Posez votre question Format imprimable Liste des forums Aidez-les Statistiques Rechercher Charte Forum Virus-Sécurité

Virus zidane vs tito

Dernière réponse le 16 mai 2009 à 08:22:11 yassine1204, le 30 avr 2009 à 15:46:36

Signaler ce message aux modérateurs

Bonjour,

comment suprimer ce virus de zidane vs tito de 334 ko

merci

Configuration: Windows XP Internet Explorer 6.0

Meilleures réponses pour « virus zidane vs tito » dans :

Virus maradon , Zidan vs tito Voir

Virus jojo,maradona,akon (Résolu) Voir

Memory stick pro duo Voir

Virus et Malwares ... Le truc pour les éliminer Voir

[Virus] Que faire quand on est infecté ? VoirSi vous savez ou vous pensez être infecté par un virus Si vous savez ou vous pensez être infecté par un virus, il faut s'en occuper le plus rapidement possible car l'infection peut inviter d'autres infections dans votre PC et votre système risque...

[Virus] System Volume Information VoirSommaire Explications Exemple Supprimer un virus logé dans le dossier System Volume Information sous Windows XP Informations supplémentaires Explications Le dossier System Volume Information est utilisé par Windows XP pour...

Pop up nommés cid virus? (Résolu) Voir

C est grave? Voir

Virus sur le nom de Zidan Voir

Télécharger AVG Anti-Virus Voir

Télécharger Kaspersky Anti-Virus Voir

Télécharger Clean Virus MSN VoirLes virus se rencontrent dorénavant un peu partout sur le net par tous les moyens imaginables. Après les mails virosés, maintenant ils s'attaquent à la messagerie instantanée. Clean Virus MSN est un outil qui détecte automatiquement les virus qui...

WWE SmackDown vs. RAW 2009 Voir

WWE SmackDown! vs. RAW 2009 Voir

WWE SmackDown vs. RAW 2009 Voir

Virus - Introduction aux virus VoirVirus Un virus est un petit programme informatique situé dans le corps d'un autre, qui, lorsqu'on l'exécute, se charge en mémoire et exécute les instructions que son auteur a programmé. La définition d'un virus pourrait être la suivante : « Tout...

Utilitaires de désinfection des principaux virus et vers VoirQu'est-ce qu'un kit de désinfection ? Un kit de désinfection est un petit exécutable dont le but est de nettoyer une machine infectée par un virus particulier. Chaque kit de désinfection est donc uniquement capable d'éradiquer un type de virus...

Posez votre question Répondre

Chiquitine29, le 30 avr 2009 à 15:47:37

Salut ,

Télécharge random's system information tool (RSIT) et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer RSIT.

Lis le contenu de l'écran Disclaimer puis clique sur Continue (si tu acceptes les conditions).

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.

Poste le contenu de log.txt @+

Répondre à Chiquitine29

mortederire, le 16 mai 2009 à 08:18:55

Info.txt logfile of random's system information tool 1.06 2009-05-16 08:13:40

======Uninstall list======

-->C:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Acer OrbiCam-->Rundll32.exe BisonR07.dll,WinMainRmv
Adobe Acrobat 6.0 Professional - English, Français, Deutsch-->MsiExec.exe /I{AC76BA86-1033-F400-7760-000000000001}
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Atheros Wireless LAN-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3E9CA789-3AAC-4F5E-B42D-EA4232DAC60F}\setup.exe" -l0x9 UNINSTALL
ATI - Utilitaire de désinstallation du logiciel-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->MsiExec.exe /I{79B05AF4-8894-49A1-9FF4-53F0142D85E1}
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
ATI Parental Control & Encoder-->MsiExec.exe /I{8D70145A-3BD3-4DBF-9CBF-223EF4A43257}
Broadcom 802.11 Network Adapter-->"C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter"
Broadcom Wireless LAN Driver 4.100.15.7_Negative_Foxconn-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7CB9546E-BF2C-47DE-9DB4-C4364FBE57EC}\Setup.exe" -l0x9 UNINSTALL
Canon LBP2900-->C:\Program Files\Canon\PrnUninstall\Canon LBP2900\CNAB4UN.EXE
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Kaspersky Internet Security 7.0-->MsiExec.exe /I{C774410D-3EF9-4DE7-AC01-332613163ECF}
Kaspersky Internet Security 7.0-->MsiExec.exe /I{C774410D-3EF9-4DE7-AC01-332613163ECF}
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft User-Mode Driver Framework Feature Pack 1.0.0 (Pre-Release 5348)-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mobile Partner-->C:\Program Files\Mobile Partner\uninst.exe
Nero 7 Ultra Edition-->MsiExec.exe /X{A20A58C4-6784-4B4B-86CC-94E2E3671036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
REALTEK GbE & FE Ethernet PCI NIC Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}\setup.exe" -l0x40c -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
ScanSoft OmniPage 16-->MsiExec.exe /I{DF74C7BA-5C9F-4F17-8B6F-5ECE08280F34}
ScanSoft PDF Create! 4-->MsiExec.exe /I{67EC0AB2-8CF7-4415-9F70-7FBC593C0D5E}
Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
SMSC IrCC V5.1.3600.7-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F1B8DB67-D30E-4FF9-A85F-3CEE51825AA2}\setup.exe" -l0x40c UNINSTALL
Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_2BFA&SUBSYS_1025009F\HXFSETUP.EXE -U -IAcrS09Fp.inf
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
VLC media player 0.9.4-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"

======Security center information======

AV: Kaspersky Internet Security (outdated)
FW: Kaspersky Internet Security

======System event log======

Computer Name: AMINE-6492DD78F
Event Code: 15007
Message: La réservation de l'espace de nom identifié par le préfixe d'URL http://*:2869/ a été correctement ajoutée.

Record Number: 5
Source Name: HTTP
Time Written: 20090512134922.000000+120
Event Type: Informations
User:

Computer Name: AMINE-6492DD78F
Event Code: 3260
Message: Cet ordinateur a correctement été joint au workgroup 'WORKGROUP'.

Record Number: 4
Source Name: Workstation
Time Written: 20090512134514.000000+120
Event Type: Informations
User:

Computer Name: AMINE-6492DD78F
Event Code: 6011
Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers AMINE-6492DD78F.

Record Number: 3
Source Name: EventLog
Time Written: 20090512134232.000000+120
Event Type: Informations
User:

Computer Name: MACHINENAME
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.

Record Number: 2
Source Name: EventLog
Time Written: 20090512153414.000000+120
Event Type: Informations
User:

Computer Name: MACHINENAME
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.

Record Number: 1
Source Name: EventLog
Time Written: 20090512153414.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: AMINE-6492DD78F
Event Code: 1000
Message: Les compteurs de performances pour le service MSDTC (MSDTC) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.

Record Number: 5
Source Name: LoadPerf
Time Written: 20090512134640.000000+120
Event Type: Informations
User:

Computer Name: AMINE-6492DD78F
Event Code: 1000
Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.

Record Number: 4
Source Name: LoadPerf
Time Written: 20090512134637.000000+120
Event Type: Informations
User:

Computer Name: AMINE-6492DD78F
Event Code: 1000
Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.

Record Number: 3
Source Name: LoadPerf
Time Written: 20090512134316.000000+120
Event Type: Informations
User:

Computer Name: AMINE-6492DD78F
Event Code: 1000
Message: Les compteurs de performances pour le service PSched (PSched) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.

Record Number: 2
Source Name: LoadPerf
Time Written: 20090512134244.000000+120
Event Type: Informations
User:

Computer Name: AMINE-6492DD78F
Event Code: 1000
Message: Les compteurs de performances pour le service RSVP (QoS RSVP) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.

Record Number: 1
Source Name: LoadPerf
Time Written: 20090512134243.000000+120
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 76 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4c02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------

Répondre à mortederire

mortederire, le 16 mai 2009 à 08:22:11

Logfile of random's system information tool 1.06 (written by random/random)
Run by Microsoft at 2009-05-16 08:07:14
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 47 GB (88%) free of 53 GB
Total RAM: 446 MB (8% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:09:23, on 16/05/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\WINDOWS\system32\logoneui.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\CNAB4RPK.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\WINDOWS\system32\logoneui.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Mobile Partner\Mobile Partner.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\AhnRpta.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Microsoft\Bureau\RSIT.exe
C:\Program Files\trend micro\Microsoft.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://login.yahoo.com/config/mail?&.src=ym&.intl=fr&.done=http://fr.mail.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: Shell=Explorer.exe logoneui.exe
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ScanSoft OmniPage 16-reminder] "C:\Program Files\ScanSoft\OmniPage16\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Application Data\ScanSoft\OmniPage 16\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [kava] C:\WINDOWS\system32\kavo.exe
O4 - HKCU\..\Run: [cdoosoft] C:\WINDOWS\system32\olhrwef.exe
O4 - HKCU\..\Run: [ertyuop] C:\WINDOWS\system32\rttrwq.exe
O4 - HKCU\..\Run: [firewall 2008] C:\WINDOWS\system32\logoneui.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Assistant d'Acrobat.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{1D22F012-A84F-40E9-9DAA-FC23AF42B892}: NameServer = 172.25.1.53 172.25.1.54
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
End of file - 6973 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Maintenance en 1 clic.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll [2003-05-15 50376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-11-07 1088296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll [2003-05-15 147456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll [2003-05-15 147456]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"=C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2006-06-28 16248320]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"AzMixerSel"=C:\Program Files\Realtek\InstallShield\AzMixerSel.exe [2006-04-15 53248]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-03-03 761946]
"Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2005-11-11 1236992]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe [2008-02-08 227856]
"ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2005-02-16 221184]
"ISUSScheduler"=C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [2005-02-16 81920]
"ScanSoft OmniPage 16-reminder"=C:\Program Files\ScanSoft\OmniPage16\Ereg\Ereg.exe [2007-07-20 328992]
"SSBkgdUpdate"=C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe [2007-05-16 153136]
"kava"=C:\WINDOWS\system32\kavo.exe [2008-10-12 105931]
"cdoosoft"=C:\WINDOWS\system32\olhrwef.exe [2009-05-16 106336]
"ertyuop"=C:\WINDOWS\system32\rttrwq.exe [2009-05-12 105003]
"firewall 2008"=C:\WINDOWS\system32\logoneui.exe [2009-03-27 387584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2006-01-02 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
C:\WINDOWS\SkyTel.EXE [2006-05-16 2879488]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Assistant d'Acrobat.lnk - C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-04-27 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2008-02-08 219664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-05-09 52224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{BB4C402F-882A-4526-8C08-51278EA437C1}"=C:\WINDOWS\system32\afmain1.dll [2004-08-04 78848]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=1
"DisableRegistryTools"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NofolderOptions"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\WINDOWS\system32\CNAB4RPK.EXE"="C:\WINDOWS\system32\CNAB4RPK.EXE:*:Enabled:Canon LBP2900 RPC Server Process"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{09bafbdd-3fe7-11de-b794-0016d4b61124}]
shell\AutoRun\command - G:\w.com
shell\open\command - G:\w.com

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{cce6f9b5-3fbe-11de-b792-0016d4b61124}]
shell\AutoRun\command - G:\w.com
shell\open\command - G:\w.com

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{db051e76-3ef0-11de-8b44-806d6172696f}]
shell\AutoRun\command - D:\il0byu3h.com
shell\open\command - D:\il0byu3h.com

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ddc13151-3f1e-11de-b78e-0016d4b61124}]
shell\AutoRun\command - H:\w.com
shell\open\command - H:\w.com

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f113deb4-3f1d-11de-b78d-0016d4b61124}]
shell\AutoRun\command - F:\nyg1xq.cmd
shell\explore\command - F:\nyg1xq.cmd
shell\open\command - F:\nyg1xq.cmd

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f113deb7-3f1d-11de-b78d-0016d4b61124}]
shell\AutoRun\command - G:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f113e470-3f1d-11de-b78d-0016d4b61124}]
shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f390484c-3fac-11de-b791-0016d4b61124}]
shell\AutoRun\command - F:\AutoRun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f390487e-3fac-11de-b791-0016d4b61124}]
shell\AutoRun\command - G:\nyg1xq.cmd
shell\explore\command - G:\nyg1xq.cmd
shell\open\command - G:\nyg1xq.cmd

======List of files/folders created in the last 1 months======

2009-05-16 08:07:28 ----D---- C:\Program Files\trend micro
2009-05-16 08:07:14 ----D---- C:\rsit
2009-05-16 08:00:31 ----RSH---- C:\icxpa.cmd
2009-05-15 22:34:28 ----RASH---- C:\WINDOWS\system32\autorun.ini
2009-05-15 20:51:00 ----RASH---- C:\logoneui.exe
2009-05-15 20:50:59 ----D---- C:\WINDOWS\system32\boote
2009-05-15 20:50:59 ----A---- C:\info.bat
2009-05-15 20:50:58 ----RASH---- C:\WINDOWS\system32\logoneui.exe
2009-05-15 18:23:31 ----A---- C:\WINDOWS\IE4 Error Log.txt
2009-05-13 20:22:21 ----RSH---- C:\WINDOWS\system32\nmdfgds2.dll
2009-05-13 16:52:36 ----A---- C:\WINDOWS\system32\CNAB4SMK.DLL
2009-05-13 16:52:36 ----A---- C:\WINDOWS\system32\CNAB4RPK.EXE
2009-05-13 16:52:36 ----A---- C:\WINDOWS\system32\CNAB4PTU.DLL
2009-05-13 16:52:36 ----A---- C:\WINDOWS\system32\CNAB4LMK.DLL
2009-05-13 16:52:36 ----A---- C:\WINDOWS\system32\CNAB4EMU.DLL
2009-05-13 16:52:07 ----D---- C:\Program Files\Canon
2009-05-13 15:20:56 ----D---- C:\Documents and Settings\Microsoft\Application Data\Zeon
2009-05-13 15:20:40 ----D---- C:\Documents and Settings\Microsoft\Application Data\ScanSoft
2009-05-13 15:03:26 ----HD---- C:\WINDOWS\system32\GroupPolicy
2009-05-13 15:03:22 ----D---- C:\Program Files\Fichiers communs\ScanSoft Shared
2009-05-13 15:03:14 ----D---- C:\Documents and Settings\All Users\Application Data\Zeon
2009-05-13 15:02:16 ----A---- C:\WINDOWS\MAXLINK.INI
2009-05-13 15:02:04 ----D---- C:\Documents and Settings\All Users\Application Data\InstallShield
2009-05-13 15:01:19 ----D---- C:\Documents and Settings\All Users\Application Data\ScanSoft
2009-05-13 14:59:38 ----D---- C:\Program Files\ScanSoft
2009-05-13 13:01:28 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem #2.txt
2009-05-13 10:44:42 ----D---- C:\WINDOWS\pss
2009-05-13 00:26:50 ----D---- C:\Documents and Settings\Microsoft\Application Data\Macromedia
2009-05-12 23:56:59 ----D---- C:\Documents and Settings\Microsoft\Application Data\AdobeUM
2009-05-12 23:41:51 ----D---- C:\Program Files\Microsoft Works
2009-05-12 23:41:33 ----D---- C:\Program Files\MSBuild
2009-05-12 23:41:12 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2009-05-12 23:40:11 ----D---- C:\Program Files\Microsoft.NET
2009-05-12 23:36:58 ----SHD---- C:\Config.Msi
2009-05-12 23:32:40 ----D---- C:\Program Files\Microsoft Visual Studio 8
2009-05-12 23:30:58 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-05-12 22:50:07 ----D---- C:\Documents and Settings\Microsoft\Application Data\Adobe
2009-05-12 22:48:55 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-05-12 22:48:32 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-05-12 22:47:55 ----D---- C:\Program Files\Adobe
2009-05-12 22:09:30 ----RSH---- C:\il0byu3h.com
2009-05-12 22:09:03 ----RSH---- C:\WINDOWS\system32\rttrwq.exe
2009-05-12 22:09:03 ----RSH---- C:\WINDOWS\system32\mkfght0.dll
2009-05-12 21:28:08 ----RSH---- C:\WINDOWS\system32\nmdfgds1.dll
2009-05-12 21:26:35 ----RSH---- C:\w.com
2009-05-12 21:26:07 ----RSH---- C:\WINDOWS\system32\olhrwef.exe
2009-05-12 21:26:07 ----N---- C:\WINDOWS\system32\nmdfgds0.dll
2009-05-12 21:23:32 ----A---- C:\WINDOWS\AhnRpta.exe
2009-05-12 21:05:54 ----RSH---- C:\nyg1xq.cmd
2009-05-12 21:05:25 ----RSH---- C:\WINDOWS\system32\kavo0.dll
2009-05-12 21:05:25 ----RSH---- C:\WINDOWS\system32\kavo.exe
2009-05-12 20:02:36 ----A---- C:\WINDOWS\ModemLog_HUAWEI Mobile Connect - 3G Modem.txt
2009-05-12 19:57:42 ----D---- C:\Program Files\Mobile Partner
2009-05-12 16:03:45 ----SHD---- C:\RECYCLER
2009-05-12 15:51:27 ----D---- C:\Program Files\Kaspersky Lab
2009-05-12 15:51:27 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2009-05-12 15:50:50 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2009-05-12 15:48:00 ----D---- C:\Documents and Settings\Microsoft\Application Data\Skype
2009-05-12 15:47:49 ----D---- C:\Program Files\Skype
2009-05-12 15:47:48 ----D---- C:\Program Files\Fichiers communs\Skype
2009-05-12 15:47:01 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2009-05-12 15:43:03 ----A---- C:\WINDOWS\system32\TUProgSt.exe
2009-05-12 15:43:02 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2009-05-12 15:43:01 ----A---- C:\WINDOWS\system32\TuneUpDefragService.exe
2009-05-12 15:42:57 ----D---- C:\Documents and Settings\Microsoft\Application Data\TuneUp Software
2009-05-12 15:42:42 ----D---- C:\Documents and Settings\All Users\Application Data\TuneUp Software
2009-05-12 15:42:41 ----D---- C:\Program Files\TuneUp Utilities 2009
2009-05-12 15:42:28 ----A---- C:\WINDOWS\system32\h323log.txt
2009-05-12 15:42:04 ----SHD---- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
2009-05-12 15:41:36 ----A---- C:\WINDOWS\system32\Thawbrkr.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdvntc.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdintel.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdintam.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdinpun.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdinmar.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdinkan.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdinhin.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdinguj.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdindev.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdgeo.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdarmw.dll
2009-05-12 15:41:35 ----RA---- C:\WINDOWS\system32\kbdarme.dll
2009-05-12 15:41:35 ----A---- C:\WINDOWS\system32\c_iscii.dll
2009-05-12 15:41:32 ----RA---- C:\WINDOWS\system32\kbdurdu.dll
2009-05-12 15:41:32 ----RA---- C:\WINDOWS\system32\kbdsyr2.dll
2009-05-12 15:41:32 ----RA---- C:\WINDOWS\system32\kbdsyr1.dll
2009-05-12 15:41:32 ----RA---- C:\WINDOWS\system32\kbdfa.dll
2009-05-12 15:41:32 ----RA---- C:\WINDOWS\system32\kbddiv2.dll
2009-05-12 15:41:32 ----RA---- C:\WINDOWS\system32\kbddiv1.dll
2009-05-12 15:41:32 ----RA---- C:\WINDOWS\system32\kbda3.dll
2009-05-12 15:41:32 ----RA---- C:\WINDOWS\system32\kbda2.dll
2009-05-12 15:41:32 ----RA---- C:\WINDOWS\system32\kbda1.dll
2009-05-12 15:41:32 ----A---- C:\WINDOWS\system32\kbdusa.dll
2009-05-12 15:41:29 ----RA---- C:\WINDOWS\system32\kbdheb.dll
2009-05-12 15:41:24 ----RA---- C:\WINDOWS\system32\kbdth3.dll
2009-05-12 15:41:24 ----RA---- C:\WINDOWS\system32\kbdth2.dll
2009-05-12 15:41:24 ----RA---- C:\WINDOWS\system32\kbdth1.dll
2009-05-12 15:41:24 ----RA---- C:\WINDOWS\system32\kbdth0.dll
2009-05-12 15:41:24 ----A---- C:\WINDOWS\system32\ftlx041e.dll
2009-05-12 15:35:11 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2009-05-12 15:35:11 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2009-05-12 15:35:08 ----RA---- C:\WINDOWS\SET2B.tmp
2009-05-12 15:35:05 ----RA---- C:\WINDOWS\SET1F.tmp
2009-05-12 15:35:03 ----RA---- C:\WINDOWS\SET1C.tmp
2009-05-12 15:34:55 ----D---- C:\WINDOWS\system32\LogFiles
2009-05-12 15:34:48 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2009-05-12 15:34:37 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-05-12 15:34:17 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-05-12 15:32:40 ----A---- C:\WINDOWS\system32\BASSMOD.dll
2009-05-12 15:32:28 ----D---- C:\Program Files\WinRAR
2009-05-12 15:32:07 ----D---- C:\Documents and Settings\Microsoft\Application Data\Yahoo!
2009-05-12 15:32:04 ----D---- C:\Program Files\Yahoo!
2009-05-12 15:32:00 ----D---- C:\Program Files\CCleaner
2009-05-12 15:27:50 ----D---- C:\Program Files\MSN Messenger
2009-05-12 15:26:15 ----D---- C:\Program Files\VideoLAN
2009-05-12 15:24:38 ----A---- C:\WINDOWS\NeroDigital.ini
2009-05-12 15:23:43 ----D---- C:\Documents and Settings\Microsoft\Application Data\ATI
2009-05-12 15:21:39 ----RA---- C:\WINDOWS\system32\preflib.dll
2009-05-12 15:21:37 ----RA---- C:\WINDOWS\system32\ATL71.DLL
2009-05-12 15:21:35 ----RA---- C:\WINDOWS\system32\wltrynt.dll
2009-05-12 15:21:35 ----RA---- C:\WINDOWS\system32\bcmwlu00.exe
2009-05-12 15:21:35 ----RA---- C:\WINDOWS\system32\bcmwlpkt.dll
2009-05-12 15:21:32 ----RA---- C:\WINDOWS\system32\WLTRAY.EXE
2009-05-12 15:21:32 ----RA---- C:\WINDOWS\system32\BCMWLTRY.EXE
2009-05-12 15:21:31 ----RA---- C:\WINDOWS\system32\WLTRYSVC.EXE
2009-05-12 15:21:31 ----RA---- C:\WINDOWS\system32\WLBCGCBPRO731.DLL
2009-05-12 15:21:30 ----RA---- C:\WINDOWS\system32\bcm1xsup.dll
2009-05-12 15:21:29 ----A---- C:\WINDOWS\system32\BCMLogon.dll
2009-05-12 15:20:47 ----A---- C:\WINDOWS\system32\SynTPFcs.dll
2009-05-12 15:20:44 ----A---- C:\WINDOWS\system32\SynTPCo2.dll
2009-05-12 15:20:44 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2009-05-12 15:20:43 ----A---- C:\WINDOWS\system32\SynCtrl.dll
2009-05-12 15:20:43 ----A---- C:\WINDOWS\system32\SynCOM.dll
2009-05-12 15:20:41 ----D---- C:\Program Files\Synaptics
2009-05-12 15:15:49 ----D---- C:\WINDOWS\SMSC
2009-05-12 15:14:18 ----D---- C:\Program Files\Fichiers communs\ATI Technologies
2009-05-12 15:12:49 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2009-05-12 15:12:49 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-05-12 15:11:30 ----A---- C:\WINDOWS\system32\usbui.dll
2009-05-12 15:10:17 ----A---- C:\WINDOWS\imsins.BAK
2009-05-12 15:10:14 ----SHD---- C:\WINDOWS\Installer
2009-05-12 15:10:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-05-12 15:10:13 ----D---- C:\Program Files\Fichiers communs\ODBC
2009-05-12 15:10:13 ----A---- C:\WINDOWS\ODBCINST.INI
2009-05-12 15:10:09 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
2009-05-12 15:10:08 ----RD---- C:\Program Files
2009-05-12 15:10:08 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-05-12 15:10:08 ----D---- C:\Program Files\Fichiers communs
2009-05-12 15:10:05 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-05-12 15:10:05 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-05-12 15:10:05 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-05-12 15:10:03 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2009-05-12 15:10:03 ----RA---- C:\WINDOWS\system32\kbdur.dll
2009-05-12 15:10:03 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2009-05-12 15:10:03 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2009-05-12 15:10:03 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2009-05-12 15:10:03 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2009-05-12 15:10:03 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2009-05-12 15:10:02 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2009-05-12 15:10:02 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2009-05-12 15:10:02 ----RA---- C:\WINDOWS\system32\kbdru.dll
2009-05-12 15:10:02 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2009-05-12 15:10:02 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2009-05-12 15:10:00 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-05-12 15:10:00 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-05-12 15:10:00 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-05-12 15:10:00 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-05-12 15:10:00 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-05-12 15:10:00 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-05-12 15:10:00 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-05-12 15:09:59 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-05-12 15:09:59 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-05-12 15:09:59 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-05-12 15:09:59 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-05-12 15:09:59 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-05-12 15:09:57 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2009-05-12 15:09:57 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2009-05-12 15:09:57 ----RA---- C:\WINDOWS\system32\kbdro.dll
2009-05-12 15:09:57 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2009-05-12 15:09:57 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2009-05-12 15:09:56 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2009-05-12 15:09:56 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2009-05-12 15:09:56 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2009-05-12 15:09:56 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2009-05-12 15:09:56 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2009-05-12 15:09:56 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2009-05-12 15:09:56 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2009-05-12 15:09:56 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2009-05-12 15:09:54 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-05-12 15:09:54 ----A---- C:\WINDOWS\system32\irclass.dll
2009-05-12 15:09:54 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-05-12 15:09:54 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-05-12 15:09:53 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-05-12 15:09:51 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-05-12 15:09:51 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-05-12 15:09:51 ----A---- C:\WINDOWS\system32\batt.dll
2009-05-12 15:09:50 ----A---- C:\WINDOWS\NOTEPAD.EXE
2009-05-12 15:09:47 ----A---- C:\WINDOWS\system32\storprop.dll
2009-05-12 15:09:37 ----RSD---- C:\WINDOWS\assembly
2009-05-12 15:09:35 ----RA---- C:\WINDOWS\SET8.tmp
2009-05-12 15:09:32 ----RA---- C:\WINDOWS\SET4.tmp
2009-05-12 15:09:30 ----RA---- C:\WINDOWS\SET3.tmp
2009-05-12 15:09:22 ----D---- C:\WINDOWS\system32\CatRoot2
2009-05-12 15:09:22 ----D---- C:\WINDOWS\system32\CatRoot
2009-05-12 15:09:04 ----D---- C:\WINDOWS\Microsoft.NET
2009-05-12 15:08:53 ----A---- C:\WINDOWS\setuplog.txt
2009-05-12 15:08:49 ----D---- C:\Documents and Settings
2009-05-12 15:08:48 ----SHD---- C:\System Volume Information
2009-05-12 15:08:07 ----RA---- C:\WINDOWS\system32\atiiiexx.dll
2009-05-12 15:07:45 ----D---- C:\Program Files\ATI Technologies
2009-05-12 15:06:54 ----RA---- C:\WINDOWS\EMCRI.dll
2009-05-12 15:05:25 ----D---- C:\WINDOWS\BisonC07
2009-05-12 15:05:20 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-05-12 15:05:20 ----A---- C:\WINDOWS\system32\BisonR07.dll
2009-05-12 15:05:20 ----A---- C:\WINDOWS\M2000T07.ini
2009-05-12 15:05:17 ----D---- C:\WINDOWS\Options
2009-05-12 15:05:11 ----D---- C:\Documents and Settings\Microsoft\Application Data\InstallShield
2009-05-12 15:04:48 ----D---- C:\WINDOWS\system32\Lang
2009-05-12 15:04:30 ----RA---- C:\WINDOWS\system32\mdmxsdk.dll
2009-05-12 15:04:30 ----D---- C:\Program Files\CONEXANT
2009-05-12 15:04:30 ----A---- C:\WINDOWS\system32\Uci32105.dll
2009-05-12 15:01:25 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-05-12 15:01:25 ----RSD---- C:\WINDOWS\Fonts
2009-05-12 15:01:25 ----RD---- C:\WINDOWS\Web
2009-05-12 15:01:25 ----HD---- C:\WINDOWS\inf
2009-05-12 15:01:25 ----D---- C:\WINDOWS\WinSxS
2009-05-12 15:01:25 ----D---- C:\WINDOWS\twain_32
2009-05-12 15:01:25 ----D---- C:\WINDOWS\Temp
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\wins
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\wbem
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\usmt
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\spool
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\ShellExt
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\Setup
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\ras
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\oobe
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\npp
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\mui
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\inetsrv
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\IME
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\icsxml
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\ias
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\export
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\drivers
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\dhcp
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\config
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\3com_dmi
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\3076
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\2052
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\1054
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\1042
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\1041
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\1037
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\1036
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\1033
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\1031
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\1028
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32\1025
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system32
2009-05-12 15:01:25 ----D---- C:\WINDOWS\system
2009-05-12 15:01:25 ----D---- C:\WINDOWS\security
2009-05-12 15:01:25 ----D---- C:\WINDOWS\Resources
2009-05-12 15:01:25 ----D---- C:\WINDOWS\repair
2009-05-12 15:01:25 ----D---- C:\WINDOWS\Provisioning
2009-05-12 15:01:25 ----D---- C:\WINDOWS\PeerNet
2009-05-12 15:01:25 ----D---- C:\WINDOWS\pchealth
2009-05-12 15:01:25 ----D---- C:\WINDOWS\mui
2009-05-12 15:01:25 ----D---- C:\WINDOWS\msapps
2009-05-12 15:01:25 ----D---- C:\WINDOWS\msagent
2009-05-12 15:01:25 ----D---- C:\WINDOWS\Media
2009-05-12 15:01:25 ----D---- C:\WINDOWS\java
2009-05-12 15:01:25 ----D---- C:\WINDOWS\ime
2009-05-12 15:01:25 ----D---- C:\WINDOWS\Help
2009-05-12 15:01:25 ----D---- C:\WINDOWS\ehome
2009-05-12 15:01:25 ----D---- C:\WINDOWS\Driver Cache
2009-05-12 15:01:25 ----D---- C:\WINDOWS\Debug
2009-05-12 15:01:25 ----D---- C:\WINDOWS\Cursors
2009-05-12 15:01:25 ----D---- C:\WINDOWS\Connection Wizard
2009-05-12 15:01:25 ----D---- C:\WINDOWS\Config
2009-05-12 15:01:25 ----D---- C:\WINDOWS\AppPatch
2009-05-12 15:01:25 ----D---- C:\WINDOWS\addins
2009-05-12 15:01:25 ----D---- C:\WINDOWS
2009-05-12 14:54:33 ----R---- C:\WINDOWS\system32\RtlCPAPI.dll
2009-05-12 14:54:33 ----R---- C:\WINDOWS\system32\ChCfg.exe
2009-05-12 14:54:08 ----D---- C:\WINDOWS\system32\RTCOM
2009-05-12 14:53:30 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-05-12 14:53:29 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2009-05-12 14:53:26 ----R---- C:\WINDOWS\SoundMan.exe
2009-05-12 14:53:25 ----R---- C:\WINDOWS\SkyTel.exe
2009-05-12 14:53:25 ----R---- C:\WINDOWS\RtlUpd.exe
2009-05-12 14:53:21 ----R---- C:\WINDOWS\RTLCPL.exe
2009-05-12 14:53:12 ----R---- C:\WINDOWS\RTHDCPL.exe
2009-05-12 14:53:10 ----R---- C:\WINDOWS\MicCal.exe
2009-05-12 14:53:08 ----R---- C:\WINDOWS\Alcmtr.exe
2009-05-12 14:53:07 ----R---- C:\WINDOWS\alcwzrd.exe
2009-05-12 14:53:06 ----D---- C:\Program Files\Realtek
2009-05-12 14:53:00 ----R---- C:\WINDOWS\RtlExUpd.dll
2009-05-12 14:51:42 ----D---- C:\Program Files\Broadcom
2009-05-12 14:48:56 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-05-12 14:48:14 ----D---- C:\Program Files\Atheros
2009-05-12 14:48:12 ----HD---- C:\Program Files\InstallShield Installation Information
2009-05-12 14:48:01 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-05-12 14:39:48 ----D---- C:\Documents and Settings\Microsoft\Application Data\Ahead
2009-05-12 14:39:33 ----D---- C:\Documents and Settings\All Users\Application Data\Ahead
2009-05-12 14:37:55 ----D---- C:\Program Files\Nero
2009-05-12 14:37:55 ----D---- C:\Program Files\Fichiers communs\Ahead
2009-05-12 14:37:55 ----D---- C:\Documents and Settings\All Users\Application Data\Nero
2009-05-12 14:37:08 ----D---- C:\WINDOWS\RegisteredPackages
2009-05-12 14:36:01 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2009-05-12 14:36:00 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-05-12 14:33:44 ----D---- C:\Program Files\AskTBar
2009-05-12 14:30:10 ----A---- C:\WINDOWS\ODBC.INI
2009-05-12 14:30:04 ----A---- C:\WINDOWS\system32\mdimon.dll
2009-05-12 14:27:47 ----D---- C:\Program Files\Microsoft Visual Studio
2009-05-12 14:27:34 ----D---- C:\WINDOWS\SHELLNEW
2009-05-12 14:25:40 ----D---- C:\Program Files\Microsoft Office
2009-05-12 14:24:52 ----RHD---- C:\MSOCache
2009-05-12 14:20:47 ----D---- C:\Documents and Settings\Microsoft\Application Data\Identities
2009-05-12 14:20:45 ----HD---- C:\Program Files\Uninstall Information
2009-05-12 14:20:39 ----ASH---- C:\Documents and Settings\Microsoft\Application Data\desktop.ini
2009-05-12 14:20:38 ----SD---- C:\Documents and Settings\Microsoft\Application Data\Microsoft
2009-05-12 13:58:30 ----D---- C:\WINDOWS\SoftwareDistribution
2009-05-12 13:58:29 ----D---- C:\WINDOWS\Prefetch
2009-05-12 13:58:28 ----SD---- C:\WINDOWS\system32\Microsoft
2009-05-12 13:58:28 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-05-12 13:51:10 ----D---- C:\WINDOWS\system32\xircom
2009-05-12 13:51:10 ----D---- C:\Program Files\xerox
2009-05-12 13:51:10 ----D---- C:\Program Files\microsoft frontpage
2009-05-12 13:50:50 ----A---- C:\WINDOWS\control.ini
2009-05-12 13:50:50 ----A---- C:\AUTOEXEC.BAT
2009-05-12 13:50:35 ----A---- C:\WINDOWS\OEWABLog.txt
2009-05-12 13:50:31 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-05-12 13:49:34 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-05-12 13:49:34 ----RD---- C:\WINDOWS\Offline Web Pages
2009-05-12 13:49:34 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-05-12 13:49:28 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-05-12 13:49:23 ----HD---- C:\Program Files\WindowsUpdate
2009-05-12 13:49:19 ----D---- C:\Program Files\Services en ligne
2009-05-12 13:49:01 ----D---- C:\WINDOWS\system32\DirectX
2009-05-12 13:48:37 ----A---- C:\WINDOWS\system32\atrace.dll
2009-05-12 13:48:34 ----A---- C:\WINDOWS\system32\desktop.ini
2009-05-12 13:48:34 ----A---- C:\WINDOWS\desktop.ini
2009-05-12 13:48:26 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-05-12 13:48:25 ----A---- C:\WINDOWS\system32\acctres.dll
2009-05-12 13:48:24 ----D---- C:\Program Files\Fichiers communs\Services
2009-05-12 13:48:21 ----SD---- C:\WINDOWS\Tasks
2009-05-12 13:48:21 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-05-12 13:48:20 ----D---- C:\Program Files\Fichiers communs\MSSoap
2009-05-12 13:48:15 ----D---- C:\WINDOWS\srchasst
2009-05-12 13:48:14 ----D---- C:\WINDOWS\system32\Macromed
2009-05-12 13:48:10 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-05-12 13:48:10 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-05-12 13:48:10 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-05-12 13:48:10 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-05-12 13:48:09 ----A---- C:\WINDOWS\system32\wups.dll
2009-05-12 13:48:09 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-05-12 13:48:09 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-05-12 13:48:09 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-05-12 13:48:09 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-05-12 13:48:09 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-05-12 13:48:09 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-05-12 13:48:08 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-05-12 13:48:08 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-05-12 13:48:03 ----D---- C:\Program Files\Movie Maker
2009-05-12 13:47:58 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-05-12 13:47:58 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-05-12 13:47:58 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-05-12 13:47:58 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-05-12 13:47:53 ----A---- C:\WINDOWS\system32\fltMc.exe
2009-05-12 13:47:53 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-05-12 13:47:52 ----D---- C:\WINDOWS\system32\Restore
2009-05-12 13:47:52 ----A---- C:\WINDOWS\system32\srsvc.dll
2009-05-12 13:47:52 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-05-12 13:47:52 ----A---- C:\WINDOWS\system32\srclient.dll
2009-05-12 13:47:51 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-05-12 13:47:51 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-05-12 13:47:51 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-05-12 13:47:51 ----A---- C:\WINDOWS\system32\ils.dll
2009-05-12 13:47:50 ----A---- C:\WINDOWS\system32\msconf.dll
2009-05-12 13:47:50 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-05-12 13:47:47 ----D---- C:\Program Files\NetMeeting
2009-05-12 13:47:47 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-05-12 13:47:47 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-05-12 13:47:46 ----A---- C:\WINDOWS\system32\inetres.dll
2009-05-12 13:47:46 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-05-12 13:47:43 ----D---- C:\Program Files\Outlook Express
2009-05-12 13:47:43 ----A---- C:\WINDOWS\system32\schedsvc.dll
2009-05-12 13:47:43 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-05-12 13:47:43 ----A---- C:\WINDOWS\system32\mstask.dll
2009-05-12 13:47:42 ----A---- C:\WINDOWS\system32\isign32.dll
2009-05-12 13:47:42 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-05-12 13:47:42 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-05-12 13:47:42 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-05-12 13:47:35 ----D---- C:\Program Files\Fichiers communs\System
2009-05-12 13:47:29 ----D---- C:\Program Files\Internet Explorer
2009-05-12 13:46:52 ----D---- C:\Program Files\ComPlus Applications
2009-05-12 13:46:50 ----A---- C:\WINDOWS\vbaddin.ini
2009-05-12 13:46:50 ----A---- C:\WINDOWS\vb.ini
2009-05-12 13:46:45 ----D---- C:\WINDOWS\Registration
2009-05-12 13:46:37 ----D---- C:\Program Files\Windows Media Player
2009-05-12 13:46:37 ----D---- C:\Program Files\Online Services
2009-05-12 13:46:30 ----D---- C:\Program Files\Messenger
2009-05-12 13:46:26 ----D---- C:\Program Files\MSN Gaming Zone
2009-05-12 13:46:26 ----A---- C:\WINDOWS\system32\write.exe
2009-05-12 13:46:17 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-05-12 13:46:16 ----A---- C:\WINDOWS\system32\hticons.dll
2009-05-12 13:46:16 ----A---- C:\WINDOWS\system32\avwav.dll
2009-05-12 13:46:16 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-05-12 13:46:16 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-05-12 13:46:15 ----A---- C:\WINDOWS\system32\winchat.exe
2009-05-12 13:46:08 ----A---- C:\WINDOWS\system32\sol.exe
2009-05-12 13:46:08 ----A---- C:\WINDOWS\system32\getuname.dll
2009-05-12 13:46:08 ----A---- C:\WINDOWS\system32\charmap.exe
2009-05-12 13:46:08 ----A---- C:\WINDOWS\system32\calc.exe
2009-05-12 13:46:07 ----A---- C:\WINDOWS\system32\winmine.exe
2009-05-12 13:46:07 ----A---- C:\WINDOWS\system32\reset.exe
2009-05-12 13:46:07 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-05-12 13:46:07 ----A---- C:\WINDOWS\system32\freecell.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\tskill.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\tscon.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\shadow.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\regini.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\msg.exe
2009-05-12 13:46:06 ----A---- C:\WINDOWS\system32\logoff.exe
2009-05-12 13:46:05 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-05-12 13:46:05 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-05-12 13:46:04 ----A---- C:\WINDOWS\system32\stclient.dll
2009-05-12 13:46:04 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-05-12 13:46:04 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-05-12 13:46:04 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-05-12 13:46:04 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-05-12 13:46:04 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-05-12 13:46:04 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-05-12 13:46:04 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-05-12 13:45:59 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-05-12 13:45:39 ----D---- C:\Program Files\MSN
2009-05-12 13:45:38 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-05-12 13:45:38 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-05-12 13:45:37 ----D---- C:\Program Files\Windows NT
2009-05-12 13:45:37 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-05-12 13:45:37 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-05-12 13:45:37 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-05-12 13:45:36 ----A---- C:\WINDOWS\system32\spider.exe
2009-05-12 13:45:36 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-05-12 13:45:35 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-05-12 13:45:35 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-05-12 13:45:35 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-05-12 13:45:34 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2009-05-12 13:45:34 ----A---- C:\WINDOWS\system32\termsrv.dll
2009-05-12 13:45:34 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-05-12 13:45:34 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-05-12 13:45:34 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-05-12 13:45:34 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-05-12 13:45:34 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-05-12 13:45:34 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-05-12 13:45:33 ----D---- C:\WINDOWS\system32\MsDtc
2009-05-12 13:45:33 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-05-12 13:45:33 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-05-12 13:45:33 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-05-12 13:45:33 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-05-12 13:45:33 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-05-12 13:45:33 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-05-12 13:45:33 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-05-12 13:45:32 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-05-12 13:45:32 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-05-12 13:45:32 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-05-12 13:45:32 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-05-12 13:45:32 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-05-12 13:45:31 ----D---- C:\WINDOWS\system32\Com
2009-05-12 13:45:31 ----A---- C:\WINDOWS\system32\colbact.dll
2009-05-12 13:45:31 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-05-12 13:45:30 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-05-12 13:45:30 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-05-12 13:45:30 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-05-12 13:45:29 ----A---- C:\WINDOWS\system32\comuid.dll
2009-05-12 13:45:29 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-05-12 13:45:29 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-05-12 13:45:19 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-05-12 13:45:19 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-05-12 13:45:19 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-05-12 13:45:19 ----A---- C:\WINDOWS\system32\cmprops.dll

======List of files/folders modified in the last 1 months======

2009-05-13 13:01:22 ----A---- C:\WINDOWS\win.ini
2009-05-13 13:01:21 ----A---- C:\WINDOWS\system.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 klif;Klif; \??\C:\WINDOWS\system32\drivers\klif.sys []
R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2004-08-04 8832]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-02-15 12672]
R3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2006-11-15 528096]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-04-27 1540096]
R3 Cam5607;Acer OrbiCam; C:\WINDOWS\System32\Drivers\BisonC07.sys [2006-11-25 792368]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
R3 EMSCR;EMSCR; C:\WINDOWS\system32\DRIVERS\EMS7SK.sys [2006-05-25 61056]
R3 ESDCR;ESDCR; C:\WINDOWS\system32\DRIVERS\ESD7SK.sys [2006-05-25 40064]
R3 ESMCR;ESMCR; C:\WINDOWS\system32\DRIVERS\ESM7SK.sys [2006-05-25 74752]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2006-06-12 990592]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2006-06-12 208384]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2008-03-17 101376]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2006-06-28 4304384]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2007-12-13 24592]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-06-16 83968]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2004-08-04 67584]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-03-03 192672]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2006-06-12 727808]
S3 AVPsys;AVPsys; \??\C:\WINDOWS\system32\drivers\cdaudio.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-04 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbvideo;Périphérique vidéo USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2004-08-04 78464]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-04-11 82944]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-04-11 87808]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-04-27 405504]
R2 AVP;Kaspersky Internet Security 7.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe [2008-02-08 227856]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-05-12 603904]
R2 UxTuneUp;TuneUp Extension de thème; C:\WINDOWS\System32\svchost.exe [2004-08-04 14336]
R2 wltrysvc;Broadcom Wireless LAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2005-11-11 18944]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe [2007-05-16 271920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-05-12 362240]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-05-10 827392]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]

-----------------EOF-----------------

Répondre à mortederire

Posez votre question Répondre