Avast impuissant

cricri58 · Novembre 7, 2009, 9:16

Ok

ça a servi de repasser Findykill

je regarde tout çà et te tiens au courant dans la journée

en attendant

Passe Ccleaner nettoyeur et Registre

redémarres ton PC

et poste un log RSIT

et on verra aprés

@+

ours27_1_1 · Novembre 7, 2009, 10:00

Pour aujourd’hui je vais marquer une pause, la visite des cimetières!
(J’espère ne pas y voir mon micro LoL

Logfile of random’s system information tool 1.06 (written by random/random)
Run by Le Bigot at 2009-11-07 09:47:17
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 24 GB (62%) free of 38 GB
Total RAM: 1535 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:47:40, on 07/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Java\jre1.5.0\bin\jusched.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\atwtusb.exe
C:\WINDOWS\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\PROGRA~1\WINDOW~4\MESSEN~1\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\PDFCreator\PDFCreator.exe
C:\Program Files\palmOne\HOTSYNC.EXE
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqnrs08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqimzone.exe
C:\Documents and Settings\Le Bigot\Bureau\RSIT.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\trend micro\Le Bigot.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\WINDOWS\system32\HPZinw12.exe
C:\WINDOWS\system32\ctfmon.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = google.fr…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = fr.msn.com…
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = “C:\Program Files\Outlook Express\msimn.exe”
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Radio France Toolbar - {1a2cd84f-2175-4ae8-bd60-ce0d04442b4f} - C:\Program Files\Radio_France\tbRadi.dll
O1 - Hosts: HP92440E HP0017A492440E
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Radio France Toolbar - {1a2cd84f-2175-4ae8-bd60-ce0d04442b4f} - C:\Program Files\Radio_France\tbRadi.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d’aide de l’Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Radio France Toolbar - {1a2cd84f-2175-4ae8-bd60-ce0d04442b4f} - C:\Program Files\Radio_France\tbRadi.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll
O4 - HKLM…\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM…\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe
O4 - HKLM…\Run: [RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKLM…\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM…\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM…\Run: [NBKeyScan] “C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe”
O4 - HKLM…\Run: [atwtusb] atwtusb.exe beta
O4 - HKLM…\Run: [Adobe ARM] “C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM…\Run: [SMSERIAL] sm56hlpr.exe
O4 - HKLM…\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM…\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM…\Run: [ISTray] “C:\Program Files\Spyware Doctor\pctsTray.exe”
O4 - HKLM…\Run: [Malwarebytes Anti-Malware (reboot)] “C:\Program Files\Malwarebytes’ Anti-Malware\mbam.exe” /runcleanupscript
O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU…\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKCU…\Run: [TomTomHOME.exe] “C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe”
O4 - HKCU…\Run: [msnmsgr] “C:\PROGRA~1\WINDOW~4\MESSEN~1\msnmsgr.exe” /background
O4 - HKCU…\Run: [swg] “C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe”
O4 - Startup: HotSync Manager.lnk = C:\Program Files\palmOne\HOTSYNC.EXE
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: PDFCreator.lnk = C:\Program Files\PDFCreator\PDFCreator.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE…
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra ‘Tools’ menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra ‘Tools’ menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\Program Files\Druide\Antidote\Internet Explorer\6\Antidote K - IE 6.htm (HKCU)
O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\Program Files\Druide\Antidote\Internet Explorer\6\Antidote D - IE 6.htm (HKCU)
O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\Program Files\Druide\Antidote\Internet Explorer\6\Antidote G - IE 6.htm (HKCU)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - fpdownload2.macromedia.com…
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - platformdl.adobe.com…
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Browser Defender Update Service - Threat Expert Ltd. - C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

–
End of file - 10688 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1256133218.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{CA21B084-7636-492C-B970-107B97BEB26C}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{1a2cd84f-2175-4ae8-bd60-ce0d04442b4f}]
Radio France Toolbar - C:\Program Files\Radio_France\tbRadi.dll [2009-10-01 2166296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{2A0F3D1B-0909-4FF4-B272-609CCE6054E7}]
PC Tools Browser Guard BHO - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll [2009-10-08 395216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d’aide de l’Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-10-28 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll [2009-10-24 762864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-10-22 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{FDD3B846-8D59-4ffb-8758-209B6AD74ACC}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{1a2cd84f-2175-4ae8-bd60-ce0d04442b4f} - Radio France Toolbar - C:\Program Files\Radio_France\tbRadi.dll [2009-10-01 2166296]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-10-28 256112]
{472734EA-242A-422B-ADF8-83D1E48CC825} - PC Tools Browser Guard - C:\Program Files\Spyware Doctor\BDT\PCTBrowserDefender.dll [2009-10-08 395216]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
“High Definition Audio Property Page Shortcut”=C:\WINDOWS\system32\HDAShCut.exe [2004-10-27 61952]
“SunJavaUpdateSched”=C:\Program Files\Java\jre1.5.0\bin\jusched.exe [2009-10-17 36972]
“RaidTool”=C:\Program Files\VIA\RAID\raid_tool.exe [2005-02-25 589824]
“SoundMan”=C:\WINDOWS\SOUNDMAN.EXE [2005-03-10 90112]
“AlcWzrd”=C:\WINDOWS\ALCWZRD.EXE [2005-03-10 2803712]
“NBKeyScan”=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-08-08 1828136]
“atwtusb”=atwtusb.exe beta []
“Adobe ARM”=C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
“NvCplDaemon”=C:\WINDOWS\system32\NvCpl.dll [2005-03-10 5566464]
“SMSERIAL”=C:\WINDOWS\sm56hlpr.exe [2005-05-26 544768]
“SynTPLpr”=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2005-03-18 98393]
“SynTPEnh”=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2005-03-18 688217]
“ISTray”=C:\Program Files\Spyware Doctor\pctsTray.exe [2009-11-05 1243088]
“Malwarebytes Anti-Malware (reboot)”=C:\Program Files\Malwarebytes’ Anti-Malware\mbam.exe [2009-09-10 1312080]
“avast!”=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-09-15 81000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
“Gestionnaire Antidote.exe”=C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe [2008-12-02 542136]
“TomTomHOME.exe”=C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe [2009-06-03 251240]
“msnmsgr”=C:\PROGRA~1\WINDOW~4\MESSEN~1\msnmsgr.exe [2009-07-26 3883856]
“swg”=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-10-20 39408]
“ctfmon.exe”=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Contrôleur de calendrier Ulead.lnk - C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
Démarrage rapide de HP Photosmart Premier.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqthb08.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
PDFCreator.lnk - C:\Program Files\PDFCreator\PDFCreator.exe

C:\Documents and Settings\Le Bigot\Menu Démarrer\Programmes\Démarrage
HotSync Manager.lnk - C:\Program Files\palmOne\HOTSYNC.EXE

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
“NoDriveTypeAutoRun”=323
“NoDriveAutoRun”=67108863
“NoDrives”=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
“HonorAutoRunSetting”=
“NoDriveAutoRun”=
“NoDriveTypeAutoRun”=
“NoDrives”=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
“%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019"
“C:\WINDOWS\system32\spoolsv.exe”="C:\WINDOWS\system32\spoolsv.exe::Enabled:Spooler SubSystem App"
“C:\Program Files\Messenger\msmsgs.exe”=“C:\Program Files\Messenger\msmsgs.exe::Enabled:Windows Messenger"
“%windir%\Network Diagnostic\xpnetdiag.exe”="%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000”
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe”=“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe::Enabled:hpqtra08.exe"
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe”="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe::Enabled:hpqste08.exe”
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpofxm08.exe”=“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpofxm08.exe::Enabled:hpofxm08.exe"
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposfx08.exe”="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposfx08.exe::Enabled:hposfx08.exe”
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposid01.exe”=“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposid01.exe::Enabled:hposid01.exe"
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe”="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe::Enabled:hpqscnvw.exe”
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe”=“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe::Enabled:hpqkygrp.exe"
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqCopy.exe”="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqCopy.exe::Enabled:hpqcopy.exe”
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpfccopy.exe”=“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpfccopy.exe::Enabled:hpfccopy.exe"
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpzwiz01.exe”="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpzwiz01.exe::Enabled:hpzwiz01.exe”
“C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\HpqPhUnl.exe”=“C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\HpqPhUnl.exe::Enabled:hpqphunl.exe"
“C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\HpqDIA.exe”="C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\HpqDIA.exe::Enabled:hpqdia.exe”
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoews01.exe”=“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoews01.exe::Enabled:hpoews01.exe"
“C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqnrs08.exe”="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqnrs08.exe::Enabled:hpqnrs08.exe”
“C:\Program Files\Windows Live\Messenger\wlcsdk.exe”=“C:\Program Files\Windows Live\Messenger\wlcsdk.exe::Enabled:Windows Live Call"
“C:\Program Files\Windows Live\Messenger\msnmsgr.exe”="C:\Program Files\Windows Live\Messenger\msnmsgr.exe::Enabled:Windows Live Messenger”
“C:\WINDOWS\system32\mmc.exe”=“C:\WINDOWS\system32\mmc.exe::Enabled:Microsoft Management Console"
“C:\Program Files\Nero\Nero8\Nero Home\NeroHome.exe”="C:\Program Files\Nero\Nero8\Nero Home\NeroHome.exe::Enabled:Nero Home”

