Help, je crois qu'on m'attaque!!!!

[Guilhem89]

Au secours, je sais pas ce qui se passe, chaque fois que je fais une recherche google, j'ai 403 Forbidden, regardez le screen:

 

 

 

 

C'est grave, regardez ce que me dit google !

 

Help svp!

[pear]

Bonjour,

 

Téléchargez Hijackthis de TrendMicro.

* Décompressez le dans un dossier à la racine du disque dur

Mais jamais dans un dossier temporaire

renommer ce dossier par exemple Karcher

Sous Vista,,il faut faire clic-droit >> "Exécuter en tant qu'Administrateur" sur Hijackthis.exe sinon HJT tourne mais ne fixe rien.

* Lancer le fichier Hijackthis.exe

* Cliquer sur Do a system scan and save a log file

* Poster le rapport dans un nouveau message

[Guilhem89]

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 16:26:00, on 03/12/2008

Platform: Windows Vista (WinNT 6.00.1904)

MSIE: Internet Explorer v7.00 (7.00.6000.16757)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\TOSHIBA\Utilities\KeNotify.exe

C:\Windows\RtHDVCpl.exe

C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe

C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe

C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe

C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE

C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\TOSHIBA\Registration\ToshibaRegistration.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Users\Guilhem\Program Files\DNA\btdna.exe

C:\Program Files\Synaptics\SynTP\SynToshiba.exe

C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe

C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Windows\system32\conime.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Users\Guilhem\Desktop\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe

O4 - HKLM\..\Run: [sVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL

O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE

O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe

O4 - HKLM\..\Run: [smoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe

O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe

O4 - HKLM\..\Run: [HWSetup] \HWSetup.exe hwSetUP

O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe

O4 - HKLM\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe"

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe

O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe

O4 - HKLM\..\Run: [iaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter

O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Users\Guilhem\Program Files\DNA\btdna.exe"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?FR (file missing)

O13 - Gopher Prefix:

O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe

O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe

O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe

O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

O23 - Service: TOSHIBA Bluetooth Service - Unknown owner - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (file missing)

O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

 

--

End of file - 8325 bytes

[Guilhem89]

Je précise au passage que je suis sur le wifi de ma fac, et que pour me connecter, j'ai du désactiver certaines options de sécurité...est-ce quelqu'un a pu me hacker mon pc ???

 

La je suis au cybercafé!!

[pear]

Votre rapport ne montre pas d'infection.

Fouillons un peu:

 

Téléchargezrandom's system information tool (RSIT) par random/random et sauvegardez-le sur le Bureau.

 

Double-cliquez sur RSIT.exe afin de lancer RSIT.

* Cliquez Continue à l'écran Disclaimer.

* Si l'outil HIjackThis (version à jour) n'est pas présent ou détecté sur l'ordinateur, RSIT le télécharge et vous acceptez la licence.

* L'analyse terminée, deux fichiers texte s'ouvriront.:

Poster le contenu de log.txt (qui sera affiché)

ainsi que de info.txt (qui sera réduit dans la Barre des Tâches).

* Si ces deux rapports n'apparaissent pas, vous les trouverez dans le dossier C:\rsit

[Guilhem89]

Merci, là je suis au cybercafé, je posterai le rapport demain.

 

Sinon, pensez-vous que l'on a pu s'introduire dans mon système du fait que j'ai déréglé la sécurité de mon réseau internet ?

Modifié le 3 décembre 2008 par Guilhem89

[Guilhem89]

Voilà les fichiers txt

info.txt logfile of random's system information tool 1.04 2008-12-03 22:25:36

 

======Uninstall list======

 

-->"C:\Program Files\InstallShield Installation Information\{A644254B-92F6-4970-8635-AB0775371E72}\setup.exe" --u:{A644254B-92F6-4970-8635-AB0775371E72}

-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{622E6F16-0904-49B6-BBE1-4CC836314CCF}\setup.exe" -l0x40c

-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{697AFC77-F318-4CD4-BF16-F50F4C1072DA}\setup.exe" -l0x40c

Ad-Aware-->MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}

Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe

Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe

Adobe Reader 9 - FranÁais-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}

Apple Mobile Device Support-->MsiExec.exe /I{EC4455AB-F155-4CC1-A4C5-88F3777F9886}

Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}

Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe

Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE

Bluetooth Stack for Windows by Toshiba-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}

Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}

Call of Duty® 2-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{D0A05794-48C2-4424-A15A-9F20FCFDD374} /l2057

Camera Assistant Software for Toshiba-->C:\Program Files\InstallShield Installation Information\{37C866E4-AA67-4725-9E95-A39968DD7960}\setup.exe -runfromtemp -l0x040c

Catalyst Control Center - Branding-->MsiExec.exe /I{22543949-70E8-45D0-A938-F38143EB8BF8}

CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"

Codeur Windows Media SÈrie 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}

Codeur Windows Media SÈrie 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}

DVD MovieFactory for TOSHIBA-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}\setup.exe" -l0x40c

Emdedded IR Driver-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{A6D4234C-CB02-4048-AC3E-AD09404FA35A}

IntelÆ Turbo Memory et IntelÆ Matrix Storage Manager-->C:\Windows\system32\imsmudlg.exe -uninstall

iTunes-->MsiExec.exe /I{318AB667-3230-41B5-A617-CB3BF748D371}

Java SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}

K-Lite Mega Codec Pack 4.3.4-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"

Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"

Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}

Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}

Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}

Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}

Microsoft Office Professional 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROR /dll OSETUP.DLL

Microsoft Office Professional 2007-->MsiExec.exe /X{91120000-0014-0000-0000-0000000FF1CE}

Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}

Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}

Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}

Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}

Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}

Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}

Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}

Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}

Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}

Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}

Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}

Mozilla Firefox (3.0.4)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe

MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}

MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

QuickTime-->MsiExec.exe /I{F958CA02-BB40-4007-894B-258729456EE4}

Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista-->C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x040c -removeonly

Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly

RÈducteur de bruit lect. CD/DVD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}\setup.exe" -l0x40c

Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

Security Update for Windows Media Encoder (KB954156)-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} MSIPATCHREMOVE={E836F1B7-43FB-46B0-A0D9-E4D2A5951659} /qb

Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall

Texas Instruments PCIxx21/x515/xx12 drivers.-->C:\Program Files\InstallShield Installation Information\{DB780B85-B4B5-4864-A49C-9B706B169C93}\setup.exe -runfromtemp -l0x040c

TOSHIBA Assist-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12B3A009-A080-4619-9A2A-C6DB151D8D67}\setup.exe" -l0x40c

TOSHIBA ConfigFree-->C:\Program Files\InstallShield Installation Information\{78C6A78A-8B03-48C8-A47C-78BA1FCA2307}\setup.exe -runfromtemp -l0x040c uninstall -removeonly

TOSHIBA Disc Creator-->MsiExec.exe /X{5DA0E02F-970B-424B-BF41-513A5018E4C0}

TOSHIBA DVD PLAYER-->C:\Program Files\InstallShield Installation Information\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}\setup.exe -runfromtemp -l0x040c -ADDREMOVE -removeonly

TOSHIBA Extended Tiles for Windows Mobility Center-->C:\Program Files\InstallShield Installation Information\{617C36FD-0CBE-4600-84B2-441CEB12FADF}\setup.exe -runfromtemp -l0x040c

TOSHIBA Flash Cards Support Utility-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{620BBA5E-F848-4D56-8BDA-584E44584C5E}

TOSHIBA Hardware Setup-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{5279374D-87FE-4879-9385-F17278EBB9D3} /l1036

TOSHIBA Mot de passe responsable-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE} /l1036

Toshiba Online Product Information-->C:\Program Files\InstallShield Installation Information\{2290A680-4083-410A-ADCC-7092C67FC052}\setup.exe -runfromtemp -l0x040c -removeonly

TOSHIBA SD Memory Utilities-->MsiExec.exe /X{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}

TOSHIBA Software Modem-->Tosmreg -U

TOSHIBA Value Added Package-->C:\Program Files\InstallShield Installation Information\{FEDD27A0-B306-45EF-BF58-B527406B42C8}\setup.exe -runfromtemp -l0x040c

Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}

Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}

 

======Security center information======

 

AV: Avira AntiVir PersonalEdition

AS: Windows Defender

 

======Environment variables======

 

"ComSpec"=%SystemRoot%\system32\cmd.exe

"FP_NO_HOST_CHECK"=NO

"OS"=Windows_NT

"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\QuickTime\QTSystem\

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC

"PROCESSOR_ARCHITECTURE"=x86

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

"USERNAME"=SYSTEM

"windir"=%SystemRoot%

"PROCESSOR_LEVEL"=6

"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 10, GenuineIntel

"PROCESSOR_REVISION"=0f0a

"NUMBER_OF_PROCESSORS"=2

"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip

"QTJAVA"=C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip

 

-----------------EOF-----------------

 

 

ET

Logfile of random's system information tool 1.04 (written by random/random)

Run by Guilhem at 2008-12-03 22:25:34

MicrosoftÆ Windows Vistaô …dition Familiale Premium

System drive C: has 39 GB (51%) free of 76 GB

Total RAM: 2046 MB (58% free)

 

HijackThis download failed

 

======Scheduled tasks folder======

 

C:\Windows\tasks\User_Feed_Synchronization-{716AAED0-0198-404F-ADFD-DBC2D9F0E05C}.job

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

SSVHelper Class - C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2007-04-18 501384]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2007-07-10 1006264]

"KeNotify"=C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [2006-11-06 34352]

"SVPWUTIL"=C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [2006-03-22 438272]

"topi"=C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe [2007-04-02 577536]

"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-06-13 4489216]

"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2007-03-29 411192]

"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2006-12-07 55416]

"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2007-05-23 509496]

"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2007-05-22 538744]

"HWSetup"=\HWSetup.exe hwSetUP []

"NDSTray.exe"=NDSTray.exe []

"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]

"Camera Assistant Software"=C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [2007-04-10 413696]

"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-06-20 1316136]

"Toshiba Registration"=C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe [2007-02-19 571024]

"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2007-04-25 174872]

"IaNvSrv"=C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe [2007-07-24 33304]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-11-04 413696]

"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-11-20 290088]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-11-29 1232896]

"WindowsWelcomeCenter"=C:\Windows\system32\oobefldr.dll [2006-11-02 2159104]

"TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [2006-11-13 413696]

"MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]

"BitTorrent DNA"=C:\Users\Guilhem\Program Files\DNA\btdna.exe [2008-11-29 342336]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

 

======List of files/folders created in the last 1 months======

 

2008-12-03 22:25:34 ----D---- C:\rsit

2008-12-03 22:25:34 ----D---- C:\Program Files\trend micro

2008-12-03 16:11:25 ----D---- C:\Program Files\Lavasoft

2008-12-03 16:11:20 ----D---- C:\ProgramData\Lavasoft

2008-12-03 16:10:38 ----D---- C:\Program Files\Common Files\Wise Installation Wizard

2008-12-01 22:57:33 ----D---- C:\Program Files\Microsoft Works

2008-12-01 22:57:13 ----D---- C:\Program Files\Microsoft Visual Studio

2008-12-01 22:57:13 ----D---- C:\Program Files\Common Files\DESIGNER

2008-12-01 22:56:34 ----D---- C:\Program Files\Microsoft.NET

2008-12-01 22:54:07 ----D---- C:\Program Files\Microsoft Office

2008-12-01 22:54:06 ----D---- C:\ProgramData\Microsoft Help

2008-12-01 22:51:47 ----RHD---- C:\MSOCache

2008-11-30 14:28:55 ----SHD---- C:\Windows\ftpcache

2008-11-30 14:28:37 ----A---- C:\Windows\game.ini

2008-11-30 14:19:23 ----D---- C:\Program Files\Activision

2008-11-30 12:29:43 ----A---- C:\Windows\system32\es.dll

2008-11-29 21:50:37 ----D---- C:\Users\Guilhem\AppData\Roaming\Media Player Classic

