re,
peut-tu me répondre sur ma question que j’ai poster avant celui la ? qui d’ailleurs j’ai oublier son point ?
voila mes rapport
le permier
Logfile of random’s system information tool 1.05 (written by random/random)
Run by cédric at 2008-12-24 02:38:06
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 62 GB (58%) free of 106 GB
Total RAM: 1015 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:38:13, on 24/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Keyboard & Mouse Driver\KMWDSrv.exe
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Keyboard & Mouse Driver\StartAutorun.exe
C:\Program Files\Keyboard & Mouse Driver\KMConfig.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Keyboard & Mouse Driver\KMProcess.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\cédric\Bureau\RSIT.exe
C:\Documents and Settings\cédric\Bureau\cédric.exe
C:\WINDOWS\system32\HPZinw12.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = search.conduit.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com…
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - C:\Program Files\AskSearch\bin\DefaultSearch.dll
R3 - URLSearchHook: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll
O2 - BHO: (no name) - {2D563251-ABBC-4D58-872A-C2005B5DC5FD} - C:\WINDOWS\system32\nnnoMEtr.dll (file missing)
O2 - BHO: {2db6f50a-9990-5a6b-65e4-a0e586f37175} - {57173f68-5e0a-4e56-b6a5-0999a05f6bd2} - C:\WINDOWS\system32\wionot.dll (file missing)
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll (file missing)
O3 - Toolbar: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - C:\Program Files\PHPNukeEN\tbPHPN.dll
O4 - HKLM…\Run: [IMJPMIG8.1] “C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE” /Spoil /RemAdvDef /Migration32
O4 - HKLM…\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM…\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM…\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM…\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM…\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM…\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM…\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM…\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM…\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM…\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe
O4 - HKLM…\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM…\Run: [ISUSScheduler] “C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe” -start
O4 - HKLM…\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM…\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM…\Run: [KMCONFIG] C:\Program Files\Keyboard & Mouse Driver\StartAutorun.exe KMConfig.exe
O4 - HKLM…\Run: [BDAgent] “C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe”
O4 - HKLM…\Run: [BitDefender Antiphishing Helper] “C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe”
O4 - HKCU…\Run: [MSMSGS] “C:\Program Files\Messenger\msmsgs.exe” /background
O4 - HKCU…\Run: [ares] “C:\Program Files\Ares\Ares.exe” -h
O4 - HKCU…\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SERVICE LOCAL’)
O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SERVICE RÉSEAU’)
O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)
O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE…
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - AppInit_DLLs: wionot.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Keyboard And Mouse Communication Service (KMWDSERVICE) - UASSOFT.COM - C:\Program Files\Keyboard & Mouse Driver\KMWDSrv.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: USBDeviceService - Unknown owner - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe
–
End of file - 8345 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\NeroLiveEpgUpdate-cedric_cédric.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{2D563251-ABBC-4D58-872A-C2005B5DC5FD}]
C:\WINDOWS\system32\nnnoMEtr.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{57173f68-5e0a-4e56-b6a5-0999a05f6bd2}]
C:\WINDOWS\system32\wionot.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-11-10 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-11-10 34816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{dd02a4eb-4afd-4d60-99d8-e67f964ca813}]
PHPNukeEN Toolbar - C:\Program Files\PHPNukeEN\tbPHPN.dll [2008-11-23 1784856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{381FFDE8-2394-4f90-B10D-FC6124A40F8C} - BitDefender Toolbar - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll []
{dd02a4eb-4afd-4d60-99d8-e67f964ca813} - PHPNukeEN Toolbar - C:\Program Files\PHPNukeEN\tbPHPN.dll [2008-11-23 1784856]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
“IMJPMIG8.1”=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-10 208952]
“PHIME2002ASync”=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-10 455168]
“PHIME2002A”=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-10 455168]
“ehTray”=C:\WINDOWS\ehome\ehtray.exe [2005-09-29 67584]
“Raccourci vers la page des propriétés de High Definition Audio”=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
“SynTPEnh”=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-05-12 774233]
“IgfxTray”=C:\WINDOWS\system32\igfxtray.exe [2006-08-14 98304]
