-09 18:18:47 ----D---- C:\WINDOWS\srchasst

2008-10-09 18:18:45 ----A---- C:\WINDOWS\system32\wuweb.dll

2008-10-09 18:18:45 ----A---- C:\WINDOWS\system32\wucltui.dll

2008-10-09 18:18:45 ----A---- C:\WINDOWS\system32\wuauserv.dll

2008-10-09 18:18:45 ----A---- C:\WINDOWS\system32\wuaueng1.dll

2008-10-09 18:18:45 ----A---- C:\WINDOWS\system32\wuaueng.dll

2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\wups.dll

2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\wuauclt1.exe

2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\wuauclt.exe

2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\wuapi.dll

2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\qmgrprxy.dll

2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\qmgr.dll

2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\bitsprx3.dll

2008-10-09 18:18:44 ----A---- C:\WINDOWS\system32\bitsprx2.dll

2008-10-09 18:18:41 ----D---- C:\Program Files\Movie Maker

2008-10-09 18:18:39 ----A---- C:\WINDOWS\system32\safrslv.dll

2008-10-09 18:18:39 ----A---- C:\WINDOWS\system32\safrdm.dll

2008-10-09 18:18:38 ----A---- C:\WINDOWS\system32\safrcdlg.dll

2008-10-09 18:18:38 ----A---- C:\WINDOWS\system32\racpldlg.dll

2008-10-09 18:18:36 ----D---- C:\WINDOWS\system32\Restore

2008-10-09 18:18:36 ----A---- C:\WINDOWS\system32\srsvc.dll

2008-10-09 18:18:36 ----A---- C:\WINDOWS\system32\srrstr.dll

2008-10-09 18:18:36 ----A---- C:\WINDOWS\system32\srclient.dll

2008-10-09 18:18:36 ----A---- C:\WINDOWS\system32\fltmc.exe

2008-10-09 18:18:36 ----A---- C:\WINDOWS\system32\fltlib.dll

2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\nmmkcert.dll

2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\msconf.dll

2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\mnmsrvc.exe

2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\mnmdd.dll

2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\isrdbg32.dll

2008-10-09 18:18:35 ----A---- C:\WINDOWS\system32\ils.dll

2008-10-09 18:18:33 ----D---- C:\Program Files\NetMeeting

2008-10-09 18:18:33 ----A---- C:\WINDOWS\system32\msoert2.dll

2008-10-09 18:18:33 ----A---- C:\WINDOWS\system32\msoeacct.dll

2008-10-09 18:18:32 ----A---- C:\WINDOWS\system32\inetres.dll

2008-10-09 18:18:32 ----A---- C:\WINDOWS\system32\inetcomm.dll

2008-10-09 18:18:31 ----D---- C:\Program Files\Outlook Express

2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\schedsvc.dll

2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\mstinit.exe

2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\mstask.dll

2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\isign32.dll

2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\inetcfg.dll

2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\icwphbk.dll

2008-10-09 18:18:30 ----A---- C:\WINDOWS\system32\icwdial.dll

2008-10-09 18:18:26 ----D---- C:\Program Files\Fichiers communs\System

2008-10-09 18:18:25 ----D---- C:\Program Files\Internet Explorer

2008-10-09 18:18:16 ----D---- C:\Program Files\ComPlus Applications

2008-10-09 18:18:14 ----A---- C:\WINDOWS\vbaddin.ini

2008-10-09 18:18:14 ----A---- C:\WINDOWS\vb.ini

2008-10-09 18:18:10 ----D---- C:\WINDOWS\Registration

2008-10-09 18:17:50 ----D---- C:\Program Files\Windows Media Player

2008-10-09 18:17:50 ----D---- C:\Program Files\Online Services

2008-10-09 18:17:44 ----D---- C:\Program Files\MSN Gaming Zone

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\usrlogon.cmd

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\tsshutdn.exe

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\tslabels.ini

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\tskill.exe

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\tsdiscon.exe

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\tscon.exe

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\shadow.exe

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\rwinsta.exe

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\reset.exe

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\regini.exe

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\rdpcfgex.dll

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\qwinsta.exe

2008-10-09 18:17:32 ----A---- C:\WINDOWS\system32\qappsrv.exe

2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\mtxlegih.dll

2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\mtxex.dll

2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\mtxdm.dll

2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\msg.exe

2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\msdtcprf.ini

2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\logoff.exe

2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\dcomcnfg.exe

2008-10-09 18:17:31 ----A---- C:\WINDOWS\system32\cdmodem.dll

2008-10-09 18:17:30 ----A---- C:\WINDOWS\system32\stclient.dll

2008-10-09 18:17:30 ----A---- C:\WINDOWS\system32\comsnap.dll

2008-10-09 18:17:30 ----A---- C:\WINDOWS\system32\comrepl.dll