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
“%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019"
“%windir%\Network Diagnostic\xpnetdiag.exe”="%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000"
“C:\Program Files\Windows Live\Messenger\wlcsdk.exe”=“C:\Program Files\Windows Live\Messenger\wlcsdk.exe::Enabled:Windows Live Call"
“C:\Program Files\Windows Live\Messenger\msnmsgr.exe”="C:\Program Files\Windows Live\Messenger\msnmsgr.exe::Enabled:Windows Live Messenger”

======List of files/folders created in the last 1 months======

2009-11-07 09:00:11 ----A---- C:\ComboFix.txt
2009-11-07 08:53:45 ----D---- C:\ComboFix
2009-11-07 08:31:19 ----A---- C:\FindyKill.txt
2009-11-06 09:31:54 ----D---- C:\Program Files\trend micro
2009-11-06 09:31:53 ----D---- C:\rsit
2009-11-06 09:14:58 ----D---- C:\Program Files\Ad-Remover
2009-11-06 08:23:03 ----A---- C:\WINDOWS\system32\aswBoot.exe
2009-11-06 08:23:01 ----D---- C:\Program Files\Alwil Software
2009-11-06 08:03:28 ----D---- C:\Program Files\CCleaner
2009-11-05 15:04:38 ----D---- C:\WINDOWS\temp
2009-11-05 14:57:48 ----A---- C:\Boot.bak
2009-11-05 14:57:42 ----RASHD---- C:\cmdcons
2009-11-05 14:56:36 ----A---- C:\WINDOWS\zip.exe
2009-11-05 14:56:36 ----A---- C:\WINDOWS\SWXCACLS.exe
2009-11-05 14:56:36 ----A---- C:\WINDOWS\SWSC.exe
2009-11-05 14:56:36 ----A---- C:\WINDOWS\SWREG.exe
2009-11-05 14:56:36 ----A---- C:\WINDOWS\sed.exe
2009-11-05 14:56:36 ----A---- C:\WINDOWS\PEV.exe
2009-11-05 14:56:36 ----A---- C:\WINDOWS\NIRCMD.exe
2009-11-05 14:56:36 ----A---- C:\WINDOWS\MBR.exe
2009-11-05 14:56:36 ----A---- C:\WINDOWS\grep.exe
2009-11-05 14:56:29 ----D---- C:\WINDOWS\ERDNT
2009-11-05 14:56:29 ----D---- C:\ours27
2009-11-05 14:50:43 ----D---- C:\Qoobox
2009-11-05 14:09:10 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Malwarebytes
2009-11-05 14:09:05 ----D---- C:\Program Files\Malwarebytes’ Anti-Malware
2009-11-05 14:09:05 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-11-05 11:52:19 ----D---- C:\FindyKill
2009-11-04 18:33:24 ----A---- C:\WINDOWS\BDTSupport.dll
2009-11-04 18:33:23 ----A---- C:\WINDOWS\SGDetectionTool.dll
2009-11-04 18:33:22 ----A---- C:\WINDOWS\PCTBDRes.dll
2009-11-04 18:33:22 ----A---- C:\WINDOWS\PCTBDCore.dll
2009-11-04 18:32:51 ----D---- C:\Program Files\Spyware Doctor
2009-11-04 18:32:51 ----D---- C:\Program Files\Fichiers communs\PC Tools
2009-11-04 18:32:51 ----D---- C:\Documents and Settings\Le Bigot\Application Data\PC Tools
2009-11-04 18:32:51 ----D---- C:\Documents and Settings\All Users\Application Data\PC Tools
2009-11-04 18:32:39 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-11-04 16:49:21 ----A---- C:\WINDOWS\system32\SynTPFcs.dll
2009-11-04 16:49:21 ----A---- C:\WINDOWS\system32\SynTPCo2.dll
2009-11-04 16:49:21 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2009-11-04 16:49:20 ----D---- C:\Program Files\Synaptics
2009-11-04 16:49:20 ----A---- C:\WINDOWS\system32\SynCtrl.dll
2009-11-04 16:49:20 ----A---- C:\WINDOWS\system32\SynCOM.dll
2009-11-04 16:48:41 ----D---- C:\WINDOWS\Motorola
2009-11-04 16:47:45 ----D---- C:\WINDOWS\nview
2009-11-04 16:47:45 ----A---- C:\WINDOWS\system32\nvudisp.exe
2009-11-04 16:47:26 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2009-11-04 10:44:19 ----A---- C:\WINDOWS\system32\unicows.dll
2009-11-04 10:20:31 ----D---- C:\Documents and Settings\Le Bigot\Application Data\foobar2000
2009-11-04 10:20:25 ----D---- C:\Program Files\foobar2000
2009-10-31 17:09:05 ----D---- C:\Program Files\Audacity
2009-10-30 17:34:52 ----D---- C:\Documents and Settings\Le Bigot\Application Data\eMule
2009-10-30 17:34:50 ----D---- C:\Program Files\eMule
2009-10-30 14:29:24 ----A---- C:\WINDOWS\system32\PAStiSvc.exe
2009-10-30 14:27:41 ----A---- C:\WINDOWS\ulead32.ini
2009-10-30 14:21:09 ----D---- C:\Program Files\wmv_vcm
2009-10-30 14:21:00 ----A---- C:\WINDOWS\Showtime1.ini
2009-10-30 14:19:43 ----A---- C:\WINDOWS\EZPhotoTools2.ini
2009-10-30 14:19:13 ----D---- C:\Program Files\BestOn
2009-10-30 14:18:21 ----D---- C:\WINDOWS\PixArt
2009-10-30 14:18:21 ----D---- C:\Program Files\CRYSTAL CAM
2009-10-30 14:18:20 ----D---- C:\Program Files\Fichiers communs\CTCAM
2009-10-30 09:43:58 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Ulead Systems
2009-10-30 09:43:52 ----D---- C:\Documents and Settings\All Users\Application Data\Ulead Systems
2009-10-30 09:39:53 ----D---- C:\Program Files\Ulead Systems
2009-10-30 09:37:51 ----A---- C:\WINDOWS\ModemLog_BVRP Generic Modem #4.txt
2009-10-30 09:35:54 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2009-10-30 09:04:25 ----A---- C:\WINDOWS\vidcap32.exe
2009-10-30 09:04:25 ----A---- C:\WINDOWS\amcap.exe
2009-10-30 09:04:21 ----A---- C:\WINDOWS\usndhv71.exe
2009-10-30 09:04:21 ----A---- C:\WINDOWS\sndhv71.ini
2009-10-30 09:04:20 ----D---- C:\Program Files\Fichiers communs\sndhv71
2009-10-30 09:04:20 ----A---- C:\WINDOWS\system32\vsndhv71.dll
2009-10-30 09:04:20 ----A---- C:\WINDOWS\system32\sndhv71.dll
2009-10-30 09:04:20 ----A---- C:\WINDOWS\system32\dsndhv71.dll
2009-10-30 09:04:20 ----A---- C:\WINDOWS\dsndhv71.exe
2009-10-30 08:04:10 ----D---- C:\VP-EYE
2009-10-30 08:04:10 ----A---- C:\WINDOWS\unvpeye.ini
2009-10-26 18:28:29 ----D---- C:\Documents and Settings\Le Bigot\Application Data\HpUpdate
2009-10-26 18:28:28 ----D---- C:\WINDOWS\Hewlett-Packard
2009-10-25 07:34:43 ----D---- C:\WINDOWS\pss
2009-10-24 15:46:42 ----HDC---- C:\WINDOWS$NtUninstallKB961118$
2009-10-23 17:41:54 ----D---- C:\WINDOWS\system32\XPSViewer
2009-10-23 17:41:50 ----D---- C:\Program Files\MSBuild
2009-10-23 17:41:49 ----D---- C:\WINDOWS\system32\en-US
2009-10-23 17:41:43 ----D---- C:\Program Files\Reference Assemblies
2009-10-23 17:41:17 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2009-10-23 17:41:17 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2009-10-23 17:41:17 ----N---- C:\WINDOWS\system32\prntvpt.dll
2009-10-23 17:41:17 ----D---- C:\fb9d024190f240760dc30e62
2009-10-23 09:18:25 ----A---- C:\WINDOWS\NAVIGMA.INI
2009-10-23 09:14:25 ----D---- C:\Program Files\Micro Application
2009-10-23 08:57:55 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-10-23 08:57:48 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-10-23 08:57:48 ----D---- C:\Program Files\Adobe
2009-10-23 08:44:21 ----D---- C:\Documents and Settings\Le Bigot\Application Data\pdfforge
2009-10-23 08:26:53 ----A---- C:\WINDOWS\system32\pdfcmnnt.dll
2009-10-23 08:26:50 ----A---- C:\WINDOWS\system32\MSMPIDE.DLL
2009-10-23 08:26:50 ----A---- C:\WINDOWS\system32\MSCMCFR.DLL
2009-10-23 08:26:50 ----A---- C:\WINDOWS\system32\MSCC2FR.DLL
2009-10-23 08:26:49 ----D---- C:\Program Files\PDFCreator
2009-10-23 06:53:31 ----HDC---- C:\WINDOWS$NtUninstallKB961503$
2009-10-22 04:34:33 ----A---- C:\WINDOWS\system32\muweb.dll
2009-10-22 04:34:33 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-10-22 04:34:33 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-10-21 17:48:25 ----D---- C:\Program Files\Microsoft Sync Framework
2009-10-21 17:47:43 ----D---- C:\Program Files\Microsoft
2009-10-21 17:47:29 ----D---- C:\Program Files\Windows Live SkyDrive
2009-10-21 17:47:08 ----D---- C:\Program Files\Windows Live
2009-10-21 17:38:33 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-10-21 15:51:18 ----D---- C:\bin
2009-10-21 15:50:19 ----D---- C:\Program Files\Fichiers communs\Sonic Shared
2009-10-21 15:48:38 ----D---- C:\Program Files\Fichiers communs\HP
2009-10-21 15:45:10 ----RA---- C:\WINDOWS\system32\hpovst09.dll
2009-10-21 15:42:51 ----A---- C:\WINDOWS\hpntwksetup.ini
2009-10-21 13:34:32 ----HDC---- C:\WINDOWS$NtUninstallKB951978$
2009-10-21 13:34:27 ----HDC---- C:\WINDOWS$NtUninstallKB956744$
2009-10-21 13:34:21 ----HDC---- C:\WINDOWS$NtUninstallKB973540_WM9$
2009-10-21 13:34:17 ----HDC---- C:\WINDOWS$NtUninstallKB954459$
2009-10-21 08:22:22 ----D---- C:\Documents and Settings\All Users\Application Data\McAfee Security Scan
2009-10-20 17:41:43 ----D---- C:\WINDOWS\Prefetch
2009-10-20 17:36:58 ----HDC---- C:\WINDOWS$NtUninstallKB975467$
2009-10-20 17:36:53 ----HDC---- C:\WINDOWS$NtUninstallKB975025$
2009-10-20 17:36:48 ----HDC---- C:\WINDOWS$NtUninstallKB974571$
2009-10-20 17:36:40 ----HDC---- C:\WINDOWS$NtUninstallKB974112$
2009-10-20 17:36:33 ----HDC---- C:\WINDOWS$NtUninstallKB973869$
2009-10-20 17:36:28 ----HDC---- C:\WINDOWS$NtUninstallKB973815$
2009-10-20 17:36:21 ----HDC---- C:\WINDOWS$NtUninstallKB973507$
2009-10-20 17:36:16 ----HDC---- C:\WINDOWS$NtUninstallKB973354$
2009-10-20 17:36:11 ----HDC---- C:\WINDOWS$NtUninstallKB971657$
2009-10-20 17:36:05 ----HDC---- C:\WINDOWS$NtUninstallKB971633$