“HotKeysCmds”=C:\WINDOWS\system32\hkcmd.exe [2006-08-14 114688]
“Persistence”=C:\WINDOWS\system32\igfxpers.exe [2006-08-14 94208]
“HControl”=C:\WINDOWS\ATK0100\HControl.exe [2006-04-17 110592]
“DetectorApp”=C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe [2005-10-20 102400]
“ISUSPM Startup”=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184]
“ISUSScheduler”=C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [2004-07-27 81920]
“HP Software Update”=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
“KernelFaultCheck”=C:\WINDOWS\system32\dumprep 0 -k []
“KMCONFIG”=C:\Program Files\Keyboard & Mouse Driver\StartAutorun.exe [2007-03-06 212992]
“BDAgent”=C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe []
“BitDefender Antiphishing Helper”=C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
“MSMSGS”=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
“ares”=C:\Program Files\Ares\Ares.exe -h []
“ctfmon.exe”=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Démarrage rapide de HP Photosmart Premier.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
NkbMonitor.exe.lnk - C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
“AppInit_DLLS”=“wionot.dll”
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2006-08-14 155648]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
“authentication packages”=msv1_0
C:\WINDOWS\system32\nnnoMEtr
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“InstallVisualStyle”=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
“InstallTheme”=C:\WINDOWS\Resources\Themes\Royale.theme
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
“NoDriveTypeAutoRun”=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
“%ProgramFiles%\AOL 9.0\aol.exe”="%ProgramFiles%\AOL 9.0\aol.exe::Enabled:AOL"
“%ProgramFiles%\UBISOFT\Splinter Cell Pandora Tomorrow\logo_ubi.exe”="%ProgramFiles%\UBISOFT\Splinter Cell Pandora Tomorrow\logo_ubi.exe::Enabled:SPLINTER CELL PANDORA"
“%ProgramFiles%\UBISOFT\Splinter Cell Pandora Tomorrow\pandora.exe”="%ProgramFiles%\UBISOFT\Splinter Cell Pandora Tomorrow\pandora.exe::Enabled:PANDORA"
“%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019"
“C:\APPS\Inventime\my.exe”=“C:\APPS\Inventime\my.exe::Enabled:INVENTIME"
“D:\setup\HPZnet01.exe”="D:\setup\HPZnet01.exe::Enabled:hpznet01.exe”
“D:\setup\hponicifs01.exe”=“D:\setup\hponicifs01.exe::Enabled:hponicifs01.exe"
“C:\WINDOWS\system32\spoolsv.exe”="C:\WINDOWS\system32\spoolsv.exe::Enabled:Spooler SubSystem App”
“C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe”=“C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe::Enabled:hpqtra08.exe"
“C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe”="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe::Enabled:hpqste08.exe”
“C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe”=“C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe::Enabled:hpofxm08.exe"
“C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe”="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe::Enabled:hposfx08.exe”
“C:\Program Files\HP\Digital Imaging\bin\hposid01.exe”=“C:\Program Files\HP\Digital Imaging\bin\hposid01.exe::Enabled:hposid01.exe"
“C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe”="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe::Enabled:hpqscnvw.exe”
“C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe”=“C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe::Enabled:hpqkygrp.exe"
“C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe”="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe::Enabled:hpqcopy.exe”
“C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe”=“C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe::Enabled:hpfccopy.exe"
“C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe”="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe::Enabled:hpzwiz01.exe”
“C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe”=“C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe::Enabled:hpqphunl.exe"
“C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe”="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe::Enabled:hpqdia.exe”
“C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe”=“C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe::Enabled:hpoews01.exe"
“C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe”="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe::Enabled:hpqnrs08.exe”
“C:\Program Files\Vuze\Azureus.exe”=“C:\Program Files\Vuze\Azureus.exe::Enabled:Azureus"
“C:\Program Files\Azureus\Azureus.exe”="C:\Program Files\Azureus\Azureus.exe::Enabled:Azureus”
“C:\Program Files\Ares\Ares.exe”=“C:\Program Files\Ares\Ares.exe::Enabled:Ares p2p for windows"
“%windir%\Network Diagnostic\xpnetdiag.exe”="%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000”
“C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE”=“C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE::Enabled:Microsoft Office Outlook"
“C:\Program Files\Messenger\msmsgs.exe”="C:\Program Files\Messenger\msmsgs.exe::Enabled:Windows Messenger”
“C:\Program Files\uTorrent\uTorrent.exe”=“C:\Program Files\uTorrent\uTorrent.exe::Enabled:µTorrent"
“C:\Program Files\Alwil Software\Avast4\ashAvast.exe”="C:\Program Files\Alwil Software\Avast4\ashAvast.exe::Enabled:avast! Antivirus”
“C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe”=“C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe:*:Disabled:Kaspersky Anti-Virus”
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
“%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019"
“%windir%\Network Diagnostic\xpnetdiag.exe”="%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2{7c3f2bfd-ab3e-11dd-9d22-00038a000015}]
shell\AutoRun\command - E:\LaunchU3.exe -a
======File associations======
.scr - open - C:\WINDOWS\system32\notepad.exe “%1”
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2008-12-24 02:38:06 ----D---- C:\rsit
2008-12-23 14:11:13 ----D---- C:\SDFix
2008-12-23 12:23:55 ----D---- C:\Documents and Settings\cédric\Application Data\Nikon
2008-12-23 12:23:55 ----A---- C:\WINDOWS\system32\msvcr71d.dll
2008-12-23 12:23:55 ----A---- C:\WINDOWS\system32\msvcp71d.dll
2008-12-23 12:23:55 ----A---- C:\WINDOWS\system32\mfc71d.dll
2008-12-23 12:23:55 ----A---- C:\WINDOWS\system32\mfc70fra.dll
2008-12-23 12:23:53 ----RA---- C:\WINDOWS\system32\NkNEFPlugin.dll
2008-12-23 12:23:30 ----RA---- C:\WINDOWS\system32\Strato4.dll
2008-12-23 12:23:29 ----RA---- C:\WINDOWS\system32\RedEye.dll
2008-12-23 12:23:29 ----RA---- C:\WINDOWS\system32\RCSigProc.dll
2008-12-23 12:23:29 ----RA---- C:\WINDOWS\system32\picn20.dll
2008-12-23 12:23:29 ----RA---- C:\WINDOWS\system32\picn1120.dll
2008-12-23 12:23:29 ----RA---- C:\WINDOWS\system32\picn1020.dll
2008-12-23 12:23:26 ----RA---- C:\WINDOWS\system32\DRAGNKL1.dll
2008-12-23 12:21:59 ----A---- C:\WINDOWS\PCDLIB32.DLL
2008-12-23 09:35:11 ----D---- C:\WINDOWS\ERUNT
2008-12-22 11:18:57 ----D---- C:\Program Files\PHPNukeEN
2008-12-22 11:18:57 ----D---- C:\Program Files\Conduit
2008-12-22 11:08:27 ----A---- C:\WINDOWS\system32\svch?st.exe
2008-12-22 09:51:49 ----D---- C:\Program Files\Malwarebytes’ Anti-Malware
2008-12-22 09:18:58 ----A---- C:\FindyKill.txt
2008-12-20 18:26:23 ----D---- C:\Program Files\FindyKill
2008-12-20 18:06:20 ----A---- C:\WINDOWS\ntbtlog.txt
2008-12-20 11:30:48 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-12-20 11:20:44 ----D---- C:\Documents and Settings\cédric\Application Data\Iomatic
2008-12-19 09:15:36 ----A---- C:\WINDOWS\system32\un2065.txt
2008-12-19 09:15:36 ----A---- C:\WINDOWS\system32\2065.txt
2008-12-19 09:03:55 ----D---- C:\WINDOWS\system32\logs
2008-12-19 09:01:47 ----D---- C:\Program Files\Fichiers communs\BitDefender
2008-12-17 18:55:19 ----D---- C:\Program Files\Keyboard & Mouse Driver
2008-12-11 22:13:29 ----D---- C:\Documents and Settings\cédric\Application Data\U3
2008-12-11 18:52:25 ----D---- C:\Program Files\uTorrent
2008-12-11 18:38:37 ----D---- C:\Documents and Settings\cédric\Application Data\uTorrent
2008-12-11 08:00:30 ----HDC---- C:\WINDOWS$NtUninstallKB955839$
2008-12-10 12:41:34 ----HDC---- C:\WINDOWS$NtUninstallKB952069_WM9$
2008-12-10 12:41:01 ----HDC---- C:\WINDOWS$NtUninstallKB954600$
2008-12-10 12:40:51 ----HDC---- C:\WINDOWS$NtUninstallKB956802$
2008-12-01 08:00:43 ----HDC---- C:\WINDOWS$NtUninstallKB951978$
2008-12-01 08:00:30 ----HDC---- C:\WINDOWS$NtUninstallKB954459$
2008-11-30 18:28:32 ----A---- C:\WINDOWS\system32\OLD1E3.tmp
2008-11-30 18:27:12 ----A---- C:\WINDOWS\system32\OLD1D8.tmp
2008-11-30 18:25:26 ----D---- C:\Program Files\Mozilla Firefox Bonus
2008-11-30 17:30:22 ----A---- C:\WINDOWS\system32\ptpusb.dll
2008-11-30 17:30:21 ----A---- C:\WINDOWS\system32\ptpusd.dll
2008-11-30 16:24:49 ----HDC---- C:\WINDOWS$NtUninstallKB958644$
2008-11-30 16:24:43 ----HDC---- C:\WINDOWS$NtUninstallKB957097$
2008-11-30 16:24:38 ----HDC---- C:\WINDOWS$NtUninstallKB957095$
2008-11-30 16:24:31 ----HDC---- C:\WINDOWS$NtUninstallKB956841$
2008-11-30 16:24:23 ----HDC---- C:\WINDOWS$NtUninstallKB956803$
2008-11-30 16:24:15 ----HDC---- C:\WINDOWS$NtUninstallKB955069$
2008-11-30 16:24:09 ----HDC---- C:\WINDOWS$NtUninstallKB954211$
2008-11-30 16:24:04 ----HDC---- C:\WINDOWS$NtUninstallKB952954$
2008-11-30 16:23:57 ----HDC---- C:\WINDOWS$NtUninstallKB952287$
2008-11-30 16:23:48 ----HDC---- C:\WINDOWS$NtUninstallKB951748$
2008-11-30 16:23:42 ----HDC---- C:\WINDOWS$NtUninstallKB951698$
2008-11-30 16:23:37 ----HDC---- C:\WINDOWS$NtUninstallKB951376-v2$
2008-11-30 16:23:30 ----HDC---- C:\WINDOWS$NtUninstallKB951066$
2008-11-30 16:23:24 ----HDC---- C:\WINDOWS$NtUninstallKB950974$
2008-11-30 16:23:16 ----HDC---- C:\WINDOWS$NtUninstallKB950762$
2008-11-30 16:23:10 ----HDC---- C:\WINDOWS$NtUninstallKB946648$
2008-11-30 16:23:05 ----HDC---- C:\WINDOWS$NtUninstallKB938464$
2008-11-30 16:17:37 ----D---- C:\WINDOWS\system32\fr
2008-11-30 16:17:37 ----D---- C:\WINDOWS\system32\bits
2008-11-30 16:17:37 ----D---- C:\WINDOWS\l2schemas
2008-11-30 16:15:25 ----D---- C:\WINDOWS\ServicePackFiles
2008-11-30 16:08:38 ----HDC---- C:\WINDOWS$NtServicePackUninstall$
2008-11-29 08:11:01 ----SH---- C:\WINDOWS\system32\hpnqytto.ini
2008-11-28 08:14:34 ----SH---- C:\WINDOWS\system32\qjxxtsmn.ini
2008-11-28 08:11:34 ----A---- C:\WINDOWS\system32\npermt.dll
2008-11-28 08:11:33 ----A---- C:\WINDOWS\system32\bvwycgcn.dll
2008-11-27 08:09:08 ----SH---- C:\WINDOWS\system32\ggllljjb.ini