2008-10-09 18:17:30 ----A---- C:\WINDOWS\system32\comaddin.dll

2008-10-09 18:17:27 ----A---- C:\WINDOWS\system32\wmimgmt.msc

2008-10-09 18:17:20 ----D---- C:\Program Files\MSN

2008-10-09 18:17:18 ----D---- C:\Program Files\Windows NT

2008-10-09 18:17:18 ----A---- C:\WINDOWS\system32\tscfgwmi.dll

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\tscupgrd.exe

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\termsrv.dll

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\sessmgr.exe

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\remotepg.dll

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdshost.exe

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdsaddin.exe

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdpwsx.dll

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdpsnd.dll

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdpclip.exe

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\rdchost.dll

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\qprocess.exe

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\mstscax.dll

2008-10-09 18:17:17 ----A---- C:\WINDOWS\system32\mstsc.exe

2008-10-09 18:17:16 ----D---- C:\WINDOWS\system32\MsDtc

2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\xolehlp.dll

2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\mtxoci.dll

2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\msdtcuiu.dll

2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\msdtctm.dll

2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\msdtcprx.dll

2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\msdtclog.dll

2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\icaapi.dll

2008-10-09 18:17:16 ----A---- C:\WINDOWS\system32\cfgbkend.dll

2008-10-09 18:17:15 ----D---- C:\WINDOWS\system32\Com

2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\msdtc.exe

2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\colbact.dll

2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\clbcatex.dll

2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\catsrvut.dll

2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\catsrvps.dll

2008-10-09 18:17:15 ----A---- C:\WINDOWS\system32\catsrv.dll

2008-10-09 18:17:14 ----A---- C:\WINDOWS\system32\comuid.dll

2008-10-09 18:17:14 ----A---- C:\WINDOWS\system32\comsvcs.dll

2008-10-09 18:17:14 ----A---- C:\WINDOWS\system32\clbcatq.dll

2008-10-09 18:17:10 ----A---- C:\WINDOWS\system32\servdeps.dll

2008-10-09 18:17:10 ----A---- C:\WINDOWS\system32\mmfutil.dll

2008-10-09 18:17:10 ----A---- C:\WINDOWS\system32\licwmi.dll

2008-10-09 18:17:10 ----A---- C:\WINDOWS\system32\cmprops.dll

======List of files/folders modified in the last 1 months======

2008-10-15 17:35:43 ----A---- C:\WINDOWS\system32\netapi32.dll

2008-10-09 20:10:44 ----A---- C:\WINDOWS\system.ini

2008-10-09 18:20:24 ----A---- C:\WINDOWS\win.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []

R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-06-27 75072]

R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]

R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]

R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]

R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-05 12032]

R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]

R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2004-08-05 63232]

R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2004-08-05 55936]

R2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys [2007-03-16 12256]

R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []

R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]

R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-11-15 4225920]

R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2007-09-21 35088]

R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2007-09-21 36240]

R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]

R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]

R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-04-12 6738656]

R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-02-17 34176]

R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-02-17 13056]

R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]

R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]

R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]

R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]

R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]

S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]

S3 avlxqxm3;avlxqxm3; C:\WINDOWS\system32\drivers\avlxqxm3.sys []

S3 C0100Afx;Provides a software interface to control audio effects of VC0100 camera.; \??\C:\WINDOWS\system32\Drivers\C0100Afx.sys []

S3 C0100Aud;Provides a software interface to control noise cancellation of VC0100 camera.; \??\C:\WINDOWS\system32\Drivers\C0100Aud.sys []

S3 C0100Aul;Provides a software interface to control audio formats of VC0100 camera.; \??\C:\WINDOWS\system32\Drivers\C0100Aul.sys []

S3 C0100Dev;Creative Camera VC0100 Driver; C:\WINDOWS\system32\DRIVERS\C0100Dev.sys [2007-05-24 239904]

S3 C0100Vfx;Creative Camera VC0100 Video VFX Driver; C:\WINDOWS\system32\DRIVERS\C0100Vfx.sys [2006-12-05 7168]

S3 Cardex;Cardex; \??\C:\WINDOWS\system32\drivers\TBPANEL.SYS []

S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]

S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]

S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]

S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]

S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]

S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]

S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]

S3 USB_RNDIS;ADI Remote NDIS Network Device Driver; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2008-04-13 12800]

S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]

S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

S3 usbvideo;Périphérique vidéo USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-13 121984]

S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-23 68865]

R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-23 151297]

R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe [2006-02-17 139264]

R2 ForcewareWebInterface;Forceware Web Interface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [2006-02-17 20543]

R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-10-29 152984]

R2 nSvcIp;ForceWare IP service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [2006-02-17 127035]

R2 nSvcLog;ForceWare user log service; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [2006-02-17 61503]

R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-04-12 163908]

R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]

S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]

S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]

S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-10 138168]

S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Fichiers communs\Logishrd\Bluetooth\LBTServ.exe [2007-11-15 121360]

S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]

S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

-----------------EOF-----------------

spaversu · le 29 octobre 2008

ainsi que l'info test:

info.txt logfile of random's system information tool 1.04 2008-10-29 21:19:27

======Uninstall list======

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{15B3F9F8-4CF9-452A-9AF2-AA8553765DA7}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2C81600D-D6C7-4687-9362-DD4A78B3483E}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{513D9FB1-27A2-44E4-8F2D-77A6737921A5}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5549DC52-211C-44BE-8347-0C22812DEB31}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BE926E5-66F4-4166-A5E5-E14D7A165BBD}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\SETUP.EXE" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9814AC8C-FDA8-431F-A6EB-D7294E2D362E}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe

Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe

Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}

Advanced Audio FX Engine-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c /remove

Advanced Video FX Engine-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c /remove

Alice Auto-diagnostic-->C:\Program Files\TechCity Solutions\AliceSAV\uninstall.exe

Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe

Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}

ASUSUpdate-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\setup.exe" -l0x40c

Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE

Calendrier de photos Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2C81600D-D6C7-4687-9362-DD4A78B3483E}\setup.exe" -l0x40c /remove

Call of Duty® 4 - Modern Warfare-->C:\Program Files\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe -runfromtemp -l0x040c

CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}

Creative Live! Cam Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BE926E5-66F4-4166-A5E5-E14D7A165BBD}\setup.exe" -l0x40c /remove

Creative Live! Cam Doodling-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5549DC52-211C-44BE-8347-0C22812DEB31}\setup.exe" -l0x40c /remove

Creative Live! Cam FX Creator-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9814AC8C-FDA8-431F-A6EB-D7294E2D362E}\setup.exe" -l0x40c /remove

Creative Live! Cam Manager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{15B3F9F8-4CF9-452A-9AF2-AA8553765DA7}\setup.exe" -l0x40c /remove

Creative Live! Cam Optia AF Driver (1.02.02.0612) -->C:\WINDOWS\CtDrvIns.exe -uninstall -script VC0100.uns -plugin C0100Pin.dll -pluginres CtCamPin.crl

Creative Software AutoUpdate-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88B1984E-36F0-47B8-B8DC-728966807A9C}\SETUP.EXE" -l0x40c /remove

Creative System Information-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x40c /remove

DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe

DeepBurner v1.9.0.228-->"D:\Program Files\Astonsoft\DeepBurner\Uninstall.exe" "D:\Program Files\Astonsoft\DeepBurner\install.log" -u

eMule-->"D:\Program Files\eMule\Uninstall.exe"

erLT-->MsiExec.exe /I{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}

EXPERTool-->RunDll32 Setupapi.dll,InstallHinfSection TB.Remove 4 TBNT4.inf

Gestionnaire de photos Creative-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{513D9FB1-27A2-44E4-8F2D-77A6737921A5}\setup.exe" -l0x40c /remove

Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}

Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"

GPGNet-->MsiExec.exe /I{C194D333-B84A-4BB7-B35E-060732D98DC4}

HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall

Java 6 Update 10-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}

JMB36X Raid Configurer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}\setup.exe" -l0x40c -removeonly

KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}

Kit de Connexion Alice ADSL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A0221AD-D30B-4320-8F9B-1D0F0E6C6843}\setup.exe" -l0x40c ControlPanel

Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\SETUP.EXE" -l0x40c UNINSTALL

Logitech SetPoint-->C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe -runfromtemp -l0x040c -removeonly

Manuel d'utilisation de Creative Live! Cam Optia AF (Français)-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Creative\Creative Live! Cam Optia AF\Manuel d'utilisation de Creative Live! Cam Optia AF\French\CTManual.isu"

Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe

Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}

Microsoft Visual J# 2.0 Redistributable Package-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft Visual J# 2.0 Redistributable Package\install.exe

muveeNow 2.0 - Creative-->C:\Program Files\InstallShield Installation Information\{B0F64C44-DC77-497D-9A27-C0F5BAB12493}\setup.exe -runfromtemp -l0x040c -removeonly

NVIDIA Drivers-->C:\WINDOWS\system32\nvuide.exe UninstallGUI

NVIDIA ForceWare Network Access Manager-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{1F6423DE-7959-4178-80E0-023C7EAA5347} /l1036

OpenOffice.org Installer 1.0-->MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74}

Pro Evolution Soccer 2008-->C:\Program Files\InstallShield Installation Information\{2FDFD600-7338-4738-90D5-FC4ACA08DC36}\setup.exe -runfromtemp -l0x040c

Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly

SightSpeed (remove only)-->"C:\Program Files\SightSpeed\uninst.exe"

Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}

SpeedFan (remove only)-->"D:\Program Files\SpeedFan\uninstall.exe"

Supreme Commander - Forged Alliance-->C:\Program Files\InstallShield Installation Information\{31D95937-B237-405D-920C-A3EF4E482395}\setup.exe -runfromtemp -l0x040c -removeonly

TVUPlayer 2.4.0.1-->D:\Program Files\TVUPlayer\uninst.exe

VLC media player 0.9.4-->D:\Program Files\VideoLAN\VLC\uninstall.exe

Vuze-->D:\Program Files\Vuze\uninstall.exe

Winamp-->"D:\Program Files\Winamp\UninstWA.exe"

Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}

Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}

Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll

Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

======Security center information======

AV: Avira AntiVir PersonalEdition (outdated)

FW: ActiveArmor Firewall

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe

"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem

"windir"=%SystemRoot%

"FP_NO_HOST_CHECK"=NO

"OS"=Windows_NT

"PROCESSOR_ARCHITECTURE"=x86

"PROCESSOR_LEVEL"=6

"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 6, GenuineIntel

"PROCESSOR_REVISION"=0f06

"NUMBER_OF_PROCESSORS"=2

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------

voilà, j'espere que ça nous en dira plus...

pear · le 29 octobre 2008

Bonsoir,

Téléchargez Toolbar-S&D sur le Bureau.

Lancez l'installation du programme en exécutant le fichier téléchargé.
Double-cliquez sur le raccourci de Toolbar-S&D.
Sélectionnez la langue souhaitée en tapant la lettre de votre choix puis en validant avec la touche Entrée.
Choisisssez l'option 1 (Recherche).
Patientez jusqu'à la fin de la recherche.
Postez le rapport généré. (C:\TB.txt)

Relancez Toolbar-S&D en double-cliquant sur le raccourci. Tapez sur "2" et validez par"Entrée".

Ne fermez pas la fenêtre lors de la suppression !

Un rapport sera généré,

postez son contenu ici.

NOTE : Si le Bureau ne réapparait pas, appuyer simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.

Allez à l'onglet "Processus". Cliquez en haut à gauche sur Fichier ->"Exécuter..."

Tapez explorer et validez.

Télécharger SmitfraudFix sur le bureau

Dézipper la totalité de l'archive smitfraudfix.zip

process.exe est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.

Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.

Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.

option 1 - Recherche :

Double cliquer sur smitfraudfix.cmd

Sélectionner 1 pour créer un rapport des fichiers responsables de l'infection.

Poster le rapport sur le forum.

option 2 -Nettoyage :

Redémarrer l'ordinateur en mode sans échec (tapoter F8 au boot pour obtenir le menu de démarrage ou tuto Symantec).