2009-10-20 17:36:00 ----HDC---- C:\WINDOWS$NtUninstallKB971557$
2009-10-20 17:35:53 ----HDC---- C:\WINDOWS$NtUninstallKB971486$
2009-10-20 17:35:47 ----HDC---- C:\WINDOWS$NtUninstallKB970238$
2009-10-20 17:35:41 ----HDC---- C:\WINDOWS$NtUninstallKB969059$
2009-10-20 17:35:35 ----HDC---- C:\WINDOWS$NtUninstallKB968537$
2009-10-20 17:35:29 ----HDC---- C:\WINDOWS$NtUninstallKB968389$
2009-10-20 17:35:22 ----HDC---- C:\WINDOWS$NtUninstallKB967715$
2009-10-20 17:35:16 ----HDC---- C:\WINDOWS$NtUninstallKB961501$
2009-10-20 17:35:11 ----HDC---- C:\WINDOWS$NtUninstallKB961371-v2$
2009-10-20 17:35:06 ----HDC---- C:\WINDOWS$NtUninstallKB960859$
2009-10-20 17:35:00 ----HDC---- C:\WINDOWS$NtUninstallKB960803$
2009-10-20 17:34:55 ----HDC---- C:\WINDOWS$NtUninstallKB960225$
2009-10-20 17:34:49 ----HDC---- C:\WINDOWS$NtUninstallKB959426$
2009-10-20 17:34:44 ----HDC---- C:\WINDOWS$NtUninstallKB958687$
2009-10-20 17:34:39 ----HDC---- C:\WINDOWS$NtUninstallKB958644$
2009-10-20 17:34:33 ----HDC---- C:\WINDOWS$NtUninstallKB957097$
2009-10-20 17:34:28 ----HDC---- C:\WINDOWS$NtUninstallKB956844$
2009-10-20 17:34:23 ----HDC---- C:\WINDOWS$NtUninstallKB956803$
2009-10-20 17:34:18 ----HDC---- C:\WINDOWS$NtUninstallKB956802$
2009-10-20 17:34:09 ----HDC---- C:\WINDOWS$NtUninstallKB956572$
2009-10-20 17:34:02 ----HDC---- C:\WINDOWS$NtUninstallKB955069$
2009-10-20 17:33:57 ----HDC---- C:\WINDOWS$NtUninstallKB952954$
2009-10-20 17:33:51 ----HDC---- C:\WINDOWS$NtUninstallKB952287$
2009-10-20 17:33:46 ----HDC---- C:\WINDOWS$NtUninstallKB952004$
2009-10-20 17:33:40 ----HDC---- C:\WINDOWS$NtUninstallKB951748$
2009-10-20 17:33:34 ----HDC---- C:\WINDOWS$NtUninstallKB951376-v2$
2009-10-20 17:33:29 ----HDC---- C:\WINDOWS$NtUninstallKB951066$
2009-10-20 17:33:24 ----HDC---- C:\WINDOWS$NtUninstallKB950974$
2009-10-20 17:33:19 ----HDC---- C:\WINDOWS$NtUninstallKB950762$
2009-10-20 17:33:13 ----HDC---- C:\WINDOWS$NtUninstallKB946648$
2009-10-20 17:33:08 ----HDC---- C:\WINDOWS$NtUninstallKB923561$
2009-10-20 17:31:04 ----D---- C:\WINDOWS\system32\fr
2009-10-20 17:31:04 ----D---- C:\WINDOWS\system32\bits
2009-10-20 17:31:04 ----D---- C:\WINDOWS\l2schemas
2009-10-20 17:28:29 ----D---- C:\WINDOWS\network diagnostic
2009-10-20 17:25:58 ----HDC---- C:\WINDOWS$NtServicePackUninstall$
2009-10-20 17:25:57 ----D---- C:\WINDOWS\EHome
2009-10-20 17:24:09 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Google
2009-10-20 17:23:45 ----D---- C:\Program Files\Google
2009-10-20 17:23:45 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2009-10-20 07:00:15 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Adobe
2009-10-20 06:30:13 ----D---- C:\WINDOWS\ie8updates
2009-10-20 06:29:51 ----D---- C:\WINDOWS\WBEM
2009-10-20 06:29:34 ----HDC---- C:\WINDOWS\ie8
2009-10-20 06:29:34 ----D---- C:\WINDOWS\system32\fr-FR
2009-10-19 13:30:34 ----A---- C:\WINDOWS\NeroDigital.ini
2009-10-19 07:05:12 ----A---- C:\WINDOWS\ModemLog_BVRP Generic Modem #3.txt
2009-10-19 07:01:29 ----A---- C:\WINDOWS\ModemLog_BVRP Generic Modem #2.txt
2009-10-19 07:01:28 ----A---- C:\WINDOWS\ModemLog_BVRP Generic Modem.txt
2009-10-19 06:54:26 ----D---- C:\Program Files\mobile PhoneTools
2009-10-19 06:54:26 ----D---- C:\Documents and Settings\All Users\Application Data\BVRP Software
2009-10-19 05:51:56 ----D---- C:\Program Files\palmOne
2009-10-19 05:51:45 ----A---- C:\WINDOWS\system32\MRT.exe
2009-10-19 05:47:54 ----HDC---- C:\WINDOWS$NtUninstallKB941569$
2009-10-19 05:47:30 ----D---- C:\Program Files\MSXML 4.0
2009-10-19 05:35:08 ----D---- C:\Documents and Settings\All Users\Application Data\TomTom
2009-10-19 05:33:05 ----HDC---- C:\WINDOWS$NtUninstallKB951376-v2_0$
2009-10-19 05:33:00 ----HDC---- C:\WINDOWS$NtUninstallKB952954_0$
2009-10-19 05:32:51 ----HDC---- C:\WINDOWS$NtUninstallKB959426_0$
2009-10-19 05:32:43 ----HDC---- C:\WINDOWS$NtUninstallKB946648_0$
2009-10-19 05:32:35 ----HDC---- C:\WINDOWS$NtUninstallKB956803_0$
2009-10-19 05:32:34 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Mozilla
2009-10-19 05:32:33 ----D---- C:\Documents and Settings\Le Bigot\Application Data\TomTom
2009-10-19 05:32:26 ----HDC---- C:\WINDOWS$NtUninstallKB960859_0$
2009-10-19 05:32:24 ----D---- C:\Program Files\TomTom International B.V
2009-10-19 05:32:17 ----HDC---- C:\WINDOWS$NtUninstallKB935448$
2009-10-19 05:32:12 ----D---- C:\Program Files\TomTom HOME 2
2009-10-19 05:31:58 ----HDC---- C:\WINDOWS$NtUninstallKB974455$
2009-10-19 05:31:48 ----HDC---- C:\WINDOWS$NtUninstallKB958869$
2009-10-19 05:31:43 ----HDC---- C:\WINDOWS$NtUninstallKB954155_WM9$
2009-10-19 05:31:39 ----HDC---- C:\WINDOWS$NtUninstallKB969059_0$
2009-10-19 05:31:34 ----HDC---- C:\WINDOWS$NtUninstallKB961371-v2_0$
2009-10-19 05:31:28 ----HDC---- C:\WINDOWS$NtUninstallKB950974_0$
2009-10-19 05:31:23 ----HDC---- C:\WINDOWS$NtUninstallKB971657_0$
2009-10-19 05:31:17 ----HDC---- C:\WINDOWS$NtUninstallKB971557_0$
2009-10-19 05:31:12 ----HDC---- C:\WINDOWS$NtUninstallKB960225_0$
2009-10-19 05:31:06 ----HDC---- C:\WINDOWS$NtUninstallKB974112_0$
2009-10-19 05:30:51 ----HDC---- C:\WINDOWS$NtUninstallKB956572_0$
2009-10-19 05:30:43 ----HDC---- C:\WINDOWS$NtUninstallKB956844_0$
2009-10-19 05:30:38 ----HDC---- C:\WINDOWS$NtUninstallKB961501_0$
2009-10-19 05:30:32 ----HDC---- C:\WINDOWS$NtUninstallKB968816_WM9$
2009-10-19 05:30:29 ----HDC---- C:\WINDOWS$NtUninstallKB971633_0$
2009-10-19 05:30:22 ----HDC---- C:\WINDOWS$NtUninstallKB952069_WM9$
2009-10-19 05:30:18 ----HDC---- C:\WINDOWS$NtUninstallKB973869_0$
2009-10-19 05:30:12 ----HDC---- C:\WINDOWS$NtUninstallKB975025_0$
2009-10-19 05:30:00 ----HDC---- C:\WINDOWS$NtUninstallKB973540_WM9L$
2009-10-19 05:29:53 ----HDC---- C:\WINDOWS$NtUninstallKB952004_0$
2009-10-19 05:29:48 ----HDC---- C:\WINDOWS$NtUninstallKB974571_0$
2009-10-19 05:29:43 ----HDC---- C:\WINDOWS$NtUninstallKB973507_0$
2009-10-19 05:29:38 ----HDC---- C:\WINDOWS$NtUninstallKB950762_0$
2009-10-19 05:29:34 ----HDC---- C:\WINDOWS$NtUninstallKB957097_0$
2009-10-19 05:29:29 ----HDC---- C:\WINDOWS$NtUninstallKB958687_0$
2009-10-19 05:29:24 ----HDC---- C:\WINDOWS$NtUninstallKB952287_0$
2009-10-19 05:29:19 ----HDC---- C:\WINDOWS$NtUninstallKB973354_0$
2009-10-19 05:29:11 ----HDC---- C:\WINDOWS$NtUninstallKB967715_0$
2009-10-19 05:29:05 ----HDC---- C:\WINDOWS$NtUninstallKB951066_0$
2009-10-19 05:28:58 ----HDC---- C:\WINDOWS$NtUninstallKB951748_0$
2009-10-19 05:28:52 ----HDC---- C:\WINDOWS$NtUninstallKB971961$
2009-10-19 05:28:47 ----HDC---- C:\WINDOWS$NtUninstallKB970238_0$
2009-10-19 05:28:37 ----HDC---- C:\WINDOWS$NtUninstallKB971486_0$
2009-10-19 05:28:30 ----D---- C:\WINDOWS\ServicePackFiles
2009-10-19 05:28:29 ----HDC---- C:\WINDOWS$NtUninstallKB958470$
2009-10-19 05:28:23 ----HDC---- C:\WINDOWS$NtUninstallKB960803_0$
2009-10-19 05:28:18 ----HDC---- C:\WINDOWS$NtUninstallKB973815_0$
2009-10-19 05:27:07 ----HDC---- C:\WINDOWS$NtUninstallKB968537_0$
2009-10-19 05:27:01 ----HDC---- C:\WINDOWS$NtUninstallKB973525$
2009-10-19 05:26:57 ----HDC---- C:\WINDOWS$NtUninstallKB958644_0$
2009-10-19 05:26:47 ----HDC---- C:\WINDOWS$NtUninstallKB955069_0$
2009-10-19 05:26:41 ----HDC---- C:\WINDOWS$NtUninstallKB956802_0$
2009-10-19 05:26:30 ----HDC---- C:\WINDOWS$NtUninstallKB944338-v2$
2009-10-19 05:26:23 ----HDC---- C:\WINDOWS$NtUninstallKB923561_0$
2009-10-19 05:26:18 ----HDC---- C:\WINDOWS$NtUninstallKB970653-v3$
2009-10-19 05:26:15 ----HDC---- C:\WINDOWS$NtUninstallKB975467_0$
2009-10-19 05:26:05 ----HDC---- C:\WINDOWS$NtUninstallKB968389_0$
2009-10-18 10:50:21 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Apple Computer
2009-10-18 10:49:48 ----D---- C:\Documents and Settings\All Users\Application Data{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-10-18 10:49:15 ----D---- C:\Program Files\QuickTime
2009-10-18 10:49:14 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2009-10-18 10:48:53 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-10-18 10:39:45 ----D---- C:\Program Files\Conduit
2009-10-18 10:39:44 ----D---- C:\Program Files\Radio_France
2009-10-18 10:38:22 ----D---- C:\Documents and Settings\Le Bigot\Application Data\PKWARE
2009-10-18 10:38:22 ----D---- C:\Documents and Settings\All Users\Application Data\PKWARE
2009-10-18 10:38:10 ----D---- C:\Program Files\Fichiers communs\PKWARE
2009-10-18 10:33:12 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Macromedia
2009-10-18 08:40:45 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Druide
2009-10-18 08:37:00 ----A---- C:\WINDOWS\Antidote.ini
2009-10-18 08:36:46 ----D---- C:\Program Files\Druide
2009-10-18 08:34:27 ----D---- C:\Program Files\Conjugaison
2009-10-18 08:31:26 ----D---- C:\WINDOWS\Downloaded Installations
2009-10-18 08:19:47 ----D---- C:\WINDOWS\system32\NtmsData
2009-10-18 08:15:55 ----D---- C:\Documents and Settings\Le Bigot\Application Data\HP
2009-10-18 08:13:26 ----D---- C:\Documents and Settings\All Users\Application Data\HP
2009-10-18 08:09:29 ----D---- C:\Documents and Settings\All Users\Application Data\Sonic
2009-10-18 08:05:44 ----RA---- C:\WINDOWS\system32\HPZIDS01.dll
2009-10-18 08:05:43 ----A---- C:\WINDOWS\system32\hpz3l054.dll
2009-10-18 08:05:39 ----RA---- C:\WINDOWS\system32\hpowiax2.dll
2009-10-18 08:05:39 ----RA---- C:\WINDOWS\system32\hpotiop2.dll
2009-10-18 08:05:30 ----A---- C:\WINDOWS\system32\AddPort.ini
2009-10-18 08:03:50 ----D---- C:\TEMP
2009-10-18 08:03:31 ----A---- C:\WINDOWS\system32\HPZisn12.dll
2009-10-18 08:03:31 ----A---- C:\WINDOWS\system32\HPZipt12.dll
2009-10-18 08:03:31 ----A---- C:\WINDOWS\system32\HPZipr12.dll
2009-10-18 08:03:31 ----A---- C:\WINDOWS\system32\HPZipm12.exe
2009-10-18 08:03:31 ----A---- C:\WINDOWS\system32\HPZinw12.exe
2009-10-18 08:03:31 ----A---- C:\WINDOWS\system32\HPZidr12.dll
2009-10-18 08:03:30 ----A---- C:\WINDOWS\IsUninst.exe
2009-10-18 08:02:46 ----D---- C:\Program Files\HP
2009-10-18 08:02:16 ----D---- C:\Config.Msi
2009-10-18 07:57:54 ----D---- C:\Program Files\USB Tablet
2009-10-18 07:57:54 ----A---- C:\WINDOWS\system32\wintab32.dll
2009-10-18 07:57:54 ----A---- C:\WINDOWS\system32\utblfilt.dll
2009-10-18 07:57:54 ----A---- C:\WINDOWS\system32\TblRes.dll
2009-10-18 07:57:54 ----A---- C:\WINDOWS\system32\tblmouse.exe
2009-10-18 07:57:54 ----A---- C:\WINDOWS\system32\Tblfunc.dll
2009-10-18 07:57:54 ----A---- C:\WINDOWS\system32\Funckey.dll
2009-10-18 07:57:54 ----A---- C:\WINDOWS\system32\Atwtusb.exe
2009-10-18 07:57:54 ----A---- C:\WINDOWS\aiptbl.ini
2009-10-18 07:57:47 ----A---- C:\WINDOWS\IsUn040c.exe
2009-10-18 07:57:18 ----D---- C:\Download
2009-10-18 07:55:22 ----SHD---- C:\RECYCLER
2009-10-18 07:54:18 ----D---- C:\Program Files\Microsoft Money
2009-10-18 07:52:29 ----A---- C:\WINDOWS\ODBC.INI
2009-10-18 07:52:25 ----A---- C:\WINDOWS\system32\mdimon.dll
2009-10-18 07:51:39 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2009-10-18 07:51:36 ----D---- C:\Program Files\Microsoft Works
2009-10-18 07:51:23 ----D---- C:\WINDOWS\SHELLNEW
2009-10-18 07:51:15 ----D---- C:\Program Files\Microsoft.NET
2009-10-18 07:51:15 ----D---- C:\Program Files\Microsoft Office
2009-10-18 07:23:47 ----RD---- C:\MSOCache
2009-10-18 07:21:07 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Nero
2009-10-18 07:15:47 ----D---- C:\Program Files\Nero
2009-10-18 07:15:47 ----D---- C:\Program Files\Fichiers communs\Nero
2009-10-18 07:15:47 ----D---- C:\Documents and Settings\All Users\Application Data\Nero
2009-10-18 07:14:43 ----D---- C:\WINDOWS\RegisteredPackages
2009-10-18 07:13:46 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2009-10-18 07:13:45 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-10-18 07:08:04 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Hewlett-Packard
2009-10-18 06:39:40 ----D---- C:\Program Files\Fichiers communs\Hewlett-Packard
2009-10-18 06:38:47 ----D---- C:\Program Files\Hewlett-Packard
2009-10-18 06:32:01 ----A---- C:\WINDOWS\system32\MSVCR71.dll
2009-10-18 06:32:01 ----A---- C:\WINDOWS\system32\MSVCP71.dll
2009-10-18 06:32:01 ----A---- C:\WINDOWS\system32\MFC71.dll
2009-10-18 06:26:01 ----N---- C:\WINDOWS\system32\tzchange.exe
2009-10-18 06:24:26 ----D---- C:\WINDOWS\system32\Lang
2009-10-17 19:18:32 ----A---- C:\WINDOWS\system32\h323log.txt
2009-10-17 19:17:22 ----A---- C:\WINDOWS\system32\hidserv.dll
2009-10-17 19:16:20 ----A---- C:\WINDOWS\system32\usbui.dll
2009-10-17 19:15:41 ----SHD---- C:\WINDOWS\Installer
2009-10-17 19:15:41 ----D---- C:\Program Files\Fichiers communs\ODBC
2009-10-17 19:15:41 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-10-17 19:15:41 ----A---- C:\WINDOWS\ODBCINST.INI
2009-10-17 19:15:38 ----RD---- C:\Program Files
2009-10-17 19:15:38 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
2009-10-17 19:15:38 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-10-17 19:15:38 ----D---- C:\Program Files\Fichiers communs
2009-10-17 19:15:36 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-10-17 19:15:36 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-10-17 19:15:36 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdur.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdru.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2009-10-17 19:15:34 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2009-10-17 19:15:32 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-10-17 19:15:32 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-10-17 19:15:32 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-10-17 19:15:32 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-10-17 19:15:32 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-10-17 19:15:32 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-10-17 19:15:32 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-10-17 19:15:31 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-10-17 19:15:31 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-10-17 19:15:31 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-10-17 19:15:31 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-10-17 19:15:31 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdro.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2009-10-17 19:15:29 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2009-10-17 19:15:27 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-10-17 19:15:27 ----A---- C:\WINDOWS\system32\irclass.dll
2009-10-17 19:15:27 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-10-17 19:15:27 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-10-17 19:15:26 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-10-17 19:15:25 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-10-17 19:15:24 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-10-17 19:15:24 ----A---- C:\WINDOWS\system32\batt.dll
2009-10-17 19:15:23 ----A---- C:\WINDOWS\system32\storprop.dll
2009-10-17 19:15:23 ----A---- C:\WINDOWS\notepad.exe
2009-10-17 19:15:19 ----RA---- C:\WINDOWS\SET29.tmp
2009-10-17 19:15:19 ----RA---- C:\WINDOWS\SET28.tmp
2009-10-17 19:15:19 ----RA---- C:\WINDOWS\SET27.tmp
2009-10-17 19:15:19 ----RA---- C:\WINDOWS\SET26.tmp
2009-10-17 19:15:19 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2009-10-17 19:15:18 ----RA---- C:\WINDOWS\SET25.tmp
2009-10-17 19:15:16 ----RA---- C:\WINDOWS\SET8.tmp
2009-10-17 19:15:14 ----RA---- C:\WINDOWS\SET4.tmp
2009-10-17 19:15:13 ----RA---- C:\WINDOWS\SET3.tmp
2009-10-17 19:15:08 ----D---- C:\WINDOWS\system32\CatRoot2
2009-10-17 19:15:08 ----D---- C:\WINDOWS\system32\CatRoot
2009-10-17 19:15:03 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-10-17 19:14:42 ----SHD---- C:\System Volume Information
2009-10-17 19:14:42 ----D---- C:\Documents and Settings
2009-10-17 19:13:58 ----RASH---- C:\boot.ini
2009-10-17 19:08:12 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-10-17 19:08:12 ----RSD---- C:\WINDOWS\Fonts
2009-10-17 19:08:12 ----RD---- C:\WINDOWS\Web
2009-10-17 19:08:12 ----HD---- C:\WINDOWS\inf
2009-10-17 19:08:12 ----D---- C:\WINDOWS\WinSxS
2009-10-17 19:08:12 ----D---- C:\WINDOWS\twain_32
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\wins
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\wbem
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\usmt
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\spool
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\ShellExt
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\Setup
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\ras
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\oobe
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\npp
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\mui
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\inetsrv
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\IME
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\icsxml
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\ias
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\export
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\drivers
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\dhcp
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\config
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\3com_dmi
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\3076
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\2052
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\1054
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\1042
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\1041
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\1037
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\1036
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\1033
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\1031
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\1028
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32\1025
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system32
2009-10-17 19:08:12 ----D---- C:\WINDOWS\system
2009-10-17 19:08:12 ----D---- C:\WINDOWS\security
2009-10-17 19:08:12 ----D---- C:\WINDOWS\Resources
2009-10-17 19:08:12 ----D---- C:\WINDOWS\repair
2009-10-17 19:08:12 ----D---- C:\WINDOWS\Provisioning
2009-10-17 19:08:12 ----D---- C:\WINDOWS\PeerNet
2009-10-17 19:08:12 ----D---- C:\WINDOWS\pchealth
2009-10-17 19:08:12 ----D---- C:\WINDOWS\OEM
2009-10-17 19:08:12 ----D---- C:\WINDOWS\mui
2009-10-17 19:08:12 ----D---- C:\WINDOWS\msapps
2009-10-17 19:08:12 ----D---- C:\WINDOWS\msagent
2009-10-17 19:08:12 ----D---- C:\WINDOWS\Media
2009-10-17 19:08:12 ----D---- C:\WINDOWS\java
2009-10-17 19:08:12 ----D---- C:\WINDOWS\ime
2009-10-17 19:08:12 ----D---- C:\WINDOWS\Help
2009-10-17 19:08:12 ----D---- C:\WINDOWS\Driver Cache
2009-10-17 19:08:12 ----D---- C:\WINDOWS\Debug
2009-10-17 19:08:12 ----D---- C:\WINDOWS\Cursors
2009-10-17 19:08:12 ----D---- C:\WINDOWS\Connection Wizard
2009-10-17 19:08:12 ----D---- C:\WINDOWS\Config
2009-10-17 19:08:12 ----D---- C:\WINDOWS\AppPatch
2009-10-17 19:08:12 ----D---- C:\WINDOWS\addins
2009-10-17 19:08:12 ----D---- C:\WINDOWS
2009-10-17 17:47:16 ----HDC---- C:\WINDOWS$MSI31Uninstall_KB893803v2$
2009-10-17 17:47:01 ----D---- C:\WINDOWS\system32\PreInstall
2009-10-17 17:47:00 ----HDC---- C:\WINDOWS$NtUninstallKB898461$
2009-10-17 17:39:40 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-10-17 17:34:15 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2009-10-17 17:34:15 ----A---- C:\WINDOWS\ALCWZRD.EXE
2009-10-17 17:34:14 ----N---- C:\WINDOWS\system32\ChCfg.exe
2009-10-17 17:34:14 ----D---- C:\WINDOWS\system32\RTCOM
2009-10-17 17:34:14 ----A---- C:\WINDOWS\system32\RTLCPAPI.dll
2009-10-17 17:34:14 ----A---- C:\WINDOWS\RTLCPL.EXE
2009-10-17 17:34:14 ----A---- C:\WINDOWS\RTHDCPL.EXE
2009-10-17 17:34:12 ----N---- C:\WINDOWS\RtlExUpd.dll
2009-10-17 17:34:12 ----D---- C:\Program Files\Realtek
2009-10-17 17:34:12 ----A---- C:\WINDOWS\ALCMTR.EXE
2009-10-17 17:33:26 ----D---- C:\Program Files\Intel
2009-10-17 17:32:54 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-10-17 17:32:41 ----HD---- C:\Program Files\InstallShield Installation Information
2009-10-17 17:32:36 ----D---- C:\Program Files\VIA
2009-10-17 17:32:33 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-10-17 17:32:32 ----D---- C:\VIARAID
2009-10-17 17:32:32 ----A---- C:\WINDOWS\system32\partdisk.exe
2009-10-17 17:32:21 ----A---- C:\WINDOWS\system32\w29NCPA.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvsvc32.exe
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvshell.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvrszht.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvrsru.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvrsko.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvrsja.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvrsit.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvrses.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvrseng.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvrsde.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvmctray.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nview.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvdspsch.exe
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvcpl.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvcodins.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvcod.dll
2009-10-17 17:32:20 ----A---- C:\WINDOWS\system32\nvappbar.exe
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\sm56co.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nwiz.exe
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwrszht.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwrsru.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwrsko.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwrsja.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwrsit.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwrses.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwrseng.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwrsde.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwimg.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwdmcpl.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nvwddi.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\sm56spn.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\sm56jpn.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\sm56itl.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\sm56hlpr.exe
2009-10-17 17:32:19 ----A---- C:\WINDOWS\sm56ger.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\sm56fra.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\sm56eng.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\sm56cht.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\sm56chs.dll
2009-10-17 17:32:19 ----A---- C:\WINDOWS\sm56brz.dll
2009-10-17 17:31:57 ----D---- C:\fsc.tmp
2009-10-17 17:31:57 ----A---- C:\FSC-DeskUpdate.txt
2009-10-17 17:29:47 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-10-17 17:29:46 ----D---- C:\Documents and Settings\Le Bigot\Application Data\Identities
2009-10-17 17:29:44 ----HD---- C:\Program Files\Uninstall Information
2009-10-17 17:29:40 ----ASH---- C:\Documents and Settings\Le Bigot\Application Data\desktop.ini
2009-10-17 17:29:39 ----SD---- C:\Documents and Settings\Le Bigot\Application Data\Microsoft
2009-10-17 17:28:49 ----D---- C:\WINDOWS\SoftwareDistribution
2009-10-17 17:28:48 ----SD---- C:\WINDOWS\system32\Microsoft
2009-10-17 17:28:48 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-10-17 17:25:51 ----D---- C:\WINDOWS\system32\xircom
2009-10-17 17:25:51 ----D---- C:\Program Files\xerox
2009-10-17 17:25:51 ----D---- C:\Program Files\microsoft frontpage
2009-10-17 17:25:40 ----A---- C:\WINDOWS\system32\OEMINFO.INI
2009-10-17 17:25:29 ----A---- C:\WINDOWS\system32\javaws.exe
2009-10-17 17:25:29 ----A---- C:\WINDOWS\system32\javaw.exe
2009-10-17 17:25:29 ----A---- C:\WINDOWS\system32\java.exe
2009-10-17 17:25:13 ----D---- C:\Program Files\Java
2009-10-17 17:25:12 ----D---- C:\Program Files\Fichiers communs\Java
2009-10-17 17:24:24 ----RSD---- C:\WINDOWS\assembly
2009-10-17 17:24:24 ----D---- C:\WINDOWS\Microsoft.NET
2009-10-17 17:24:23 ----D---- C:\WINDOWS\system32\URTTemp
2009-10-17 17:23:17 ----D---- C:\WINDOWS\fsc
2009-10-17 17:23:07 ----D---- C:\AddOn
2009-10-17 17:22:43 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-10-17 17:22:43 ----HD---- C:\WINDOWS$hf_mig$
2009-10-17 17:22:41 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-10-17 17:22:39 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-10-17 17:22:31 ----A---- C:\WINDOWS\control.ini
2009-10-17 17:22:31 ----A---- C:\AUTOEXEC.BAT
2009-10-17 17:22:19 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-10-17 17:21:49 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-10-17 17:21:49 ----RD---- C:\WINDOWS\Offline Web Pages
2009-10-17 17:21:49 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-10-17 17:21:44 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-10-17 17:21:42 ----HD---- C:\Program Files\WindowsUpdate
2009-10-17 17:21:41 ----D---- C:\Program Files\Services en ligne
2009-10-17 17:21:30 ----D---- C:\WINDOWS\system32\DirectX
2009-10-17 17:21:12 ----A---- C:\WINDOWS\system32\atrace.dll
2009-10-17 17:21:10 ----A---- C:\WINDOWS\system32\desktop.ini
2009-10-17 17:21:10 ----A---- C:\WINDOWS\desktop.ini
2009-10-17 17:21:04 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-10-17 17:21:03 ----A---- C:\WINDOWS\system32\acctres.dll
2009-10-17 17:21:02 ----D---- C:\Program Files\Fichiers communs\Services
2009-10-17 17:21:00 ----SD---- C:\WINDOWS\Tasks
2009-10-17 17:21:00 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-10-17 17:20:59 ----D---- C:\Program Files\Fichiers communs\MSSoap
2009-10-17 17:20:56 ----D---- C:\WINDOWS\srchasst
2009-10-17 17:20:55 ----D---- C:\WINDOWS\system32\Macromed
2009-10-17 17:20:53 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-10-17 17:20:53 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-10-17 17:20:53 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-10-17 17:20:53 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-10-17 17:20:52 ----N---- C:\WINDOWS\system32\wuauclt.exe
2009-10-17 17:20:52 ----A---- C:\WINDOWS\system32\wups.dll
2009-10-17 17:20:52 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-10-17 17:20:52 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-10-17 17:20:52 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-10-17 17:20:52 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-10-17 17:20:52 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-10-17 17:20:52 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-10-17 17:20:51 ----N---- C:\WINDOWS\system32\qmgr.dll
2009-10-17 17:20:48 ----D---- C:\Program Files\Movie Maker
2009-10-17 17:20:45 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-10-17 17:20:45 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-10-17 17:20:45 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-10-17 17:20:45 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-10-17 17:20:42 ----A---- C:\WINDOWS\system32\fltmc.exe
2009-10-17 17:20:42 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-10-17 17:20:41 ----N---- C:\WINDOWS\system32\srsvc.dll
2009-10-17 17:20:41 ----D---- C:\WINDOWS\system32\Restore
2009-10-17 17:20:41 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-10-17 17:20:41 ----A---- C:\WINDOWS\system32\srclient.dll
2009-10-17 17:20:41 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-10-17 17:20:41 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-10-17 17:20:41 ----A---- C:\WINDOWS\system32\ils.dll
2009-10-17 17:20:40 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-10-17 17:20:40 ----A---- C:\WINDOWS\system32\msconf.dll
2009-10-17 17:20:40 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-10-17 17:20:38 ----D---- C:\Program Files\NetMeeting
2009-10-17 17:20:38 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-10-17 17:20:38 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-10-17 17:20:37 ----A---- C:\WINDOWS\system32\inetres.dll
2009-10-17 17:20:37 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-10-17 17:20:35 ----N---- C:\WINDOWS\system32\schedsvc.dll
2009-10-17 17:20:35 ----D---- C:\Program Files\Outlook Express
2009-10-17 17:20:35 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-10-17 17:20:35 ----A---- C:\WINDOWS\system32\mstask.dll
2009-10-17 17:20:34 ----A---- C:\WINDOWS\system32\isign32.dll
2009-10-17 17:20:34 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-10-17 17:20:34 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-10-17 17:20:34 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-10-17 17:20:30 ----D---- C:\Program Files\Fichiers communs\System
2009-10-17 17:20:26 ----D---- C:\Program Files\Internet Explorer
2009-10-17 17:20:23 ----D---- C:\Program Files\ComPlus Applications
2009-10-17 17:20:22 ----A---- C:\WINDOWS\vbaddin.ini
2009-10-17 17:20:22 ----A---- C:\WINDOWS\vb.ini
2009-10-17 17:20:21 ----D---- C:\WINDOWS\Registration
2009-10-17 17:20:04 ----D---- C:\Program Files\Windows Media Player
2009-10-17 17:20:04 ----D---- C:\Program Files\Online Services
2009-10-17 17:20:02 ----D---- C:\Program Files\Messenger
2009-10-17 17:19:58 ----D---- C:\Program Files\MSN Gaming Zone
2009-10-17 17:19:58 ----A---- C:\WINDOWS\system32\write.exe
2009-10-17 17:19:51 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-10-17 17:19:51 ----A---- C:\WINDOWS\system32\hticons.dll
2009-10-17 17:19:51 ----A---- C:\WINDOWS\system32\avwav.dll
2009-10-17 17:19:51 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-10-17 17:19:51 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-10-17 17:19:50 ----A---- C:\WINDOWS\system32\winchat.exe
2009-10-17 17:19:45 ----A---- C:\WINDOWS\system32\getuname.dll
2009-10-17 17:19:44 ----A---- C:\WINDOWS\system32\winmine.exe
2009-10-17 17:19:44 ----A---- C:\WINDOWS\system32\sol.exe
2009-10-17 17:19:44 ----A---- C:\WINDOWS\system32\charmap.exe
2009-10-17 17:19:44 ----A---- C:\WINDOWS\system32\calc.exe
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\tskill.exe
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\tscon.exe
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\shadow.exe
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\reset.exe
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\regini.exe
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-10-17 17:19:43 ----A---- C:\WINDOWS\system32\freecell.exe
2009-10-17 17:19:42 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-10-17 17:19:42 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-10-17 17:19:42 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-10-17 17:19:42 ----A---- C:\WINDOWS\system32\msg.exe
2009-10-17 17:19:42 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-10-17 17:19:42 ----A---- C:\WINDOWS\system32\logoff.exe
2009-10-17 17:19:42 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-10-17 17:19:41 ----A---- C:\WINDOWS\system32\stclient.dll
2009-10-17 17:19:41 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-10-17 17:19:41 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-10-17 17:19:41 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-10-17 17:19:41 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-10-17 17:19:41 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-10-17 17:19:41 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-10-17 17:19:41 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-10-17 17:19:37 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-10-17 17:19:28 ----D---- C:\Program Files\MSN
2009-10-17 17:19:27 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-10-17 17:19:27 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-10-17 17:19:27 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-10-17 17:19:27 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-10-17 17:19:26 ----D---- C:\Program Files\Windows NT
2009-10-17 17:19:26 ----A---- C:\WINDOWS\system32\spider.exe
2009-10-17 17:19:26 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-10-17 17:19:26 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-10-17 17:19:25 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-10-17 17:19:25 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-10-17 17:19:25 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-10-17 17:19:25 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-10-17 17:19:25 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-10-17 17:19:25 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-10-17 17:19:25 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-10-17 17:19:24 ----N---- C:\WINDOWS\system32\termsrv.dll
2009-10-17 17:19:24 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2009-10-17 17:19:24 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-10-17 17:19:24 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-10-17 17:19:24 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-10-17 17:19:24 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-10-17 17:19:24 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-10-17 17:19:24 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-10-17 17:19:24 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-10-17 17:19:23 ----D---- C:\WINDOWS\system32\MsDtc
2009-10-17 17:19:23 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-10-17 17:19:23 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-10-17 17:19:23 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-10-17 17:19:23 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-10-17 17:19:23 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-10-17 17:19:23 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-10-17 17:19:23 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-10-17 17:19:22 ----D---- C:\WINDOWS\system32\Com
2009-10-17 17:19:22 ----A---- C:\WINDOWS\system32\colbact.dll
2009-10-17 17:19:22 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-10-17 17:19:22 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-10-17 17:19:22 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-10-17 17:19:21 ----A---- C:\WINDOWS\system32\comuid.dll
2009-10-17 17:19:21 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-10-17 17:19:21 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-10-17 17:19:21 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-10-17 17:19:16 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-10-17 17:19:16 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-10-17 17:19:16 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-10-17 17:19:16 ----A---- C:\WINDOWS\system32\cmprops.dll

======List of files/folders modified in the last 1 months======

2009-11-07 08:58:25 ----A---- C:\WINDOWS\system.ini
2009-10-30 14:18:22 ----A---- C:\WINDOWS\win.ini
2009-10-22 10:17:28 ----N---- C:\WINDOWS\system32\mshtml.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-09-15 27408]
R1 AFS2K;AFS2k; C:\WINDOWS\system32\drivers\AFS2K.sys [2009-10-21 82380]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-09-15 52368]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-

ours27_1_1 · Novembre 7, 2009, 10:02

Fin du fichier…

R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-09-15 23152]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2005-03-23 2547008]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-05 12288]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-03-10 3408128]
R3 smserial;smserial; C:\WINDOWS\system32\DRIVERS\smserial.sys [2005-05-26 839724]
R3 StillCam;Pilote d’appareil photo numérique série; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-23 6912]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2005-03-18 188928]
R3 usbehci;Pilote miniport de contrôleur d’hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 w29n51;Pilote de carte de connexion réseau Intel® PRO/Wireless 2200BG pour Windows XP; C:\WINDOWS\system32\DRIVERS\w29n51.sys [2004-10-29 3222784]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 catchme;catchme; ??\C:\DOCUME~1\LEBIGO~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2004-10-27 145920]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-13 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-13 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-13 21568]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 PAC7311;CRYSTAL CAM; C:\WINDOWS\system32\DRIVERS\PA707UCM.SYS [2005-10-18 154752]
S3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-12-02 70912]
S3 Ser2pl;USB Filter Driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2004-08-15 42752]
S3 sermouse;Pilote pour souris sur port série; C:\WINDOWS\system32\DRIVERS\sermouse.sys [2001-08-23 18432]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SNDHV71;Dual Mode Camera (8000 VGA); C:\WINDOWS\system32\DRIVERS\sndhv71.sys [2003-06-13 228608]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d’imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 utblfilt;utblfilt; C:\WINDOWS\System32\drivers\utblfilt.sys [2001-05-23 12084]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-09-15 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-09-15 138680]
R2 Browser Defender Update Service;Browser Defender Update Service; C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe [2009-10-08 112592]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-08-08 836904]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-03-10 127042]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 TomTomHOMEService;TomTomHOMEService; C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [2009-06-03 92008]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-09-15 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-09-15 352920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-20 182768]
S3 HP Port Resolver;HP Port Resolver; C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE [2005-05-20 81920]
S3 HP Status Server;HP Status Server; C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE [2004-10-16 73728]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe [2007-08-03 382248]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

cricri58 · Novembre 7, 2009, 12:54

re

repose toi bien

ensuite

retourne ici penses que ne l as pas fait

Rends toi ici pour Vérifier l’installation de Java

===> Version Java

telecharge the killbox

the killbox

.Double clic sur killbox.exe (Pocket Killbox)

Dans “Full Path of File to Delete”
copie et colle:

C:\WINDOWS\PEV.exe

clique sur la croix rouge
une fenêtre va apparaître pour confirmation de suppression clique sur YES

.ensuite va dans post de travail / lecteur C: cherche et supprime le dossier nommée : !KillBox

.vide la corbeille

aprés

tu vas réparer Windows XP sans formater lis bien ca marche je l ai déja fait avec XP

on pourrai la utiliser la commande sfc /scannow mais ainsi bon !! c est mieux ainsi

A) Bootes sur le CD de Windows (Mets le CD de XP, redémarres l’ordinateur )

B) La procédure demande si on veut installer ou récupérer Windows.

Réponds “Installer” (touche [Entrée])

car si maintenant tu tapes ===>“Récupérer” (touche R) tu lancerais la console de récupération.(ce n’est pas ce qu’on veut ici)

C) La procédure d’installation examine la machine.

D) Un écran (toujours en mode texte) s’affiche en indiquant qu’une précédente installation de Windows a été découverte.

Il est alors demandé si on veut réinstaller ou réparer Windows.

==> Réponds “Réparer” (touche R)

E) Windows va s’installer (comme si c’était une 1ère fois), avec les mêmes écrans, mêmes étapes et progression.

Mais tout ce qui existe (applications installées, comptes utilisateurs,…) sera conservé integralement.

Seuls les fichiers du système seront remplacés.

Une fois terminé tu anticipes et tu fais tes mises à jour prioritaires

Cliques ==> Démarrer =>tous les programmes ==> Windows Update

et tu reviens

@+

encore une Chose

==> désinstalles Spyware Doctor

ours27_1_1 · Novembre 8, 2009, 9:42

Ca y est, tout est fait, j’espère que c’est fini maintenant, il devait y avoir un sacré virus pour nécessiter toute ces manips ?

cricri58 · Novembre 8, 2009, 10:34

Salut

poste un Log Hijackthis

Double-clique sur HJTInstall.exe et suis les instructions d’installation.

clique sur==> Do a system scan and save a logfile.

A la fin de l’analyse, le bloc-notes va s’ouvrir. Copie-colle le rapport ici

ours27_1_1 · Novembre 8, 2009, 11:12

Et c’est repartit !
:lol:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:11:28, on 08/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Java\jre1.5.0\bin\jusched.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\atwtusb.exe
C:\WINDOWS\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\PROGRA~1\WINDOW~4\MESSEN~1\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
C:\Program Files\PDFCreator\PDFCreator.exe
C:\Program Files\palmOne\HOTSYNC.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqnrs08.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqimzone.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\WINDOWS\system32\HPZinw12.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = google.fr…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = fr.msn.com…
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = “C:\Program Files\Outlook Express\msimn.exe”
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Radio France Toolbar - {1a2cd84f-2175-4ae8-bd60-ce0d04442b4f} - C:\Program Files\Radio_France\tbRadi.dll
O1 - Hosts: HP92440E HP0017A492440E
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Radio France Toolbar - {1a2cd84f-2175-4ae8-bd60-ce0d04442b4f} - C:\Program Files\Radio_France\tbRadi.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d’aide de l’Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Radio France Toolbar - {1a2cd84f-2175-4ae8-bd60-ce0d04442b4f} - C:\Program Files\Radio_France\tbRadi.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM…\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM…\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe
O4 - HKLM…\Run: [RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKLM…\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM…\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM…\Run: [NBKeyScan] “C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe”
O4 - HKLM…\Run: [atwtusb] atwtusb.exe beta
O4 - HKLM…\Run: [Adobe ARM] “C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM…\Run: [SMSERIAL] sm56hlpr.exe
O4 - HKLM…\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM…\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM…\Run: [Malwarebytes Anti-Malware (reboot)] “C:\Program Files\Malwarebytes’ Anti-Malware\mbam.exe” /runcleanupscript
O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU…\Run: [Gestionnaire Antidote.exe] C:\PROGRA~1\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKCU…\Run: [TomTomHOME.exe] “C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe”
O4 - HKCU…\Run: [msnmsgr] “C:\PROGRA~1\WINDOW~4\MESSEN~1\msnmsgr.exe” /background
O4 - HKCU…\Run: [swg] “C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe”
O4 - HKCU…\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: HotSync Manager.lnk = C:\Program Files\palmOne\HOTSYNC.EXE
O4 - Global Startup: Contrôleur de calendrier Ulead.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\CalCheck.exe
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: PDFCreator.lnk = C:\Program Files\PDFCreator\PDFCreator.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE…
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra ‘Tools’ menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra ‘Tools’ menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Correcteur - {F7C8E5F6-B6D1-45db-8D91-2BCFA5DF11A9} - C:\Program Files\Druide\Antidote\Internet Explorer\6\Antidote K - IE 6.htm (HKCU)
O9 - Extra button: Dictionnaires - {F9B969E8-58D0-4dd9-AC8A-EE2336FF8F65} - C:\Program Files\Druide\Antidote\Internet Explorer\6\Antidote D - IE 6.htm (HKCU)
O9 - Extra button: Guides - {FA089E36-3F1B-4c51-9A1A-C4E7012483AF} - C:\Program Files\Druide\Antidote\Internet Explorer\6\Antidote G - IE 6.htm (HKCU)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - fpdownload2.macromedia.com…
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - platformdl.adobe.com…
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

–
End of file - 10275 bytes

cricri58 · Novembre 8, 2009, 11:19

Salut

as- tu verifié ta version deJava que je t ai demandé deux fois ?

ours27_1_1 · Novembre 8, 2009, 11:34

Oui, mais je me retrouve sur le site Java tout en anglais, et comme je te le disais je ne touche jamais a une manette dont je ne connais pas le sens, alors j’ai continuer tes explications en pensant que tout se passait normalement !

cricri58 · Novembre 8, 2009, 11:42

je t ai donne JavaRa et ceci déja une fois

Vérifie l’installation de Java

===>[Java[/url]]www.java.com…]( [url=http://www.java.com/fr/download/installed.jsp)

alors fais c est important

aprés

Lances Hijackthis

Cliques sur ==> Do a System Scan Only

coches ces Lignes

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O4 - HKLM…\Run: [SoundMan] SOUNDMAN.EXE
O4 - Startup: HotSync Manager.lnk = C:\Program Files\palmOne\HOTSYNC.EXE
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - platformdl.adobe.com…

Fermes tes autres applications sauf ==> hijackthis ( bien sûr )

et Cliques sur ==> Fix Checked

ensuite

Télécharges ToolsCleaner! de A.Rothstein pour enlever les programmes utilisés pendant la procédure.

==>ToolsCleaner

==> Enregistres ToolsCleaner2.exe sur le Bureau.
Sous Vista,Clic-droit > Exécuter en tant qu’ Administrateur
==> Double-cliquer dessus, puis cliquer sur Recherche --> Le programme va chercher les utilitaires installés

@+

ours27_1_1 · Novembre 8, 2009, 11:43

Le premier avertissement :
“Java Plug-in 1.5.0 is not Instelled proporlog”
Le second avertissement :
“La ou les appel de la page HTLM nécessitent une version de Java différente de celle utilisée actuellement par le navigateur.
Pour exécuter la page HTML, vous devez utiliser une nouvelle session.
Fermer cette session Nescape et lancez une nouvelle session pour exécuter cette page”

Je n’utilise pas Nescape, j’utilise Explorer ??

cricri58 · Novembre 8, 2009, 11:55

Re

Voila deeux t-Bon Navigateurs que tu devrais Utilisés

Mozilla Firefox 3.5.

==>Mozilla Firefox 3.5.5

et Opera 10.01

==>Opera 10.01

installes et essayes à nouveau Java

ours27_1_1 · Novembre 8, 2009, 12:04

Voici Les fichiers de tool Cleaner :
[ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

–> Recherche:

C:\Combofix.txt: trouvé !
C:\FindyKill.txt: trouvé !
C:\Combofix: trouvé !
C:\Qoobox: trouvé !
C:\FindyKill: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\HijackThis.lnk: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\HijackThis.lnk: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\KillBox.exe: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc.zip: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\ComboFix.exe: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\Rsit.exe: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Genproc.exe: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Outil\hijackthis.log: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Outil\mbr.exe: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Page\GenProc[*].html: trouvé !
C:\Program Files\Ad-remover: trouvé !
C:\Program Files\trend micro\HijackThis.exe: trouvé !
C:\Program Files\trend micro\hijackthis.log: trouvé !
C:\Program Files\trend micro\HijackThis: trouvé !
C:\Program Files\trend micro\HijackThis\HijackThis.exe: trouvé !
C:\Program Files\trend micro\HijackThis\hijackthis.log: trouvé !
C:\Qoobox\Quarantine\catchme.log: trouvé !
C:\WINDOWS\mbr.exe: trouvé !

Je les ais déjà utiliser, il m'ont fait un patacaisse avec mes imprimantes et d'autre logiciels, cela me donne pas trop envies de recommencer, mais si cela doit être nécessaire, je veux bien prendre le risque, j'en garde un mauvais souvenir!

cricri58 · Novembre 8, 2009, 12:08

Tu dois mettre Java à Jour

essayes Firefox et dis moi

ours27_1_1 · Novembre 8, 2009, 12:25

Bon je charge Firefox, mais je ne suis pas tres chaud je te tien informé.
Sinon, j’ai mis a jour Java

Bon, j'ai installé Firefox, ou est le traducteur, le correcteur d'orthographe ?:etonne2:

cricri58 · Novembre 8, 2009, 1:01

Re
correcteur d orthographe

Cliques sur ==> Outils => Options ==> Avancé et cliques sous l’onglet ==> Général .

Dans la sous-partie " Navigation ", coches la case devant l’intitulé " Vérifier l’orthographe lors de la frappe ". Valides ensuite en cliquant sur le bouton => OK.

et pour traducteur

==>ImTranslator - Traducteur 3.2.9

:hello:

ours27_1_1 · Novembre 8, 2009, 1:23

OK tout vas bien, maintenant c’est terminé, je peux te remercier enfin ?

cricri58 · Novembre 8, 2009, 1:27

atends pour terminer

Relances ToolsCleaner

Lorsque la recherche est terminée ToolsCleaner affiche une liste des différents outils trouvés, cliquez sur “Suppression” afin de les supprimer.
et ensuite cliques==>vidage Corbeille
Fermes le programme en cliquant sur "Quitter ".

Postes le rapport qui se trouve ici >>> C:\TCleaner.txt

aprés supprimes ToolsCleaner

ours27_1_1 · Novembre 8, 2009, 1:51

[ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

–> Recherche:

C:\Combofix.txt: trouvé !
C:\FindyKill.txt: trouvé !
C:\Combofix: trouvé !
C:\Qoobox: trouvé !
C:\FindyKill: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\HijackThis.lnk: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\HijackThis.lnk: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\KillBox.exe: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc.zip: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\ComboFix.exe: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\Rsit.exe: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Genproc.exe: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Outil\hijackthis.log: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Outil\mbr.exe: trouvé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Page\GenProc[*].html: trouvé !
C:\Program Files\Ad-remover: trouvé !
C:\Program Files\trend micro\HijackThis.exe: trouvé !
C:\Program Files\trend micro\hijackthis.log: trouvé !
C:\Program Files\trend micro\HijackThis: trouvé !
C:\Program Files\trend micro\HijackThis\HijackThis.exe: trouvé !
C:\Program Files\trend micro\HijackThis\hijackthis.log: trouvé !
C:\Qoobox\Quarantine\catchme.log: trouvé !
C:\WINDOWS\mbr.exe: trouvé !

–> Suppression:

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\HijackThis.lnk: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\HijackThis.lnk: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\KillBox.exe: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc.zip: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\ComboFix.exe: ERREUR DE SUPPRESSION !!
C:\Program Files\trend micro\HijackThis.exe: supprimé !
C:\Program Files\trend micro\HijackThis\HijackThis.exe: supprimé !
C:\Combofix.txt: supprimé !
C:\FindyKill.txt: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\Rsit.exe: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Genproc.exe: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Outil\hijackthis.log: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Outil\mbr.exe: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc\GenProc\Page\GenProc[*].html: ERREUR DE SUPPRESSION !!
C:\Program Files\trend micro\hijackthis.log: supprimé !
C:\Program Files\trend micro\HijackThis\hijackthis.log: supprimé !
C:\Qoobox\Quarantine\catchme.log: supprimé !
C:\WINDOWS\mbr.exe: supprimé !
C:\Combofix: supprimé !
C:\Qoobox: supprimé !
C:\FindyKill: supprimé !
C:\Rsit: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Documents and Settings\Le Bigot\Bureau\Réparation Virus\GenProc: supprimé !
C:\Program Files\Ad-remover: supprimé !
C:\Program Files\trend micro\HijackThis: supprimé !

Corbeille vidée!

cricri58 · Novembre 8, 2009, 1:59

Ok

Alors ours27

pour moi c est terminé

tu dis à un de ces jours et fais gaffe à l avenir

cricri58 :hello: