Bonjour,
merci encore pour votre aide, qui m'ait très précieuses.
voici le contenu du fichier log.txt :
Logfile of random's system information tool 1.06 (written by random/random)
Run by Lamine at 2009-06-28 19:10:23
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 2 GB (6%) free of 30 GB
Total RAM: 1023 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:10:25, on 28/06/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20583)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
G:\Programs\PC Auto Shutdown\ShutdownService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
G:\Programs\DAP\SPEEDB~1\VideoAcceleratorService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
G:\Programs\PC Auto Shutdown\AutoShutdown.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
G:\Programs\Adobe\Reader\Reader_sl.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DNA\btdna.exe
C:\Documents and Settings\Lamine\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
G:\Programs\DAP\SpeedBit Video Accelerator\VideoAccelerator.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
G:\Programs\RapidCheck\RapidCheck.exe
G:\Programs\DAEMON Tools Lite\daemon.exe
G:\Programs\DAP\SPEEDB~1\VideoAcceleratorEngine.exe
G:\Programs\Nokia\Nokia PC Suite 6\PCSuite.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
G:\Programs\BitTorrent\bittorrent.exe
C:\Documents and Settings\Lamine\Mes documents\My Completed Downloads\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Lamine.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - G:\Programs\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Solid State Networks IE Browser Plugin - {BD08A9D5-0E5C-4f42-99A3-C0CB5E860557} - C:\WINDOWS\system32\SolidStateNetworks\SolidStateION\solidax.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [PC Auto Shutdown] G:\Programs\PC Auto Shutdown\AutoShutdown.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "G:\Programs\Adobe\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Lamine\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [SpeedBitVideoAccelerator] G:\Programs\DAP\SpeedBit Video Accelerator\VideoAccelerator.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [RapidCheck] G:\Programs\RapidCheck\RapidCheck.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "G:\Programs\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [\\User-f88f7f621d\EPSON Stylus C91 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBZR.EXE /FU "C:\DOCUME~1\Lamine\LOCALS~1\Temp\E_SF2.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] G:\Programs\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKCU\..\Run: [Uniblue SpeedUpMyPC] G:\Programs\SpeedUpMyPC 3\SpeedUpMyPC.exe -s
O4 - HKCU\..\Run: [PC Suite Tray] "G:\Programs\Nokia\Nokia PC Suite 6\PCSuite.exe" -onlytray
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O8 - Extra context menu item: &Clean Traces - G:\Programs\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - G:\Programs\DAP\dapextie.htm
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Download &all with DAP - G:\Programs\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: g:\programs\dap\speedb~1\sblsp.dll
O10 - Unknown file in Winsock LSP: g:\programs\dap\speedb~1\sblsp.dll
O10 - Unknown file in Winsock LSP: g:\programs\dap\speedb~1\sblsp.dll
O16 - DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} (System Requirements Lab) - http://www.srtest.com/srl_bin/sysreqlab_ind.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_1_2_1.cab
O16 - DPF: {99CAAA27-FA0C-4FA4-B88A-4AB1CC7A17FE} (MGLaunch_v1004 Class) - http://www.netgame.com/mplugin/mglaunch_USAv1004.cab
O16 - DPF: {BD08A9D5-0E5C-4F42-99A3-C0CB5E860557} (CSolidBrowserObj Object) - http://www.playwhat.com/solidPlugin/solidstateion.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - G:\Programs\ma-config.com\maconfservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PCAutoShutdown_Service - Unknown owner - G:\Programs\PC Auto Shutdown\ShutdownService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: VideoAcceleratorService - Speedbit Ltd. - G:\Programs\DAP\SPEEDB~1\VideoAcceleratorService.exe
End of file - 9842 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-583907252-507921405-839522115-1003.job
C:\WINDOWS\tasks\Uniblue SpeedUpMyPC Nag.job
C:\WINDOWS\tasks\Uniblue SpeedUpMyPC.job
C:\WINDOWS\tasks\Uniblue SpyEraser.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - G:\Programs\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-04-22 308856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll [2008-07-29 62728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BD08A9D5-0E5C-4f42-99A3-C0CB5E860557}]
CSolidBrowserObj Object - C:\WINDOWS\system32\SolidStateNetworks\SolidStateION\solidax.dll [2008-07-08 132400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-05-30 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-05-30 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-03 208952]
"PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-03 455168]
"PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-03 455168]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-07-05 16380416]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2009-04-22 206088]
"PC Auto Shutdown"=G:\Programs\PC Auto Shutdown\AutoShutdown.exe [2006-11-24 359679]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-04-22 185896]
"Adobe Reader Speed Launcher"=G:\Programs\Adobe\Reader\Reader_sl.exe [2008-10-15 39792]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-16 13529088]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-05-16 86016]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-05-30 148888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-19 15360]
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-04-22 342848]
"Google Update"=C:\Documents and Settings\Lamine\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-04-22 133104]
"SpeedBitVideoAccelerator"=G:\Programs\DAP\SpeedBit Video Accelerator\VideoAccelerator.exe [2009-04-22 2823784]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]
"RapidCheck"=G:\Programs\RapidCheck\RapidCheck.exe [2006-08-17 155648]
"DAEMON Tools Lite"=G:\Programs\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"\\User-f88f7f621d\EPSON Stylus C91 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBZR.EXE [2006-09-27 139264]
"Uniblue RegistryBooster 2"=G:\Programs\RegistryBooster 2\RegistryBooster.exe /S []
"Uniblue SpeedUpMyPC"=G:\Programs\SpeedUpMyPC 3\SpeedUpMyPC.exe [2007-12-07 9479448]
"PC Suite Tray"=G:\Programs\Nokia\Nokia PC Suite 6\PCSuite.exe [2007-12-10 695808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2008-07-29 218376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2007-07-23 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"G:\Programs\BitTorrent\bittorrent.exe"="G:\Programs\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"G:\Programs\ma-config.com\maconfservice.exe"="G:\Programs\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"G:\Games\Call of Duty 4 - Modern Warfare\iw3mp.exe"="G:\Games\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{52216d0d-60dc-11de-9033-001a4df922ce}]
shell\AutoRun\command - 0xuc.com
shell\open\command - 0xuc.com
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ba589b60-38ec-11de-8fd3-001a4df922ce}]
shell\AutoRun\command - I:\0xuc.com
shell\open\command - I:\0xuc.com
======List of files/folders created in the last 2 months======
2009-06-28 19:10:23 ----D---- C:\rsit
2009-06-28 19:10:06 ----D---- C:\Program Files\Trend Micro
2009-06-27 21:11:26 ----D---- C:\WINDOWS\Sun
2009-06-27 03:14:57 ----D---- C:\WINDOWS\Minidump
2009-06-25 22:41:17 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2009-06-25 22:41:11 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2009-06-24 21:58:11 ----A---- C:\WINDOWS\system32\Primomonnt.dll
2009-06-24 21:58:03 ----D---- C:\WINDOWS\PrimoPDF
2009-06-24 21:57:35 ----A---- C:\WINDOWS\PrimoPDF Setup Log.txt
2009-06-24 17:29:26 ----A---- C:\WINDOWS\system32\tmp.txt
2009-06-24 17:29:21 ----A---- C:\rapport.txt
2009-06-24 17:29:16 ----A---- C:\WINDOWS\system32\WS2Fix.exe
2009-06-24 17:29:16 ----A---- C:\WINDOWS\system32\VACFix.exe
2009-06-24 17:29:16 ----A---- C:\WINDOWS\system32\o4Patch.exe
2009-06-24 17:29:16 ----A---- C:\WINDOWS\system32\IEDFix.exe
2009-06-24 17:29:16 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
2009-06-24 17:29:16 ----A---- C:\WINDOWS\system32\Agent.OMZ.Fix.exe
2009-06-24 17:29:16 ----A---- C:\WINDOWS\system32\404Fix.exe
2009-06-24 17:29:15 ----A---- C:\WINDOWS\system32\VCCLSID.exe
2009-06-24 17:29:15 ----A---- C:\WINDOWS\system32\swxcacls.exe
2009-06-24 17:29:15 ----A---- C:\WINDOWS\system32\swsc.exe
2009-06-24 17:29:15 ----A---- C:\WINDOWS\system32\swreg.exe
2009-06-24 17:29:15 ----A---- C:\WINDOWS\system32\SrchSTS.exe
2009-06-24 17:29:15 ----A---- C:\WINDOWS\system32\Process.exe
2009-06-24 17:29:15 ----A---- C:\WINDOWS\system32\dumphive.exe
2009-06-16 23:45:30 ----D---- C:\Netgame
2009-06-12 18:54:19 ----HD---- C:\Documents and Settings\Lamine\Application Data\ijjigame
2009-06-12 18:19:53 ----D---- C:\Documents and Settings\Lamine\Application Data\Xfire
2009-06-12 18:17:15 ----D---- C:\ijji
2009-06-12 14:25:36 ----D---- C:\WINDOWS\system32\SolidStateNetworks
2009-06-08 19:19:19 ----D---- C:\Documents and Settings\Lamine\Application Data\Google
2009-06-08 19:18:16 ----D---- C:\WINDOWS\Google Earth Pro 4.2
2009-05-30 23:50:23 ----D---- C:\Documents and Settings\Lamine\Application Data\DivX
2009-05-30 23:07:35 ----D---- C:\Documents and Settings\All Users\Application Data\Uniblue
2009-05-30 23:04:22 ----D---- C:\Documents and Settings\Lamine\Application Data\Uniblue
2009-05-30 19:34:05 ----A---- C:\WINDOWS\system32\javaws.exe
2009-05-30 19:34:05 ----A---- C:\WINDOWS\system32\javaw.exe
2009-05-30 19:34:05 ----A---- C:\WINDOWS\system32\java.exe
2009-05-30 19:34:05 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-05-30 19:30:14 ----D---- C:\Documents and Settings\Lamine\Application Data\Sun
2009-05-29 15:52:12 ----D---- C:\Program Files\Java
2009-05-29 15:49:25 ----D---- C:\Program Files\Fichiers communs\Java
2009-05-29 12:04:36 ----D---- C:\Program Files\Ontrack
2009-05-27 19:23:33 ----HD---- C:\WINDOWS\PIF
2009-05-25 00:09:23 ----D---- C:\Documents and Settings\Lamine\Application Data\Nokia Multimedia Player
2009-05-24 19:26:21 ----D---- C:\Documents and Settings\All Users\Application Data\EPSON
2009-05-23 20:39:32 ----A---- C:\WINDOWS\system32\nvuninst.exe
2009-05-23 20:39:32 ----A---- C:\WINDOWS\system32\nvudisp.exe
2009-05-23 20:21:35 ----D---- C:\WINDOWS\NV56202960.TMP
2009-05-22 22:54:45 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2009-05-22 22:54:44 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2009-05-22 22:54:40 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2009-05-22 22:54:40 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2009-05-22 22:54:37 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2009-05-22 19:42:26 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2009-05-22 18:54:30 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
2009-05-22 18:54:25 ----D---- C:\Program Files\DAEMON Tools Toolbar
2009-05-22 18:47:57 ----D---- C:\Documents and Settings\Lamine\Application Data\DAEMON Tools Lite
2009-05-14 18:42:48 ----D---- C:\WINDOWS\system32\LogFiles
2009-05-14 18:42:43 ----HDC---- C:\WINDOWS\$NtUninstallWudf01005$
2009-05-14 18:41:37 ----D---- C:\Documents and Settings\All Users\Application Data\PC Suite
2009-05-14 18:41:23 ----D---- C:\Documents and Settings\Lamine\Application Data\Nokia
2009-05-14 18:41:20 ----D---- C:\Program Files\DIFX
2009-05-14 18:40:57 ----D---- C:\Program Files\Fichiers communs\PCSuite
2009-05-14 18:40:57 ----D---- C:\Program Files\Fichiers communs\Nokia
2009-05-14 18:40:47 ----D---- C:\Documents and Settings\Lamine\Application Data\PC Suite
2009-05-14 18:40:42 ----D---- C:\Program Files\PC Connectivity Solution
2009-05-14 18:40:33 ----A---- C:\WINDOWS\system32\nmwcdcocls.dll
2009-05-14 18:40:32 ----A---- C:\WINDOWS\system32\nmwcdcls.dll
2009-05-14 18:39:45 ----D---- C:\Documents and Settings\All Users\Application Data\Installations
2009-05-12 21:08:54 ----D---- C:\WINDOWS\system32\NtmsData
2009-05-06 00:16:51 ----A---- C:\WINDOWS\avisplitter.INI
2009-05-03 20:54:02 ----D---- C:\Program Files\VirginMega
2009-05-03 20:53:23 ----D---- C:\Documents and Settings\All Users\Application Data\Downloaded Installations
2009-05-01 00:31:18 ----A---- C:\WINDOWS\system32\nvwrsth.dll
2009-04-29 20:48:06 ----D---- C:\Documents and Settings\All Users\Application Data\Trymedia
======List of files/folders modified in the last 2 months======
2009-06-28 19:10:25 ----D---- C:\WINDOWS\Temp
2009-06-28 19:10:14 ----D---- C:\WINDOWS\Prefetch
2009-06-28 19:10:06 ----RD---- C:\Program Files
2009-06-28 19:09:00 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2009-06-28 19:08:57 ----D---- C:\Program Files\DNA
2009-06-28 19:08:57 ----D---- C:\Documents and Settings\Lamine\Application Data\DNA
2009-06-28 05:00:55 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-06-28 05:00:25 ----D---- C:\Documents and Settings\Lamine\Application Data\BitTorrent
2009-06-27 21:11:26 ----D---- C:\WINDOWS
2009-06-27 00:05:07 ----D---- C:\WINDOWS\system32
2009-06-25 22:51:05 ----HD---- C:\Program Files\InstallShield Installation Information
2009-06-25 22:50:57 ----SHD---- C:\WINDOWS\Installer
2009-06-25 22:45:17 ----D---- C:\WINDOWS\system32\DirectX
2009-06-25 22:45:15 ----HD---- C:\WINDOWS\inf
2009-06-25 22:41:38 ----D---- C:\WINDOWS\system32\drivers
2009-06-25 22:41:04 ----A---- C:\WINDOWS\game.ini
2009-06-25 18:47:43 ----D---- C:\WINDOWS\system32\CatRoot2
2009-06-24 21:58:20 ----D---- C:\WINDOWS\WinSxS
2009-06-24 21:58:06 ----A---- C:\WINDOWS\primopdf.ini
2009-06-22 19:04:48 ----D---- C:\Documents and Settings\Lamine\Application Data\dvdcss
2009-06-16 01:23:49 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-06-12 20:15:00 ----D---- C:\Program Files\Common Files
2009-06-08 23:41:18 ----A---- C:\WINDOWS\win.ini
2009-06-05 22:22:18 ----D---- C:\Documents and Settings\Lamine\Application Data\Microsoft
2009-06-05 22:22:17 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-05-30 23:08:14 ----SD---- C:\WINDOWS\Tasks
2009-05-29 15:49:25 ----D---- C:\Program Files\Fichiers communs
2009-05-24 18:46:56 ----D---- C:\WINDOWS\nview
2009-05-23 20:39:48 ----D---- C:\WINDOWS\Help
2009-05-23 20:37:05 ----D---- C:\WINDOWS\nvidia icons
2009-05-23 20:28:20 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-05-23 19:45:04 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com
2009-05-22 22:54:20 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-05-14 18:42:56 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-05-14 18:41:20 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-05-01 12:38:10 ----D---- C:\WINDOWS\system32\Restore
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 eusk2par;EUTRON SmartKey Parallel Driver; \??\C:\WINDOWS\system32\Drivers\eusk2par.sys []
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-19 40320]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2009-04-23 213520]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-03 12032]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-07-18 4547584]
R3 KLFLTDEV;Kaspersky Lab KLFltDev; C:\WINDOWS\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2008-04-30 24592]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-05-16 6557408]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-08-07 98944]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-10-23 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2006-10-23 59264]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2006-10-23 20608]
S1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys []
S3 awtlcmnl;awtlcmnl; C:\WINDOWS\system32\drivers\awtlcmnl.sys []
S3 driverhardwarev2;driverhardwarev2; \??\G:\Programs\ma-config.com\Drivers\driverhardwarev2.sys []
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 eusk3usb;SmartKey 3 USB; C:\WINDOWS\System32\Drivers\eusk3usb.sys [2004-11-18 45534]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\nmwcd.sys [2007-02-22 137216]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\nmwcdc.sys [2007-02-22 8320]
S3 nmwcdcj;Nokia USB Port; C:\WINDOWS\system32\drivers\nmwcdcj.sys [2007-02-22 12288]
S3 nmwcdcm;Nokia USB Modem; C:\WINDOWS\system32\drivers\nmwcdcm.sys [2007-02-22 12288]
S3 NPPTNT2;NPPTNT2; \??\C:\WINDOWS\system32\npptNT2.sys []
S3 PCIUtil;PCI Utility; \??\C:\DOCUME~1\Lamine\LOCALS~1\Temp\PCIUtil.sys []
S3 RimUsb;Terminal mobile RIM; C:\WINDOWS\System32\Drivers\RimUsb.sys [2004-01-12 17286]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2009-04-22 206088]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-05-30 152984]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-05-16 159812]
R2 PCAutoShutdown_Service;PCAutoShutdown_Service; G:\Programs\PC Auto Shutdown\ShutdownService.exe [2006-11-06 446976]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-06-25 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-06-25 103736]
R2 VideoAcceleratorService;VideoAcceleratorService; G:\Programs\DAP\SPEEDB~1\VideoAcceleratorService.exe [2009-04-22 288368]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-19 14336]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2007-12-10 353280]
S3 maconfservice;Ma-Config Service; G:\Programs\ma-config.com\maconfservice.exe [2009-05-13 234864]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2009-05-20 2796878]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
-----------------EOF-----------------
After effect debut fin apparition