2008-11-26 09:32:05 ----D---- C:\Program Files\Alwil Software
2008-11-26 08:08:58 ----SH---- C:\WINDOWS\system32\cauwuoda.ini
2008-11-25 09:17:58 ----SH---- C:\WINDOWS\system32\wtdhwfgh.ini
======List of files/folders modified in the last 1 months======
2008-12-24 02:35:28 ----D---- C:\Program Files\Mozilla Firefox
2008-12-23 23:52:31 ----D---- C:\WINDOWS\Temp
2008-12-23 17:39:56 ----D---- C:\WINDOWS\PREFETCH
2008-12-23 14:41:33 ----D---- C:\WINDOWS
2008-12-23 14:38:11 ----AD---- C:\WINDOWS\system32
2008-12-23 14:30:53 ----D---- C:\WINDOWS\Registration
2008-12-23 14:30:48 ----D---- C:\WINDOWS\system32\drivers
2008-12-23 14:19:20 ----RSHD---- C:\WINDOWS\system32\dllcache
2008-12-23 12:30:48 ----D---- C:\WINDOWS\system32\CatRoot2
2008-12-23 12:30:46 ----HD---- C:\WINDOWS\inf
2008-12-23 12:24:12 ----SHD---- C:\WINDOWS\Installer
2008-12-23 12:24:12 ----HD---- C:\Config.Msi
2008-12-23 12:24:02 ----D---- C:\TEMP
2008-12-23 12:23:53 ----RSD---- C:\WINDOWS\Fonts
2008-12-23 11:56:34 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-12-22 11:18:57 ----RD---- C:\Program Files
2008-12-22 11:08:33 ----SD---- C:\Documents and Settings\cédric\Application Data\Microsoft
2008-12-22 11:08:27 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-12-22 11:08:24 ----D---- C:\Program Files\Common Files
2008-12-20 11:21:03 ----D---- C:\WINDOWS\Debug
2008-12-19 13:34:36 ----A---- C:\WINDOWS\NeroDigital.ini
2008-12-19 10:00:07 ----D---- C:\WINDOWS\network diagnostic
2008-12-19 09:01:47 ----D---- C:\Program Files\Fichiers communs
2008-12-18 08:00:19 ----HD---- C:\WINDOWS$hf_mig$
2008-12-17 19:57:44 ----D---- C:\WINDOWS\system32\wbem
2008-12-17 19:15:48 ----A---- C:\WINDOWS\win.ini
2008-12-17 19:14:47 ----D---- C:\Program Files\Dictionnaire
2008-12-16 07:47:45 ----D---- C:\WINDOWS\Minidump
2008-12-13 11:34:17 ----D---- C:\Documents and Settings\cédric\Application Data\Azureus
2008-12-13 07:37:56 ----A---- C:\WINDOWS\system32\mshtml.dll
2008-12-11 23:21:25 ----D---- C:\WINDOWS\system32\CatRoot
2008-12-11 23:07:12 ----D---- C:\Program Files\Windows Media Player
2008-12-11 23:04:50 ----D---- C:\WINDOWS\Help
2008-12-11 22:44:23 ----A---- C:\WINDOWS\AviSplitter.INI
2008-12-10 16:50:48 ----D---- C:\Program Files\Internet Explorer
2008-12-10 16:50:00 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-12-10 00:24:37 ----A---- C:\WINDOWS\system32\MRT.exe
2008-12-04 09:56:48 ----D---- C:\Program Files\Java
2008-12-01 09:23:46 ----D---- C:\Documents and Settings\cédric\Application Data\Mozilla
2008-11-30 16:39:09 ----D---- C:\WINDOWS\system32\Setup
2008-11-30 16:39:09 ----D---- C:\WINDOWS\AppPatch
2008-11-30 16:23:12 ----D---- C:\Program Files\Messenger
2008-11-30 16:22:50 ----D---- C:\WINDOWS\security
2008-11-30 16:21:15 ----RSD---- C:\WINDOWS\assembly
2008-11-30 16:18:00 ----D---- C:\WINDOWS\WinSxS
2008-11-30 16:17:54 ----D---- C:\WINDOWS\system32\inetsrv
2008-11-30 16:17:52 ----D---- C:\WINDOWS\ime
2008-11-30 16:17:40 ----D---- C:\WINDOWS\system32\fr-fr
2008-11-30 16:17:38 ----D---- C:\WINDOWS\system32\usmt
2008-11-30 16:17:37 ----D---- C:\WINDOWS\PeerNet
2008-11-30 16:17:37 ----D---- C:\Program Files\Movie Maker
2008-11-30 16:15:16 ----D---- C:\WINDOWS\system32\Restore
2008-11-30 16:15:16 ----D---- C:\WINDOWS\system32\npp
2008-11-30 16:15:15 ----D---- C:\WINDOWS\srchasst
2008-11-30 16:15:15 ----D---- C:\WINDOWS\msagent
2008-11-30 16:15:12 ----D---- C:\WINDOWS\system32\Com
2008-11-30 16:15:12 ----D---- C:\Program Files\NetMeeting
2008-11-30 16:15:07 ----D---- C:\Program Files\Windows NT
2008-11-30 16:15:07 ----D---- C:\Program Files\Outlook Express
2008-11-30 16:15:04 ----D---- C:\Program Files\Fichiers communs\System
2008-11-30 16:14:50 ----D---- C:\WINDOWS\system32\oobe
2008-11-30 16:14:49 ----D---- C:\WINDOWS\system
2008-11-30 16:12:29 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-11-30 16:08:36 ----D---- C:\WINDOWS\ehome
2008-11-30 15:57:32 ----ASH---- C:\WINDOWS\system32\rtEMonnn.ini
2008-11-30 15:56:51 ----ASH---- C:\WINDOWS\system32\rtEMonnn.ini2
2008-11-30 08:10:53 ----A---- C:\WINDOWS\system32\1ff605c5-.txt
2008-11-29 17:31:25 ----D---- C:\Program Files\Kaspersky Lab
2008-11-29 17:31:22 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-11-26 09:47:39 ----D---- C:\WINDOWS\system32\config
2008-11-25 09:16:16 ----SH---- C:\WINDOWS\system32\wfppcish.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R2 ASCTRM;ASCTRM; C:\WINDOWS\system32\drivers\ASCTRM.sys [2006-10-19 8552]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2006-06-21 142848]
R3 Cam5603D;BisonCam, NB Pro; C:\WINDOWS\System32\Drivers\BisonCam.sys [2006-03-27 569984]
R3 catchme;catchme; ??\C:\DOCUME~1\CDRIC~1\LOCALS~1\Temp\catchme.sys []
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2006-08-14 1109568]
R3 KMWDFilter;KMWDFilter; ??\C:\WINDOWS\System32\Drivers\KMWDFilter.SYS []
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-17 5632]
R3 NETw3x32;Pilote de carte réseau Intel® PRO/Wireless 3945ABG pour Windows XP 32 bits; C:\WINDOWS\system32\DRIVERS\NETw3x32.sys [2006-09-27 1709696]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-11-10 47360]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-02-27 81408]
R3 StillCam;Pilote d’appareil photo numérique série; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-23 6912]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-05-12 193056]
R3 usbehci;Pilote miniport de contrôleur d’hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HdAudAddService;Pilote de fonction Microsoft UAA pour Service High Definition Audio; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 Profos;Profos; ??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys []
S3 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2005-07-14 28544]
S3 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2005-07-12 51328]
S3 rismxdp;Ricoh xD-Picture Card Driver; C:\WINDOWS\system32\DRIVERS\rixdptsk.sys [2005-07-14 307968]
S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 Trufos;Trufos; ??\C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys []
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 usbprint;Classe d’imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AOL ACS;AOL Connectivity Service; C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe [2004-04-08 1135728]
R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2006-06-29 237568]
R2 ehSched;Service de planification Media Center; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 103424]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-11-10 152984]
R2 KMWDSERVICE;Keyboard And Mouse Communication Service; C:\Program Files\Keyboard & Mouse Driver\KMWDSrv.exe [2007-04-05 208896]
R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe [2005-01-31 49152]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-08-03 38912]
R2 USBDeviceService;USBDeviceService; C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe [2005-10-20 90112]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
S3 aspnet_state;Service d’état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe [2008-10-31 85096]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]
-----------------EOF-----------------
le deuxieme
info.txt logfile of random’s system information tool 1.05 2008-12-24 02:38:15
======Uninstall list======
–>“c:\apps\skype\phone\unins000.exe”
–>“C:\Program Files\Fichiers communs\aolshare\Coach\AolCInUn.exe” -lang=“fr-fr”
–>“C:\WINDOWS$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe”
–>C:\PROGRA~1\FICHIE~1\AOL\ACS\AcsUninstall.exe /c
–>C:\PROGRA~1\Norman\NORMAN~1\UNWISE.EXE C:\PROGRA~1\Norman\NORMAN~1\INSTALL.LOG
–>C:\Program Files\Fichiers communs\AOL\Screensaver\uninst_ygpss.exe
–>C:\Program Files\Fichiers communs\aolshare\Aolunins_fr.exe
–>C:\Program Files\Fichiers communs\Real\Update\rnuninst.exe RealNetworks|RealPlayer|6.0
–>C:\Program Files\Learn2.com\StRunner\stuninst.exe
–>C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u
–>C:\WINDOWS\system32\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
–>C:\WINDOWS\system32\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
–>C:\WINDOWS\system32\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{5AFA4872-16B2-419E-ADCA-8E96E739115D}\setup.exe” -l0x40c
–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe” -l0x40c -removeonly
–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}\setup.exe” -l0x40c -removeonly
–>rundll32.exe “C:\Program Files\Synaptics\SynTP\SynISDLL.dll”,standAloneUninstall
–>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)–>msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
Adobe Flash Player 10 Plugin–>C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 7.0 - Français–>MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70000000000}
Archiveur WinRAR–>C:\Program Files\WinRAR\uninstall.exe
ArcSoft Panorama Maker 3–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{A5F68DC8-0278-4AD8-B413-861509B5F25B}\Setup.exe” -l0x40c
ATK0100 ACPI UTILITY–>C:\WINDOWS\ATK0100\XPunin.exe
AutoCAD Architecture 2009 - Français–>C:\Program Files\AutoCAD Architecture 2009\Setup\Setup.exe /P {5783F2D7-7004-040C-0002-0060B0CE6BBA} /M ACAD
BisonCam, NB Pro–>Rundll32.exe BisonRem.dll,WinMainRmv
Codeur Windows Media Série 9–>msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Codeur Windows Media Série 9–>MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
ConvertXtoDVD 3.1.0.24–>“C:\Program Files\VSO\ConvertX\3\unins000.exe”
Correctif n° 2 pour Windows XP Édition Media Center 2005–>C:\WINDOWS$NtUninstallKB900325$\spuninst\spuninst.exe
Correctif pour Lecteur Windows Media 11 (KB939683)–>“C:\WINDOWS$NtUninstallKB939683$\spuninst\spuninst.exe”
Correctif pour Windows XP (KB952287)–>“C:\WINDOWS$NtUninstallKB952287$\spuninst\spuninst.exe”
FindyKill–>C:\Program Files\FindyKill\Uninstal.exe
HijackThis 2.0.2–>“C:\Documents and Settings\cédric\Bureau\HijackThis.exe” /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)–>“C:\WINDOWS$NtUninstallKB929399$\spuninst\spuninst.exe”
Hotfix for Windows Media Player 10 (KB903157)–>“C:\WINDOWS$NtUninstallKB903157$\spuninst\spuninst.exe”
HP Customer Participation Program 7.0–>C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Document Viewer 7.0–>C:\Program Files\HP\Digital Imaging\DocumentViewer\hpzscr01.exe -datfile hpqbud04.dat
HP Imaging Device Functions 7.0–>C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart Premier Software 6.5–>C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Photosmart, Officejet and Deskjet 7.0.A–>C:\Program Files\HP\Digital Imaging{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}\setup\hpzscr01.exe -datfile hposcr11.dat
HP Product Assistant–>MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP Solution Center 7.0–>C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update–>MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
Intel® Graphics Media Accelerator Driver–>C:\WINDOWS\system32\igxpun.exe -uninstall
J2SE Runtime Environment 5.0 Update 4–>MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}
Java™ 6 Update 10–>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
Keyboard & Mouse Driver–>C:\Program Files\InstallShield Installation Information{B910DD1A-49B1-4068-9C08-E3C3AEC0C30A}\setup.exe -runfromtemp -l0x0409
Macromedia Flash Player 8–>MsiExec.exe /X{5E8A1B08-0FBD-4543-9646-F2C2D0D05750}
Macromedia Shockwave Player–>MsiExec.exe /X{7D1D6A24-65D4-454C-8815-4F08A5FFF12C}
Microsoft .NET Framework 1.1 French Language Pack–>MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)–>“C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe” “C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp”
Microsoft .NET Framework 1.1–>msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1–>MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0–>C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft .NET Framework 3.0 French Language Pack–>MsiExec.exe /X{E3C080B0-23F5-49AF-89F8-8E8DBC89E659}
Microsoft .NET Framework 3.0–>C:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft .NET Framework 3.0–>MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft Compression Client Pack 1.0 for Windows XP–>“C:\WINDOWS$NtUninstallMSCompPackV1$\spuninst\spuninst.exe”
Microsoft Internationalized Domain Names Mitigation APIs–>“C:\WINDOWS$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe”
Microsoft National Language Support Downlevel APIs–>“C:\WINDOWS$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe”
Microsoft Office Access MUI (French) 2007–>MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007–>MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007–>MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Language Pack 2007 Service Pack 1 (SP1)–>msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
Microsoft Office Outlook MUI (French) 2007–>MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007–>MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007–>“C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe” /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007–>MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007–>MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007–>MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007–>MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007–>MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007–>MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007–>MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007–>MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007–>MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007–>MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007–>MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft User-Mode Driver Framework Feature Pack 1.0–>“C:\WINDOWS$NtUninstallWudf01000$\spuninst\spuninst.exe”
Microsoft Visual C++ 2005 Redistributable–>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour le Codeur Windows Media (KB954156)–>“C:\WINDOWS$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)–>“C:\WINDOWS$NtUninstallKB952069_WM9$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)–>“C:\WINDOWS$NtUninstallKB911565$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)–>“C:\WINDOWS$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)–>“C:\WINDOWS$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)–>“C:\WINDOWS$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)–>“C:\WINDOWS$NtUninstallKB954154_WM11$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)–>“C:\WINDOWS$NtUninstallKB898458$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)–>“C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)–>“C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)–>“C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)–>“C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)–>“C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)–>“C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB938464)–>“C:\WINDOWS$NtUninstallKB938464$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB941569)–>“C:\WINDOWS$NtUninstallKB941569$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB946648)–>“C:\WINDOWS$NtUninstallKB946648$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB950762)–>“C:\WINDOWS$NtUninstallKB950762$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB950974)–>“C:\WINDOWS$NtUninstallKB950974$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951066)–>“C:\WINDOWS$NtUninstallKB951066$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951376-v2)–>“C:\WINDOWS$NtUninstallKB951376-v2$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951698)–>“C:\WINDOWS$NtUninstallKB951698$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951748)–>“C:\WINDOWS$NtUninstallKB951748$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB952954)–>“C:\WINDOWS$NtUninstallKB952954$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB954211)–>“C:\WINDOWS$NtUninstallKB954211$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB954600)–>“C:\WINDOWS$NtUninstallKB954600$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB955069)–>“C:\WINDOWS$NtUninstallKB955069$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956390)–>“C:\WINDOWS$NtUninstallKB956390$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956391)–>“C:\WINDOWS$NtUninstallKB956391$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956802)–>“C:\WINDOWS$NtUninstallKB956802$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956803)–>“C:\WINDOWS$NtUninstallKB956803$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956841)–>“C:\WINDOWS$NtUninstallKB956841$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB957095)–>“C:\WINDOWS$NtUninstallKB957095$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB957097)–>“C:\WINDOWS$NtUninstallKB957097$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB958644)–>“C:\WINDOWS$NtUninstallKB958644$\spuninst\spuninst.exe”
Mise à jour pour Lecteur Windows Media 10 (KB910393)–>“C:\WINDOWS$NtUninstallKB910393$\spuninst\spuninst.exe”
Mise à jour pour Lecteur Windows Media 10 (KB913800)–>“C:\WINDOWS$NtUninstallKB913800$\spuninst\spuninst.exe”
Mise à jour pour Lecteur Windows Media 10 (KB926251)–>“C:\WINDOWS$NtUninstallKB926251$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB951072-v2)–>“C:\WINDOWS$NtUninstallKB951072-v2$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB955839)–>“C:\WINDOWS$NtUninstallKB955839$\spuninst\spuninst.exe”
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA–>C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0–>C:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 French Language Pack\setup.exe
Mozilla Firefox (3.0.5)–>C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB936181)–>MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)–>MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 Parser and SDK–>MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
MSXML 6 Service Pack 2 (KB954459)–>MsiExec.exe /I{1A528690-6A2D-4BC5-B143-8C4AE8D19D96}
Nero 9–>C:\Program Files\Fichiers communs\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER=“9M03-01A1-PCX7-K31A-8A94-98PT-KT2E-522A”
neroxml–>MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Nikon Message Center–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}\Setup.exe” -l0x40c UNINSTALL
OCR Software by I.R.I.S 7.0–>C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
OpenOffice.org Installer 1.0–>MsiExec.exe /X{3A2AF807-9F9F-43C9-A24A-17B617238B74}
PHPNukeEN Toolbar–>C:\PROGRA~1\PHPNUK~1\UNWISE.EXE /U C:\PROGRA~1\PHPNUK~1\INSTALL.LOG
PictureProject–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{FF3999BE-1A7B-4738-88AA-97BF14094A4A}\Setup.exe” -l0x40c UNINSTALL
PowerDVD–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe” -uninstall
Satsuki Decoder Pack–>C:\Program Files\Satsuki Decoder Pack\Uninstall.exe
Security Update for 2007 Microsoft Office System (KB951550)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
Security Update for 2007 Microsoft Office System (KB951944)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB958439)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
Security Update for CAPICOM (KB931906)–>MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)–>MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft Office Excel 2007 (KB958437)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office Publisher 2007 (KB950114)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
Security Update for Microsoft Office system 2007 (KB954326)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office system 2007 (KB956828)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
Security Update for Microsoft Office Word 2007 (KB956358)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
Security Update pour Microsoft .NET Framework 2.0 (KB917283)–>C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {967B098A-042D-4367-BAC9-8BC11684174F} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
SmartSound Quicktracks Plugin–>C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}
Sonic Encoders–>MsiExec.exe /I{9941F0AA-B903-4AF4-A055-83A9815CC011}
Sonic Express Labeler–>MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Sonic MyDVD LE–>MsiExec.exe /I{21657574-BD54-48A2-9450-EB03B2C7FC29}
Sonic RecordNow Audio–>MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382}
Sonic RecordNow Copy–>MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629}
Sonic RecordNow Data–>MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205}
Sonic Update Manager–>MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
Ulead PhotoImpact 10 SE–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{5A065EA0-0EEC-4E94-A2A0-40812576C122}\setup.exe” -l0x40c
Ulead VideoStudio 9.0 SE DVD–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{8EAB2384-C794-40ED-A9DD-3270A0D2BB76}\setup.exe” -l0x40c
Update for Microsoft Office Outlook 2007 (KB952142)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
Update for Office 2007 (KB946691)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
Update for Outlook 2007 Junk Email Filter (kb958619)–>msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {79B301C1-DBC0-467C-AFDA-2A6CDAFA4302}
VirginMega.Fr Premium–>MsiExec.exe /I{EE467474-04A8-48D5-8DDF-0F8D3A3CCBE5}
Windows Communication Foundation–>MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component–>“C:\WINDOWS$NtUninstallWIC$\spuninst\spuninst.exe”
Windows Presentation Foundation Language Pack (FRA)–>MsiExec.exe /X{6901DD22-527A-41EF-9059-E81FEDE9E494}
Windows Presentation Foundation–>MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation FR Language Pack–>MsiExec.exe /I{B84C141C-9A13-44BE-9A69-301D7B11D836}
Windows Workflow Foundation–>MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows XP Media Center Edition 2005 KB908246–>“C:\WINDOWS$NtUninstallKB908246$\spuninst\spuninst.exe”
Windows XP Media Center Edition 2005 KB912067–>“C:\WINDOWS$NtUninstallKB912067$\spuninst\spuninst.exe”
Windows XP Media Center Edition 2005 KB919803–>“C:\WINDOWS$NtUninstallKB919803$\spuninst\spuninst.exe”
Windows XP Service Pack 3–>“C:\WINDOWS$NtServicePackUninstall$\spuninst\spuninst.exe”
XML Paper Specification Shared Components Language Pack 1.0–>“C:\WINDOWS$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe”
======Hosts File======
127.0.0.1 localhost
======Security center information======
AV: BitDefender Antivirus (outdated)
FW: BitDefender Firewall
System event log
Computer Name: cedric
Event Code: 7036
Message: Le service Gestionnaire de connexions d’accès distant est entré dans l’état : en cours d’exécution.
Record Number: 17538
Source Name: Service Control Manager
Time Written: 20081215182421.000000+060
Event Type: Informations
User:
Computer Name: cedric
Event Code: 7036
Message: Le service Application système COM+ est entré dans l’état : en cours d’exécution.
Record Number: 17537
Source Name: Service Control Manager
Time Written: 20081215182421.000000+060
Event Type: Informations
User:
Computer Name: cedric
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Application système COM+.
Record Number: 17536
Source Name: Service Control Manager
Time Written: 20081215182421.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: cedric
Event Code: 7036
Message: Le service Carte de performance WMI est entré dans l’état : en cours d’exécution.
Record Number: 17535
Source Name: Service Control Manager
Time Written: 20081215182421.000000+060
Event Type: Informations
User:
Computer Name: cedric
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Carte de performance WMI.
Record Number: 17534
Source Name: Service Control Manager
Time Written: 20081215182421.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM
Application event log
Computer Name: cedric
Event Code: 1002
Message: Application bloquée AcroRd32.exe, version 7.0.0.0, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000.
Record Number: 1036
Source Name: Application Hang
Time Written: 20081121135316.000000+060
Event Type: erreur
User:
Computer Name: cedric
Event Code: 1002
Message: Application bloquée AcroRd32.exe, version 7.0.0.0, module bloqué hungapp, version 0.0.0.0, adresse de blocage 0x00000000.
Record Number: 1035
Source Name: Application Hang
Time Written: 20081121135313.000000+060
Event Type: erreur
User:
Computer Name: cedric
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.
Record Number: 1034
Source Name: SecurityCenter
Time Written: 20081121113416.000000+060
Event Type: Informations
User:
Computer Name: cedric
Event Code: 0
Message:
Record Number: 1033
Source Name: USBDeviceService
Time Written: 20081121113227.000000+060
Event Type: Informations
User:
Computer Name: cedric
Event Code: 1517
Message: Windows a sauvegardé le Registre utilisateur cedric\cédric alors qu’une application ou un service utilisait toujours le Registre pendant la fermeture de la session. La mémoire utilisée par le Registre de l’utilisateur n’a pas été libérée. le Registre sera déchargé lorsqu’il ne sera plus utilisé.
Cela est souvent causé par des services s’exécutant en tant que compte d’utilisateur, essayez de configurer les services pour s’exécuter dans le compte service réseau ou service local.
Record Number: 1032
Source Name: Userenv
Time Written: 20081121112857.000000+060
Event Type: Avertissement
User: AUTORITE NT\SYSTEM
======Environment variables======
“ComSpec”=%SystemRoot%\system32\cmd.exe
“Path”=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Fichiers communs\Ulead Systems\MPEG
“windir”=%SystemRoot%
“FP_NO_HOST_CHECK”=NO
“OS”=Windows_NT
“PROCESSOR_ARCHITECTURE”=x86
“PROCESSOR_LEVEL”=6
“PROCESSOR_IDENTIFIER”=x86 Family 6 Model 14 Stepping 8, GenuineIntel
“PROCESSOR_REVISION”=0e08
“NUMBER_OF_PROCESSORS”=2
“PATHEXT”=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
“TEMP”=%SystemRoot%\TEMP
“TMP”=%SystemRoot%\TEMP
“SonicCentral”=C:\Program Files\Fichiers communs\Sonic Shared\Sonic Central\
-----------------EOF-----------------
a++