2008-11-29 21:50:22 ----A---- C:\Windows\system32\unrar.dll

2008-11-29 21:50:22 ----A---- C:\Windows\system32\rmoc3260.dll

2008-11-29 21:50:22 ----A---- C:\Windows\system32\pndx5032.dll

2008-11-29 21:50:22 ----A---- C:\Windows\system32\pndx5016.dll

2008-11-29 21:50:22 ----A---- C:\Windows\system32\pncrt.dll

2008-11-29 21:50:21 ----A---- C:\Windows\avisplitter.ini

2008-11-29 21:50:19 ----A---- C:\Windows\system32\yv12vfw.dll

2008-11-29 21:50:19 ----A---- C:\Windows\system32\xvidvfw.dll

2008-11-29 21:50:19 ----A---- C:\Windows\system32\xvidcore.dll

2008-11-29 21:50:19 ----A---- C:\Windows\system32\qt-dx331.dll

2008-11-29 21:50:19 ----A---- C:\Windows\system32\dpl100.dll

2008-11-29 21:50:18 ----A---- C:\Windows\system32\divx.dll

2008-11-29 21:50:17 ----A---- C:\Windows\system32\ff_vfw.dll.manifest

2008-11-29 21:50:17 ----A---- C:\Windows\system32\ff_vfw.dll

2008-11-29 21:50:15 ----D---- C:\Users\Guilhem\AppData\Roaming\Real

2008-11-29 21:50:15 ----D---- C:\ProgramData\Real

2008-11-29 21:50:15 ----D---- C:\Program Files\K-Lite Codec Pack

2008-11-29 18:13:37 ----D---- C:\ProgramData\Messenger Plus!

2008-11-29 15:53:23 ----D---- C:\Program Files\Messenger Plus! Live

2008-11-29 15:31:27 ----D---- C:\Users\Guilhem\AppData\Roaming\Apple Computer

2008-11-29 15:31:12 ----DC---- C:\Windows\system32\DRVSTORE

2008-11-29 15:31:12 ----A---- C:\Windows\system32\GEARAspi.dll

2008-11-29 15:30:59 ----D---- C:\Program Files\iPod

2008-11-29 15:30:53 ----D---- C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}

2008-11-29 15:30:53 ----D---- C:\Program Files\iTunes

2008-11-29 15:30:28 ----D---- C:\Program Files\Bonjour

2008-11-29 15:29:57 ----D---- C:\Program Files\QuickTime

2008-11-29 15:29:52 ----D---- C:\ProgramData\Apple Computer

2008-11-29 15:29:41 ----D---- C:\Program Files\Apple Software Update

2008-11-29 15:29:09 ----D---- C:\ProgramData\Apple

2008-11-29 15:29:09 ----D---- C:\Program Files\Common Files\Apple

2008-11-29 13:05:51 ----D---- C:\Users\Guilhem\AppData\Roaming\WinRAR

2008-11-29 13:05:21 ----D---- C:\Program Files\WinRAR

2008-11-29 11:19:08 ----D---- C:\Program Files\Microsoft Silverlight

2008-11-29 11:00:52 ----D---- C:\Users\Guilhem\AppData\Roaming\BitTorrent

2008-11-29 10:42:19 ----D---- C:\Users\Guilhem\AppData\Roaming\Mozilla

2008-11-29 01:13:21 ----A---- C:\Windows\system32\winipsec.dll

2008-11-29 01:13:21 ----A---- C:\Windows\system32\polstore.dll

2008-11-29 01:13:21 ----A---- C:\Windows\system32\IPSECSVC.DLL

2008-11-29 01:13:21 ----A---- C:\Windows\system32\FwRemoteSvr.dll

2008-11-29 01:12:21 ----A---- C:\Windows\system32\riched32.dll

2008-11-29 01:12:21 ----A---- C:\Windows\system32\riched20.dll

2008-11-29 01:12:19 ----A---- C:\Windows\system32\rasser.dll

2008-11-29 01:12:19 ----A---- C:\Windows\system32\rasdiag.dll

2008-11-29 01:12:19 ----A---- C:\Windows\system32\rascfg.dll

2008-11-29 01:12:18 ----A---- C:\Windows\system32\rasmxs.dll

2008-11-29 01:12:18 ----A---- C:\Windows\system32\netcfgx.dll

2008-11-29 01:12:18 ----A---- C:\Windows\system32\msftedit.dll

2008-11-29 01:12:17 ----A---- C:\Windows\system32\wshqos.dll

2008-11-29 01:12:17 ----A---- C:\Windows\system32\ipnathlp.dll

2008-11-29 01:12:17 ----A---- C:\Windows\system32\icsunattend.exe

2008-11-29 01:12:16 ----A---- C:\Windows\system32\traffic.dll

2008-11-29 01:12:16 ----A---- C:\Windows\system32\pacerprf.dll

2008-11-29 01:12:16 ----A---- C:\Windows\system32\localspl.dll

2008-11-29 01:12:16 ----A---- C:\Windows\system32\cdd.dll

2008-11-29 01:12:15 ----A---- C:\Windows\system32\dps.dll

2008-11-29 01:11:21 ----A---- C:\Windows\system32\PortableDeviceTypes.dll

2008-11-29 01:11:21 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll

2008-11-29 01:11:21 ----A---- C:\Windows\system32\PortableDeviceApi.dll

2008-11-29 01:10:23 ----A---- C:\Windows\system32\Apphlpdm.dll

2008-11-29 01:10:20 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll

2008-11-29 01:10:20 ----A---- C:\Windows\system32\gameux.dll

2008-11-29 01:09:18 ----A---- C:\Windows\system32\msoert2.dll

2008-11-29 01:09:18 ----A---- C:\Windows\system32\msoeacct.dll

2008-11-29 01:09:18 ----A---- C:\Windows\system32\ACCTRES.dll

2008-11-29 01:08:20 ----A---- C:\Windows\system32\wtsapi32.dll

2008-11-29 01:08:18 ----A---- C:\Windows\explorer.exe

2008-11-29 01:08:17 ----A---- C:\Windows\system32\sysmain.dll

2008-11-29 01:08:15 ----A---- C:\Windows\system32\wlansvc.dll

2008-11-29 01:08:15 ----A---- C:\Windows\system32\wlansec.dll

2008-11-29 01:08:15 ----A---- C:\Windows\system32\wlanmsm.dll

2008-11-29 01:08:15 ----A---- C:\Windows\system32\wlanhlp.dll

2008-11-29 01:08:15 ----A---- C:\Windows\system32\wlanapi.dll

2008-11-29 01:07:34 ----A---- C:\Windows\system32\WebClnt.dll

2008-11-29 01:04:54 ----A---- C:\Windows\system32\mcmde.dll

2008-11-29 01:04:53 ----A---- C:\Windows\system32\psisdecd.dll

2008-11-29 01:04:53 ----A---- C:\Windows\system32\EncDec.dll

2008-11-29 01:03:44 ----D---- C:\Users\Guilhem\AppData\Roaming\DNA

2008-11-29 01:03:44 ----D---- C:\Program Files\BitTorrent

2008-11-29 01:02:03 ----A---- C:\Windows\system32\shell32.dll

2008-11-29 00:58:44 ----A---- C:\Windows\system32\tzres.dll

2008-11-29 00:57:13 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll

2008-11-29 00:56:33 ----A---- C:\Windows\system32\wmpeffects.dll

2008-11-29 00:54:40 ----D---- C:\Program Files\DNA

2008-11-29 00:54:28 ----A---- C:\Windows\system32\msxml3r.dll

2008-11-29 00:54:28 ----A---- C:\Windows\system32\msxml3.dll

2008-11-29 00:53:35 ----A---- C:\Windows\system32\wmploc.DLL

2008-11-29 00:53:33 ----A---- C:\Windows\system32\wmp.dll

2008-11-29 00:53:33 ----A---- C:\Windows\system32\spwmp.dll

2008-11-29 00:53:32 ----A---- C:\Windows\system32\dxmasf.dll

2008-11-29 00:53:31 ----A---- C:\Windows\system32\MediaMetadataHandler.dll

2008-11-29 00:52:49 ----A---- C:\Windows\system32\wfapigp.dll

2008-11-29 00:52:49 ----A---- C:\Windows\system32\MPSSVC.dll

2008-11-29 00:52:49 ----A---- C:\Windows\system32\icfupgd.dll

2008-11-29 00:52:49 ----A---- C:\Windows\system32\FirewallAPI.dll

2008-11-29 00:52:48 ----A---- C:\Windows\system32\iphlpsvc.dll

2008-11-29 00:52:48 ----A---- C:\Windows\system32\cmifw.dll

2008-11-29 00:52:04 ----A---- C:\Windows\system32\netapi32.dll

2008-11-29 00:51:39 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2

2008-11-29 00:46:52 ----A---- C:\Windows\system32\tcpipcfg.dll

2008-11-29 00:46:52 ----A---- C:\Windows\system32\netcfg.exe

2008-11-29 00:46:51 ----A---- C:\Windows\system32\netiougc.exe

2008-11-29 00:46:00 ----A---- C:\Windows\system32\NlsLexicons0047.dll

2008-11-29 00:46:00 ----A---- C:\Windows\system32\NlsLexicons0046.dll

2008-11-29 00:46:00 ----A---- C:\Windows\system32\NlsLexicons0045.dll

2008-11-29 00:45:59 ----A---- C:\Windows\system32\NlsLexicons0049.dll

2008-11-29 00:45:59 ----A---- C:\Windows\system32\NlsLexicons0039.dll

2008-11-29 00:45:59 ----A---- C:\Windows\system32\NlsLexicons0021.dll

2008-11-29 00:45:59 ----A---- C:\Windows\system32\NlsLexicons0020.dll

2008-11-29 00:45:58 ----A---- C:\Windows\system32\NlsLexicons0022.dll

2008-11-29 00:45:57 ----A---- C:\Windows\system32\NlsLexicons0024.dll

2008-11-29 00:45:56 ----A---- C:\Windows\system32\NlsLexicons0026.dll

2008-11-29 00:45:55 ----A---- C:\Windows\system32\NlsLexicons0027.dll

2008-11-29 00:45:54 ----A---- C:\Windows\system32\NlsLexicons0018.dll

2008-11-29 00:45:54 ----A---- C:\Windows\system32\NlsLexicons0013.dll

2008-11-29 00:45:54 ----A---- C:\Windows\system32\NlsLexicons0011.dll

2008-11-29 00:45:54 ----A---- C:\Windows\system32\NlsLexicons0010.dll

2008-11-29 00:45:53 ----A---- C:\Windows\system32\NlsLexicons0019.dll

2008-11-29 00:45:52 ----A---- C:\Windows\system32\NlsLexicons0003.dll

2008-11-29 00:45:52 ----A---- C:\Windows\system32\NlsLexicons0002.dll

2008-11-29 00:45:52 ----A---- C:\Windows\system32\NlsLexicons0001.dll

2008-11-29 00:45:50 ----A---- C:\Windows\system32\NlsLexicons0009.dll

2008-11-29 00:45:50 ----A---- C:\Windows\system32\NlsLexicons0007.dll

2008-11-29 00:45:49 ----A---- C:\Windows\system32\NlsLexicons004a.dll

2008-11-29 00:45:48 ----A---- C:\Windows\system32\NlsLexicons004c.dll

2008-11-29 00:45:48 ----A---- C:\Windows\system32\NlsLexicons004b.dll

2008-11-29 00:45:47 ----A---- C:\Windows\system32\NlsLexicons004e.dll

2008-11-29 00:45:47 ----A---- C:\Windows\system32\NlsLexicons003e.dll

2008-11-29 00:45:47 ----A---- C:\Windows\system32\NlsLexicons002a.dll

2008-11-29 00:45:46 ----A---- C:\Windows\system32\NlsLexicons001a.dll

2008-11-29 00:45:45 ----A---- C:\Windows\system32\NlsLexicons001d.dll

2008-11-29 00:45:45 ----A---- C:\Windows\system32\NlsLexicons001b.dll

2008-11-29 00:45:44 ----A---- C:\Windows\system32\NlsLexicons000c.dll

2008-11-29 00:45:44 ----A---- C:\Windows\system32\NlsLexicons000a.dll

2008-11-29 00:45:43 ----A---- C:\Windows\system32\NlsLexicons000f.dll

2008-11-29 00:45:43 ----A---- C:\Windows\system32\NlsLexicons000d.dll

2008-11-29 00:45:42 ----A---- C:\Windows\system32\NlsLexicons0416.dll

2008-11-29 00:45:42 ----A---- C:\Windows\system32\NlsLexicons0414.dll

2008-11-29 00:45:41 ----A---- C:\Windows\system32\NlsLexicons081a.dll

2008-11-29 00:45:41 ----A---- C:\Windows\system32\NlsLexicons0816.dll

2008-11-29 00:45:40 ----A---- C:\Windows\system32\NlsModels0011.dll

2008-11-29 00:45:40 ----A---- C:\Windows\system32\NlsData0045.dll

2008-11-29 00:45:39 ----A---- C:\Windows\system32\NlsData0049.dll

2008-11-29 00:45:39 ----A---- C:\Windows\system32\NlsData0047.dll

2008-11-29 00:45:39 ----A---- C:\Windows\system32\NlsData0046.dll

2008-11-29 00:45:38 ----A---- C:\Windows\system32\NlsData0039.dll

2008-11-29 00:45:38 ----A---- C:\Windows\system32\NlsData0022.dll

2008-11-29 00:45:38 ----A---- C:\Windows\system32\NlsData0021.dll

2008-11-29 00:45:38 ----A---- C:\Windows\system32\NlsData0020.dll

2008-11-29 00:45:37 ----A---- C:\Windows\system32\NlsData0026.dll

2008-11-29 00:45:37 ----A---- C:\Windows\system32\NlsData0024.dll

2008-11-29 00:45:36 ----A---- C:\Windows\system32\NlsData0027.dll

2008-11-29 00:45:36 ----A---- C:\Windows\system32\NlsData0011.dll

2008-11-29 00:45:36 ----A---- C:\Windows\system32\NlsData0010.dll

2008-11-29 00:45:35 ----A---- C:\Windows\system32\NlsData0019.dll

2008-11-29 00:45:35 ----A---- C:\Windows\system32\NlsData0018.dll

2008-11-29 00:45:35 ----A---- C:\Windows\system32\NlsData0013.dll

2008-11-29 00:45:35 ----A---- C:\Windows\system32\NlsData0000.dll

2008-11-29 00:45:34 ----A---- C:\Windows\system32\NlsData0003.dll

2008-11-29 00:45:34 ----A---- C:\Windows\system32\NlsData0002.dll

2008-11-29 00:45:34 ----A---- C:\Windows\system32\NlsData0001.dll

2008-11-29 00:45:33 ----A---- C:\Windows\system32\NlsData0009.dll

2008-11-29 00:45:33 ----A---- C:\Windows\system32\NlsData0007.dll

2008-11-29 00:45:32 ----A---- C:\Windows\system32\NlsData004c.dll

2008-11-29 00:45:32 ----A---- C:\Windows\system32\NlsData004b.dll

2008-11-29 00:45:32 ----A---- C:\Windows\system32\NlsData004a.dll

2008-11-29 00:45:31 ----A---- C:\Windows\system32\NlsData004e.dll

2008-11-29 00:45:31 ----A---- C:\Windows\system32\NlsData003e.dll

2008-11-29 00:45:31 ----A---- C:\Windows\system32\NlsData002a.dll

2008-11-29 00:45:31 ----A---- C:\Windows\system32\NlsData001a.dll

2008-11-29 00:45:30 ----A---- C:\Windows\system32\NlsData001b.dll

2008-11-29 00:45:29 ----A---- C:\Windows\system32\NlsData001d.dll

2008-11-29 00:45:29 ----A---- C:\Windows\system32\NlsData000a.dll

2008-11-29 00:45:28 ----A---- C:\Windows\system32\NlsData000f.dll

2008-11-29 00:45:28 ----A---- C:\Windows\system32\NlsData000d.dll

2008-11-29 00:45:28 ----A---- C:\Windows\system32\NlsData000c.dll

2008-11-29 00:45:27 ----A---- C:\Windows\system32\NlsData0416.dll

2008-11-29 00:45:27 ----A---- C:\Windows\system32\NlsData0414.dll

2008-11-29 00:45:27 ----A---- C:\Windows\system32\NaturalLanguage6.dll

2008-11-29 00:45:26 ----A---- C:\Windows\system32\NlsData081a.dll

2008-11-29 00:45:26 ----A---- C:\Windows\system32\NlsData0816.dll

2008-11-29 00:45:25 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll

2008-11-29 00:45:25 ----A---- C:\Windows\system32\NlsData0c1a.dll

2008-11-29 00:40:18 ----A---- C:\Windows\system32\setupapi.dll

2008-11-29 00:39:48 ----A---- C:\Windows\system32\wpd_ci.dll

2008-11-29 00:39:48 ----A---- C:\Windows\system32\srdelayed.exe

2008-11-29 00:39:48 ----A---- C:\Windows\system32\srcore.dll

2008-11-29 00:39:48 ----A---- C:\Windows\system32\srclient.dll

2008-11-29 00:39:48 ----A---- C:\Windows\system32\rstrui.exe

2008-11-29 00:39:47 ----A---- C:\Windows\system32\winresume.exe

2008-11-29 00:39:47 ----A---- C:\Windows\system32\winload.exe

2008-11-29 00:39:47 ----A---- C:\Windows\system32\kd1394.dll

2008-11-29 00:39:47 ----A---- C:\Windows\system32\ci.dll

2008-11-29 00:39:46 ----A---- C:\Windows\system32\umpnpmgr.dll

2008-11-29 00:39:46 ----A---- C:\Windows\system32\drvinst.exe

2008-11-29 00:39:46 ----A---- C:\Windows\system32\dpx.dll

2008-11-29 00:39:46 ----A---- C:\Windows\system32\cfgmgr32.dll

2008-11-29 00:39:45 ----A---- C:\Windows\system32\kbd106n.dll

2008-11-29 00:39:44 ----A---- C:\Windows\system32\oleaut32.dll

2008-11-29 00:39:44 ----A---- C:\Windows\system32\nshhttp.dll

2008-11-29 00:39:43 ----A---- C:\Windows\system32\unlodctr.exe

2008-11-29 00:39:43 ----A---- C:\Windows\system32\prflbmsg.dll

2008-11-29 00:39:43 ----A---- C:\Windows\system32\lodctr.exe

2008-11-29 00:39:43 ----A---- C:\Windows\system32\loadperf.dll

2008-11-29 00:39:42 ----A---- C:\Windows\system32\schedsvc.dll

2008-11-29 00:39:41 ----A---- C:\Windows\system32\f3ahvoas.dll

2008-11-29 00:39:41 ----A---- C:\Windows\system32\dispci.dll

2008-11-29 00:39:41 ----A---- C:\Windows\system32\batt.dll

2008-11-29 00:36:21 ----A---- C:\Windows\system32\WMASF.DLL

2008-11-29 00:36:21 ----A---- C:\Windows\system32\LAPRXY.DLL

2008-11-29 00:36:21 ----A---- C:\Windows\system32\asferror.dll

2008-11-29 00:34:57 ----A---- C:\Windows\system32\gdi32.dll

2008-11-29 00:34:12 ----A---- C:\Windows\system32\SLC.dll

2008-11-29 00:34:11 ----A---- C:\Windows\system32\slwmi.dll

2008-11-29 00:34:11 ----A---- C:\Windows\system32\SLCommDlg.dll

2008-11-29 00:34:11 ----A---- C:\Windows\system32\mcbuilder.exe

2008-11-29 00:34:10 ----A---- C:\Windows\system32\SLUINotify.dll

2008-11-29 00:34:10 ----A---- C:\Windows\system32\SLUI.exe

2008-11-29 00:34:10 ----A---- C:\Windows\system32\SLLUA.exe

2008-11-29 00:34:09 ----A---- C:\Windows\system32\SLsvc.exe

2008-11-29 00:34:09 ----A---- C:\Windows\system32\slcinst.dll

2008-11-29 00:33:22 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll

2008-11-29 00:33:21 ----A---- C:\Windows\system32\WindowsCodecsExt.dll

2008-11-29 00:33:21 ----A---- C:\Windows\system32\WindowsCodecs.dll

2008-11-29 00:31:48 ----A---- C:\Windows\system32\schannel.dll

2008-11-29 00:31:47 ----A---- C:\Windows\system32\ntprint.exe

2008-11-29 00:31:47 ----A---- C:\Windows\system32\ntprint.dll

2008-11-29 00:31:46 ----A---- C:\Windows\system32\dhcpcsvc.dll

2008-11-29 00:31:46 ----A---- C:\Windows\system32\dhcpcmonitor.dll

2008-11-29 00:31:45 ----A---- C:\Windows\system32\dhcpcsvc6.dll

2008-11-29 00:31:45 ----A---- C:\Windows\system32\authui.dll

2008-11-29 00:31:44 ----A---- C:\Windows\system32\msvidc32.dll

2008-11-29 00:31:44 ----A---- C:\Windows\system32\msvfw32.dll

2008-11-29 00:31:44 ----A---- C:\Windows\system32\msrle32.dll

2008-11-29 00:31:44 ----A---- C:\Windows\system32\mciavi32.dll

2008-11-29 00:31:44 ----A---- C:\Windows\system32\avifil32.dll

2008-11-29 00:31:44 ----A---- C:\Windows\system32\avicap32.dll

2008-11-29 00:31:43 ----A---- C:\Windows\system32\sendmail.dll

2008-11-29 00:31:02 ----A---- C:\Windows\system32\win32spl.dll

2008-11-29 00:31:02 ----A---- C:\Windows\system32\printcom.dll

2008-11-29 00:30:29 ----A---- C:\Windows\system32\wshrm.dll

2008-11-29 00:29:53 ----A---- C:\Windows\system32\sbunattend.exe

2008-11-29 00:29:06 ----A---- C:\Windows\system32\dnsrslvr.dll

2008-11-29 00:29:06 ----A---- C:\Windows\system32\dnscacheugc.exe

2008-11-29 00:29:06 ----A---- C:\Windows\system32\dnsapi.dll

2008-11-29 00:27:53 ----A---- C:\Windows\system32\rpcrt4.dll

2008-11-29 00:27:14 ----A---- C:\Windows\system32\INETRES.dll

2008-11-29 00:27:14 ----A---- C:\Windows\system32\inetcomm.dll

2008-11-29 00:26:41 ----A---- C:\Windows\system32\connect.dll

2008-11-29 00:26:11 ----A---- C:\Windows\system32\wmi.dll

2008-11-29 00:26:11 ----A---- C:\Windows\system32\imagehlp.dll

2008-11-29 00:25:44 ----A---- C:\Windows\system32\quartz.dll

2008-11-29 00:23:41 ----A---- C:\Windows\system32\ntoskrnl.exe

2008-11-29 00:23:41 ----A---- C:\Windows\system32\ntkrnlpa.exe

2008-11-29 00:23:06 ----A---- C:\Windows\system32\msxml6r.dll

2008-11-29 00:23:06 ----A---- C:\Windows\system32\msxml6.dll

2008-11-29 00:21:21 ----A---- C:\Windows\system32\ieapfltr.dll

2008-11-29 00:21:21 ----A---- C:\Windows\system32\advpack.dll

2008-11-29 00:21:20 ----A---- C:\Windows\system32\wininet.dll

2008-11-29 00:21:20 ----A---- C:\Windows\system32\jsproxy.dll

2008-11-29 00:21:20 ----A---- C:\Windows\system32\dxtrans.dll

2008-11-29 00:21:19 ----A---- C:\Windows\system32\dxtmsft.dll

2008-11-29 00:21:18 ----A---- C:\Windows\system32\ieui.dll

2008-11-29 00:21:18 ----A---- C:\Windows\system32\ieframe.dll

2008-11-29 00:21:15 ----A---- C:\Windows\system32\mshtmled.dll

2008-11-29 00:21:15 ----A---- C:\Windows\system32\mshtml.dll

2008-11-29 00:21:12 ----A---- C:\Windows\system32\mstime.dll

2008-11-29 00:21:12 ----A---- C:\Windows\system32\icardie.dll

2008-11-29 00:21:10 ----A---- C:\Windows\system32\ieUnatt.exe

2008-11-29 00:21:09 ----A---- C:\Windows\system32\urlmon.dll

2008-11-29 00:21:08 ----A---- C:\Windows\system32\pngfilt.dll

2008-11-29 00:21:08 ----A---- C:\Windows\system32\iesetup.dll

2008-11-29 00:21:08 ----A---- C:\Windows\system32\iertutil.dll

2008-11-29 00:21:08 ----A---- C:\Windows\system32\iernonce.dll

2008-11-29 00:21:08 ----A---- C:\Windows\system32\ie4uinit.exe

2008-11-29 00:19:49 ----A---- C:\Windows\system32\qmgr.dll

2008-11-29 00:06:19 ----D---- C:\ProgramData\Avira

2008-11-29 00:06:19 ----D---- C:\Program Files\Avira

2008-11-28 23:38:31 ----D---- C:\Program Files\CCleaner

2008-11-28 23:34:47 ----D---- C:\ProgramData\Adobe

2008-11-28 23:34:44 ----D---- C:\Program Files\Common Files\Adobe

2008-11-28 23:21:09 ----D---- C:\Windows\PCHEALTH

2008-11-28 23:09:12 ----SHDC---- C:\Program Files\Common Files\WindowsLiveInstaller

2008-11-28 23:08:59 ----D---- C:\Program Files\Windows Live

2008-11-28 23:06:50 ----D---- C:\ProgramData\WLInstaller

2008-11-28 22:54:27 ----D---- C:\ProgramData\Google

2008-11-28 22:49:59 ----D---- C:\Program Files\Mozilla Firefox

2008-11-28 22:48:28 ----D---- C:\Users\Guilhem\AppData\Roaming\Macromedia

2008-11-28 22:44:05 ----A---- C:\Windows\system32\wups2.dll

2008-11-28 22:44:05 ----A---- C:\Windows\system32\wucltux.dll

2008-11-28 22:44:05 ----A---- C:\Windows\system32\wuaueng.dll

2008-11-28 22:44:05 ----A---- C:\Windows\system32\wuauclt.exe

2008-11-28 22:43:42 ----A---- C:\Windows\system32\wups.dll

2008-11-28 22:43:42 ----A---- C:\Windows\system32\wudriver.dll

2008-11-28 22:43:42 ----A---- C:\Windows\system32\wuapi.dll

2008-11-28 22:43:26 ----A---- C:\Windows\system32\wuwebv.dll

2008-11-28 22:43:26 ----A---- C:\Windows\system32\wuapp.exe

2008-11-28 22:34:33 ----D---- C:\Users\Guilhem\AppData\Roaming\Adobe

2008-11-28 22:25:16 ----D---- C:\Users\Guilhem\AppData\Roaming\ATI

2008-11-28 22:24:23 ----D---- C:\Users\Guilhem\AppData\Roaming\Identities

2008-11-28 22:23:18 ----D---- C:\Program Files\Common Files\Toshiba Shared

2008-11-28 22:23:04 ----D---- C:\Users\Guilhem\AppData\Roaming\InstallShield

2008-11-28 22:22:26 ----D---- C:\Windows\system32\FRA

2008-11-28 22:21:59 ----D---- C:\Windows\system32\Lang

2008-11-28 22:21:59 ----A---- C:\Windows\system32\imsmudlg.exe

2008-11-28 22:21:59 ----A---- C:\Windows\system32\difxapi.dll

2008-11-28 22:19:13 ----D---- C:\ProgramData\ToshibaEurope

2008-11-28 22:19:02 ----SD---- C:\Users\Guilhem\AppData\Roaming\Microsoft

2008-11-28 22:19:02 ----D---- C:\Users\Guilhem\AppData\Roaming\Media Center Programs

2008-11-28 22:14:52 ----SHD---- C:\ProgramData\ModËles

2008-11-28 22:14:52 ----SHD---- C:\ProgramData\Menu DÈmarrer

2008-11-28 22:14:52 ----SHD---- C:\ProgramData\Favoris

2008-11-28 22:14:52 ----SHD---- C:\ProgramData\Bureau

2008-11-28 22:14:52 ----SHD---- C:\Program Files\Fichiers communs

2008-11-28 21:11:02 ----D---- C:\Program Files\Synaptics

2008-11-28 21:06:26 ----D---- C:\Program Files\Camera Assistant Software for Toshiba

2008-11-28 21:04:31 ----D---- C:\Program Files\ATI Technologies

2008-11-28 21:03:52 ----D---- C:\Program Files\ATI

2008-11-28 21:02:59 ----D---- C:\Windows\SoftwareDistribution

2008-11-28 20:59:58 ----SHD---- C:\System Volume Information

 

======List of files/folders modified in the last 1 months======

 

2008-12-03 22:25:34 ----RD---- C:\Program Files

2008-12-03 22:25:32 ----D---- C:\Windows\Temp

2008-12-03 22:22:27 ----D---- C:\Windows\System32

2008-12-03 22:22:26 ----D---- C:\Windows\inf

2008-12-03 22:22:26 ----A---- C:\Windows\system32\PerfStringBackup.INI

2008-12-03 22:16:37 ----D---- C:\Windows

2008-12-03 17:15:29 ----D---- C:\Windows\winsxs

2008-12-03 17:15:25 ----D---- C:\Windows\system32\catroot

2008-12-03 17:14:24 ----D---- C:\Windows\system32\fr-FR

2008-12-03 16:11:49 ----SHD---- C:\Windows\Installer

2008-12-03 16:11:24 ----D---- C:\Windows\system32\drivers

2008-12-03 16:11:20 ----HD---- C:\ProgramData

2008-12-03 16:10:38 ----D---- C:\Program Files\Common Files

2008-12-03 15:12:16 ----D---- C:\Windows\system32\catroot2

2008-12-01 22:58:14 ----RSD---- C:\Windows\assembly

2008-12-01 22:57:31 ----D---- C:\Program Files\Common Files\microsoft shared

2008-12-01 22:57:10 ----D---- C:\Windows\ShellNew

2008-12-01 22:56:47 ----RSD---- C:\Windows\Fonts

2008-12-01 22:56:34 ----SD---- C:\ProgramData\Microsoft

2008-12-01 22:54:47 ----A---- C:\Windows\win.ini

2008-12-01 22:54:44 ----D---- C:\Program Files\Common Files\System

2008-12-01 22:37:52 ----D---- C:\Windows\servicing

2008-11-30 14:28:40 ----HD---- C:\Program Files\InstallShield Installation Information

2008-11-30 00:03:07 ----D---- C:\Windows\Debug

2008-11-29 19:55:14 ----D---- C:\Windows\Prefetch

2008-11-29 19:18:47 ----D---- C:\Windows\system32\WDI

2008-11-29 15:30:21 ----D---- C:\Program Files\Internet Explorer

2008-11-29 02:08:52 ----D---- C:\Windows\Microsoft.NET

2008-11-29 02:07:56 ----ASH---- C:\Program Files\desktop.ini

2008-11-29 02:07:42 ----D---- C:\Windows\rescache

2008-11-29 02:03:18 ----D---- C:\Windows\system32\ras

2008-11-29 02:03:18 ----D---- C:\Windows\system32\icsxml

2008-11-29 02:03:18 ----D---- C:\Program Files\Windows Calendar

2008-11-29 02:03:17 ----D---- C:\Windows\AppPatch

2008-11-29 02:03:16 ----D---- C:\Windows\system32\wbem

2008-11-29 02:03:16 ----D---- C:\Program Files\Windows Mail

2008-11-29 02:03:15 ----D---- C:\Windows\system32\XPSViewer

2008-11-29 02:03:15 ----D---- C:\Windows\ehome

2008-11-29 02:03:10 ----D---- C:\Program Files\Windows Media Player

2008-11-29 02:03:07 ----D---- C:\Windows\system32\migration

2008-11-29 02:03:01 ----D---- C:\Windows\system32\SLUI

2008-11-29 02:02:59 ----D---- C:\Program Files\Windows Sidebar

2008-11-29 00:38:03 ----HD---- C:\Windows\msdownld.tmp

2008-11-29 00:01:34 ----D---- C:\Windows\Tasks

2008-11-29 00:01:34 ----D---- C:\Windows\system32\Tasks

2008-11-28 23:34:44 ----D---- C:\Program Files\Adobe

2008-11-28 23:24:57 ----D---- C:\Windows\system32\Macromed

2008-11-28 23:24:57 ----D---- C:\ProgramData\Symantec

2008-11-28 23:07:40 ----D---- C:\Program Files\Common Files\Symantec Shared

2008-11-28 22:46:39 ----SD---- C:\Windows\Downloaded Program Files

2008-11-28 22:25:14 ----D---- C:\Toshiba

2008-11-28 22:25:00 ----SHD---- C:\$Recycle.Bin

2008-11-28 22:23:20 ----D---- C:\ProgramData\Toshiba

2008-11-28 22:23:17 ----D---- C:\Program Files\TOSHIBA

2008-11-28 22:22:24 ----D---- C:\Program Files\Intel

2008-11-28 22:19:02 ----RD---- C:\Users

2008-11-28 22:14:52 ----D---- C:\Program Files\Windows NT

2008-11-28 21:10:34 ----D---- C:\Windows\system32\restore

2008-11-28 21:09:08 ----D---- C:\Windows\Panther

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys [2007-02-27 11840]

R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2008-10-30 75072]

R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]

R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2006-11-28 1161888]

R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-06-21 2600960]

R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys [2008-05-20 52032]

R3 CmBatt;Pilote pour Batterie ‡ mÈthode de contrÙle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-11-29 14208]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]

R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-06-12 1787816]

R3 NETw4v32;Pilote de carte Intel® Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-09-26 2251776]

R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-04-30 81408]

R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-11-29 82432]

R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-06-20 200112]

R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-18 16128]

R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2007-01-24 290304]

R3 usbvideo;Chicony USB 2.0 Camera; C:\Windows\System32\Drivers\usbvideo.sys [2006-11-02 132352]

R3 UVCFTR;UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [2007-04-16 11776]

R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]

S3 athr;Pilote de pÈriphÈrique LAN sans fil extensible Atheros; C:\Windows\system32\DRIVERS\athr.sys [2006-11-02 467456]

S3 drmkaud;Filtre de dÈcodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]

S3 MSKSSRV;Proxy de service de rÈpartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]

S3 MSPCLOCK;Proxy d'horloge de rÈpartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]

S3 MSPQM;Proxy de gestion de qualitÈ de rÈpartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]

S3 MSTEE;Convertisseur en T/site-‡-site de rÈpartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]

S3 NETw3v32;Pilote de carte Intel® PRO/Wireless 3945ABG pour Windows Vista 32†bits; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]

S3 Tosrfcom;Tosrfcom; C:\Windows\system32\drivers\Tosrfcom.sys []

S3 TpChoice;Touch Pad Detection Filter driver; C:\Windows\system32\DRIVERS\TpChoice.sys []

S4 KR10I;KR10I; C:\Windows\system32\drivers\kr10i.sys [2007-01-18 219392]

S4 KR10N;KR10N; C:\Windows\system32\drivers\kr10n.sys [2007-01-18 211072]

S4 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2006-10-23 9216]

S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-09-10 611664]

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2006-10-05 9216]

R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]

R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]

R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-06-21 606208]

R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]

R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2006-11-14 40960]

R2 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2007-04-25 355096]

R2 TNaviSrv;TOSHIBA Navi Support Service; C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe [2007-05-17 114688]

R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2006-05-25 114688]

R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2007-03-29 427576]

R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-08-23 49152]

R3 iPod Service;Service de líiPod; C:\Program Files\iPod\bin\iPodService.exe [2008-11-20 536872]

S2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe []

S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]

S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

 

-----------------EOF-----------------

[pear]

Bonjour,

 

Rien d'apparent!

 

Téléchargez sur le bureau MBR Rootkit Detector 0.2.4 by gmer

IMPORTANT: Si une alerte de l' antivirus apparait pour le fichier gmer.sys ou gmer.exe, ne pas s'en préoccuper ,laissez Gmer s'installer

Désactiver provisoirement les programmes de protection (antivirus, firewall,anti-spyware...)

 

Clic sur l'onglet "rootkit"

Clic sur Scan

- Un rapport sera généré -> mbr.log.

En Copier/coller le résultat dans la réponse .

[Guilhem89]

Mon PC ramait beaucoup, alors je l'ai freformaté, merci quand même!!!!!