Double cliquer sur smitfraudfix.cmd

Sélectionner 2 pour supprimer les fichiers responsables de l'infection.

A la question Voulez-vous nettoyer le registre ? répondre O (oui) afin de débloquer le fond d'écran et supprimer les clés de démarrage automatique de l'infection.

Le fix déterminera si le fichier wininet.dll est infecté. A la question Corriger le fichier infecté ? répondre O (oui) pour remplacer le fichier corrompu.

Redémarrer en mode normal et poster le rapport sur le forum.

N.B.: Cette étape élimine les fichiers infectieux détectés à l'étape #1

Attention que l'option 2 de l'outil supprime le fond d'écran !

Poster le rapport

Utilisation ----- option 3 - effacement de la liste des sites de confiance et sensibles :

Double cliquer sur smitfraudfix.cmd

Sélectionner 3 pour effacer, éventuellement, la liste des sites de confiance et sensibles (lignes HijackThis O15).

spaversu · le 30 octobre 2008

Ok voici la suite :

-----------\\ ToolBar S&D 1.2.4 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3

X86-based PC ( Multiprocessor Free : Intel® Core2 CPU 6600 @ 2.40GHz )

BIOS : Phoenix - AwardBIOS v6.00PG

USER : julien ( Administrator )

BOOT : Normal boot

Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)

Firewall : ActiveArmor Firewall 1.0 (Activated)

A:\ (USB)

C:\ (Local Disk) - NTFS - Total:24 Go (Free:12 Go)

D:\ (Local Disk) - NTFS - Total:208 Go (Free:63 Go)

E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

F:\ (CD or DVD)

G:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 )

Option : [1] ( 30/10/2008| 1:57 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\DAEMON Tools Toolbar

C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll

C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT

C:\Program Files\DAEMON Tools Toolbar\Resources

C:\Program Files\DAEMON Tools Toolbar\uninst.exe

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Local Page"="C:\\WINDOWS\\system32\\blank.htm"

"Start Page"="http://www.aliceadsl.fr"'>http://www.aliceadsl.fr"

"Search Page"="http://www.google.com"

"Search Bar"="http://www.google.com/ie"'>http://www.google.com/ie"

"First Home Page"="http://www.aliceadsl.fr"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"

"Default_Search_URL"="http://www.google.com/ie"

"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home"

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

1 - "C:\ToolBar SD\TB_1.txt" - 30/10/2008| 1:57 - Option : [1]

-----------\\ Fin du rapport a 1:57:53,56

spaversu · le 30 octobre 2008

Et le deuxième rapport:

-----------\\ ToolBar S&D 1.2.4 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3

X86-based PC ( Multiprocessor Free : Intel® Core2 CPU 6600 @ 2.40GHz )

BIOS : Phoenix - AwardBIOS v6.00PG

USER : julien ( Administrator )

BOOT : Normal boot

Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)

Firewall : ActiveArmor Firewall 1.0 (Activated)

A:\ (USB)

C:\ (Local Disk) - NTFS - Total:24 Go (Free:12 Go)

D:\ (Local Disk) - NTFS - Total:208 Go (Free:63 Go)

E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)

F:\ (CD or DVD)

G:\ (CD or DVD)

"C:\ToolBar SD" ( MAJ : 27-10-2008|09:25 )

Option : [2] ( 30/10/2008| 2:00 )

-----------\\ SUPPRESSION

Supprime! - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll

Supprime! - C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT

Supprime! - C:\Program Files\DAEMON Tools Toolbar\Resources

Supprime! - C:\Program Files\DAEMON Tools Toolbar\uninst.exe

Supprime! - C:\Program Files\DAEMON Tools Toolbar

-----------\\ Recherche de Fichiers / Dossiers ...

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Local Page"="C:\\WINDOWS\\system32\\blank.htm"

"Start Page"="http://www.aliceadsl.fr"'>http://www.aliceadsl.fr"

"Search Page"="http://www.google.com"

"Search Bar"="http://www.google.com/ie"'>http://www.google.com/ie"

"First Home Page"="http://www.aliceadsl.fr"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"

"Default_Search_URL"="http://www.google.com/ie"

"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

"Start Page"="http://www.msn.com/"

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

1 - "C:\ToolBar SD\TB_1.txt" - 30/10/2008| 1:57 - Option : [1]

2 - "C:\ToolBar SD\TB_2.txt" - 30/10/2008| 2:00 - Option : [2]

-----------\\ Fin du rapport a 2:00:43,35

spaversu · le 30 octobre 2008

rapport Smitfraudfix:

SmitFraudFix v2.368

Rapport fait à 2:04:47,57, 30/10/2008

Executé à partir de C:\Documents and Settings\julien\Bureau\SmitfraudFix

OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT

Le type du système de fichiers est NTFS

Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\TBPanel.exe

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\C0100Mon.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

D:\Program Files\DAEMON Tools Lite\daemon.exe

D:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

D:\Program Files\Logitech\SetPoint\SetPoint.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe

C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\system32\NOTEPAD.EXE

D:\Program Files\Mozilla Firefox\firefox.exe

C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\julien

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\julien\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\julien\Favoris

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]

"Source"="About:Home"

"SubscribedURL"="About:Home"

"FriendlyName"="Ma page d'accueil"

»»»»»»»»»»»»»»»»»»»»»»»» o4Patch

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

o4Patch

Credits: Malware Analysis & Diagnostic

Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» IEDFix

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

IEDFix

Credits: Malware Analysis & Diagnostic

Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» VACFix

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

VACFix

Credits: Malware Analysis & Diagnostic

Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» 404Fix

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

404Fix

Credits: Malware Analysis & Diagnostic

Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» AntiXPVSTFix

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri

Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=""

»»»»»»»»»»»»»»»»»»»»»»»» Winlogon

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]

"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"

"System"=""

»»»»»»»»»»»»»»»»»»»»»»»» RK

»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: NVIDIA nForce Networking Controller - Miniport d'ordonnancement de paquets

DNS Server Search Order: 192.168.1.1

HKLM\SYSTEM\CCS\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1

HKLM\SYSTEM\CS1\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1

HKLM\SYSTEM\CS3\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1

HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin

spaversu · le 30 octobre 2008

Rapport après nettoyage :

SmitFraudFix v2.368

Rapport fait à 2:29:47,67, 30/10/2008

Executé à partir de C:\Documents and Settings\julien\Bureau\SmitfraudFix

OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT

Le type du système de fichiers est NTFS

Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri

Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus

»»»»»»»»»»»»»»»»»»»»»»»» hosts

127.0.0.1 localhost

»»»»»»»»»»»»»»»»»»»»»»»» VACFix

VACFix

Credits: Malware Analysis & Diagnostic

Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

S!Ri's WS2Fix: LSP not Found.

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

»»»»»»»»»»»»»»»»»»»»»»»» IEDFix

IEDFix

Credits: Malware Analysis & Diagnostic

Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» 404Fix

404Fix

Credits: Malware Analysis & Diagnostic

Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» AntiXPVSTFix

»»»»»»»»»»»»»»»»»»»»»»»» RK

»»»»»»»»»»»»»»»»»»»»»»»» DNS

HKLM\SYSTEM\CCS\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1

HKLM\SYSTEM\CS1\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1

HKLM\SYSTEM\CS3\Services\Tcpip\..\{11F04C84-2A02-4618-8FE8-313F6E1A1421}: DhcpNameServer=192.168.1.1

HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires

»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]

"System"=""

»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix

!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri

Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin

P.S : Lors de l'opération nettoyage en mode sans échec, le nettoyage de disque par windows s'est lancé...

De plus mon disque dur fait désormais un sacré bruit, comme s'il bloquait ou que pris d'une fièvre soudaine il se tapait la tête contre la paroi de la tour...

En tout cas merci, j'espère à demain pour la solution!

pear · le 30 octobre 2008

Lors de l'opération nettoyage en mode sans échec, le nettoyage de disque par windows s'est lancé...
De plus mon disque dur fait désormais un sacré bruit, comme s'il bloquait ou que pris d'une fièvre soudaine il se tapait la tête contre la paroi de la tou

Le nettoyage n'est pas responsable de cela.

C'est un problème matériel:Votre disque fait problème.

Voyez UBCD:

http://forum.tt-hardware.com/topic-81564--...ate-Boot-CD.htm

Connexion

Pas encore inscrit ?

Etranges problème d'un seul coup...

Messages recommandés

spaversu

pear

spaversu

spaversu

pear

spaversu

spaversu

spaversu

spaversu

pear

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer