voila les rapports RSIT :
info.txt logfile of random’s system information tool 1.06 2009-07-22 21:46:42
======Uninstall list======
–>C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
–>C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{16F206F7-175B-4796-B4CE-2F59F5FD19E4}\setup.exe” -l0x40c anything
–>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Acoustica Effects Pack–>C:\PROGRA~1\ACOUST~2\UNWISE.EXE C:\PROGRA~1\ACOUST~2\INSTALL.LOG
Adobe Acrobat 5.0–>C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 10 Plugin–>C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
adsl TV–>C:\Program Files\adslTV\Uninstal.exe
Aliens versus Predator 2: Primal Hunt–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{103B6835-DCA0-413F-A99E-ECAD6622726E}\SETUP.EXE” -l0x40c
Aliens vs. Predator 2–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{3EF79591-BF16-4CF8-8FF0-D8AD968228B1}\SETUP.EXE”
Ant Movie Catalog–>“C:\Program Files\Ant Movie Catalog\unins000.exe”
Ant Renamer–>“C:\Program Files\Ant Renamer\unins000.exe”
Apache Tomcat 6.0 (remove only)–>“d:\java\Tomcat 6.0\Uninstall.exe”
Archiveur WinRAR–>C:\Program Files\WinRAR\uninstall.exe
Asus ChkMail–>C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Asus\Asus ChkMail\Uninst.isu"
ASUS Hotkey–>C:\WINDOWS\uninst.exe -f"C:\Program Files\ASUS\ASUS Hotkey\DeIsL1.isu" -c"C:\Program Files\ASUS\ASUS Hotkey_ISREG32.DLL"
ASUS Live Update–>C:\WINDOWS\IsUninst.exe -f"C:\Program Files\ASUS\ASUS Live Update\Uninst.isu" -c"C:\Program Files\ASUS\ASUS Live Update\Uninst.dll"
ASUS Probe V2.11–>C:\WINDOWS\IsUninst.exe -f"C:\Program Files\ASUS\ASUS Probe\Uninst.isu"
ATI Control Panel–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe”
ATI Display Driver–>rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
ATK0100 ACPI UTILITY–>C:\WINDOWS\ATK0100\XPunin.exe
Aureon 5.1 USB–>“C:\Program Files\TerraTec\Aureon 5.1 USB\sp_uninstall.exe”
AVG Free 8.0–>C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
BitComet 0.60–>C:\Program Files\BitComet\uninst.exe
Bluetooth Stack for Windows by Toshiba–>MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}
CC_ccProxyExt–>MsiExec.exe /I{DA42FDCA-7C5A-43EF-9A05-CCE148ADF919}
ccCommon–>MsiExec.exe /I{DC367608-64A7-4BF7-92F4-8BAA25BA02DB}
ccPxyCore–>MsiExec.exe /I{FC08587A-4F01-4188-819F-F55880022917}
CDex extraction audio–>“C:\Program Files\CDex_150\uninstall.exe”
Correctif pour Windows XP (KB952287)–>“C:\WINDOWS$NtUninstallKB952287$\spuninst\spuninst.exe”
dBpoweramp Windows Media Audio 10 Codec–>“C:\WINDOWS\system32\SpoonUninstall.exe” C:\WINDOWS\system32\SpoonUninstall-dBpoweramp Windows Media Audio 10 Codec.dat
DivX Content Uploader–>C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Web Player–>C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Drum Controller Standard Tuning Kit–>C:\Program Files\InstallShield Installation Information{FC8A7918-D65D-440C-9596-C88185E8DCA4}\setup.exe -runfromtemp -l0x0409
DVD Shrink 3.2–>“C:\Program Files\DVD Shrink\unins000.exe”
DVDFab Decrypter 2.9.8.3–>“C:\Program Files\DVDFab Decrypter\unins000.exe”
FileZilla (remove only)–>“C:\Program Files\FileZilla\uninstall.exe”
Hamachi 1.0.2.3–>C:\Program Files\Hamachi\uninstall.exe
HijackThis 2.0.2–>“C:\Program Files\HijackThis\HijackThis.exe” /uninstall
Intel® PROSet/Wireless Software–>C:\WINDOWS\Installer\iProInst.exe
Java DB 10.3.1.4–>MsiExec.exe /X{CD49361E-3FE6-457E-90A1-9C59E29B5D02}
Java™ 6 Update 6–>MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
Java™ 6 Update 7–>MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Java™ SE Development Kit 6 Update 6–>MsiExec.exe /I{32A3A4F4-B792-11D6-A78A-00B0D0160060}
LiveReg (Symantec Corporation)–>C:\Program Files\Fichiers communs\Symantec Shared\LiveReg\VCSetup.exe /REMOVE
LiveUpdate 2.5 (Symantec Corporation)–>C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE /U
Logitech QuickCam–>MsiExec.exe /X{7D2370AC-D8E6-4996-986A-19824F8A167C}
LogMeIn–>MsiExec.exe /I{3FEC3A5B-60FF-4626-B425-08E09B121A15}
Macromedia Flash Player 8–>RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5
MAGIX Media Manager 2004 silver–>C:\Program Files\Media_Manager_2004\instslct.exe
MAGIX music studio 2005 deLuxe–>C:\Program Files\Music Studio 2005\instslct.exe
Malwarebytes’ Anti-Malware–>“C:\Program Files\Malwarebytes’ Anti-Malware\unins000.exe”
mCore–>MsiExec.exe /I{6DE14BE4-6F04-4935-8ABD-A0A19FE2E55A}
mDriver–>MsiExec.exe /I{28DA872A-0848-48CF-B749-19A198157A2A}
mDrWiFi–>MsiExec.exe /I{F6090A17-0967-4A8A-B3C3-422A1B514D49}
Media Player Classic fr–>“C:\Program Files\Media Player Classic\uninstall.exe”
mEoU.msi–>MsiExec.exe /I{B502B428-3386-40A9-98DB-079AAB72E64F}
Messenger Plus! 3–>“C:\Program Files\MessengerPlus! 3\MsgPlus.exe” /Remove
Messenger Plus! Live–>“C:\Program Files\Messenger Plus! Live\Uninstall.exe”
mHelp–>MsiExec.exe /I{8C6BB412-D3A8-4AAE-A01B-35B681789D68}
Microsoft .NET Framework 1.1–>MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1–>MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft ActiveSync 4.0–>MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office PowerPoint Viewer 2003–>MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}
Microsoft Visual C++ 2005 Redistributable–>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB911565)–>“C:\WINDOWS$NtUninstallKB911565$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)–>“C:\WINDOWS$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)–>“C:\WINDOWS$NtUninstallKB898458$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)–>“C:\WINDOWS$NtUninstallKB923723$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB938464)–>“C:\WINDOWS$NtUninstallKB938464$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB946648)–>“C:\WINDOWS$NtUninstallKB946648$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB950759)–>“C:\WINDOWS$NtUninstallKB950759$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB950760)–>“C:\WINDOWS$NtUninstallKB950760$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB950762)–>“C:\WINDOWS$NtUninstallKB950762$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB950974)–>“C:\WINDOWS$NtUninstallKB950974$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951066)–>“C:\WINDOWS$NtUninstallKB951066$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951376-v2)–>“C:\WINDOWS$NtUninstallKB951376-v2$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951698)–>“C:\WINDOWS$NtUninstallKB951698$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951748)–>“C:\WINDOWS$NtUninstallKB951748$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB952954)–>“C:\WINDOWS$NtUninstallKB952954$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB953838)–>“C:\WINDOWS$NtUninstallKB953838$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB953839)–>“C:\WINDOWS$NtUninstallKB953839$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB954211)–>“C:\WINDOWS$NtUninstallKB954211$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB954459)–>“C:\WINDOWS$NtUninstallKB954459$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB954600)–>“C:\WINDOWS$NtUninstallKB954600$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB955069)–>“C:\WINDOWS$NtUninstallKB955069$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956390)–>“C:\WINDOWS$NtUninstallKB956390$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956391)–>“C:\WINDOWS$NtUninstallKB956391$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956802)–>“C:\WINDOWS$NtUninstallKB956802$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956803)–>“C:\WINDOWS$NtUninstallKB956803$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956841)–>“C:\WINDOWS$NtUninstallKB956841$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB957095)–>“C:\WINDOWS$NtUninstallKB957095$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB957097)–>“C:\WINDOWS$NtUninstallKB957097$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB958215)–>“C:\WINDOWS$NtUninstallKB958215$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB958644)–>“C:\WINDOWS$NtUninstallKB958644$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB958687)–>“C:\WINDOWS$NtUninstallKB958687$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB960714)–>“C:\WINDOWS$NtUninstallKB960714$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB960715)–>“C:\WINDOWS$NtUninstallKB960715$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB951072-v2)–>“C:\WINDOWS$NtUninstallKB951072-v2$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB951978)–>“C:\WINDOWS$NtUninstallKB951978$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB955839)–>“C:\WINDOWS$NtUninstallKB955839$\spuninst\spuninst.exe”
mIWA–>MsiExec.exe /I{3E9D596A-61D4-4239-BD19-2DB984D2A16F}
mIWCA–>MsiExec.exe /I{6FFFE74E-3FBD-4E2E-97F9-5E9A2A077626}
mLogView–>MsiExec.exe /I{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}
mMHouse–>MsiExec.exe /I{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}
Mozilla Firefox (3.0.5)–>C:\Program Files\Mozilla Firefox\uninstall\helper.exe
mPfMgr–>MsiExec.exe /I{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}
mPfWiz–>MsiExec.exe /I{90B0D222-8C21-4B35-9262-53B042F18AF9}
mProSafe–>MsiExec.exe /I{23FB368F-1399-4EAC-817C-4B83ECBE3D83}
MSRedist–>MsiExec.exe /I{B7C61755-DB48-4003-948F-3D34DB8EAF69}
MSXML 4.0 SP2 (KB927978)–>MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)–>MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)–>MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
mWlsSafe–>MsiExec.exe /I{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}
mXML–>MsiExec.exe /I{9CC89556-3578-48DD-8408-04E66EBEF401}
mZConfig–>MsiExec.exe /I{94658027-9F16-4509-BBD7-A59FE57C3023}
Nero Suite–>C:\Program Files\Fichiers communs\Ahead\Uninstall\Setup.exe /uninstall
Norton AntiSpam–>MsiExec.exe /I{3B29A786-5803-4e9e-9B58-3014A5B4E519}
Norton AntiSpam–>MsiExec.exe /I{5677563D-0CB1-485f-9E18-C5025306BB3F}
Norton AntiVirus 2005–>MsiExec.exe /X{C6F5B6CF-609C-428E-876F-CA83176C021B}
Norton Internet Security 2005 (Symantec Corporation)–>C:\Program Files\Fichiers communs\Symantec Shared\SymSetup{A93C9E60-29B6-49da-BA21-F70AC6AADE20}.exe /X
Norton Internet Security–>MsiExec.exe /I{12E2B9E9-05B1-407d-B0FD-B5F350535125}
Norton Internet Security–>MsiExec.exe /I{449F3A9E-9903-4a0d-A209-08030D45A935}
Norton Internet Security–>MsiExec.exe /I{48185814-A224-447a-81DA-71BD20580E1B}
Norton Internet Security–>MsiExec.exe /I{526AD5DC-CFC4-4f2a-8442-C84CC91D6C7F}
Norton Internet Security–>MsiExec.exe /I{A93C9E60-29B6-49da-BA21-F70AC6AADE20}
Norton Internet Security–>MsiExec.exe /I{C9D599E1-6B68-4a1f-8A4F-A1DB433DB1BF}
Norton Internet Security–>MsiExec.exe /I{E3EFA461-EB83-4C3B-9C47-2C1D58A01555}
Norton Internet Security–>MsiExec.exe /I{E5EE9939-259F-4DE2-8023-5C49E16A4F43}
Norton Internet Security–>MsiExec.exe /I{FC2C0536-583C-46c0-844A-62CECAE01F22}
Norton PartitionMagic 8.0–>C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{21DBBDD6-93A5-4326-9A04-C9A5C9148502}
Norton WMI Update–>MsiExec.exe /X{E85FA9A1-C241-4698-893B-DD99509B8DB0}
Norton WMI Update–>MsiExec.exe /X{F64306A5-4C32-41bb-B153-53986527FAB4}
PCSpim–>MsiExec.exe /I{75DE1CEC-63C5-48F7-8742-C7FC41E08F6B}
PostgreSQL 8.2–>MsiExec.exe /I{1F701DBD-1660-4108-B10A-FB435EA63BF0}
Power4 Gear–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{4462AD13-F2AA-4CBD-9F95-293C38EED870}\setup.exe” -l0x9
PowerDVD–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe” -uninstall
Programme de gestion Camera de Logitech®–>“C:\Program Files\Fichiers communs\LogiShrd\QCDRV\BIN\SETUP.EXE” UNINSTALL REMOVEPROMPT
Realtek AC’97 Audio–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe” REMOVE
SoftV92 Data Fax Modem with SmartCP–>C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_8086&DEV_24C6&SUBSYS_18261043\HXFSETUP.EXE -U -Iaus1826k.inf
Sonic Foundry Sound Forge 5.0–>MsiExec.exe /I{F3D6581A-FEA1-11D4-8170-00C04F612EA4}
SPBBC–>MsiExec.exe /I{77772678-817F-4401-9301-ED1D01A8DA56}
Spybot - Search & Destroy–>“C:\Program Files\Spybot - Search & Destroy\unins000.exe”
Symantec Script Blocking Installer–>MsiExec.exe /I{D327AFC9-7BAA-473A-8319-6EB7A0D40138}
SymNet–>MsiExec.exe /I{2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2}
Synaptics Pointing Device Driver–>rundll32.exe “C:\Program Files\Synaptics\SynTP\SynISDLL.dll”,standAloneUninstall
TextPad 4.7–>MsiExec.exe /X{B510A987-487E-4C66-9F4F-D386AC275715}
TortoiseSVN 1.5.5.14361 (32 bit)–>MsiExec.exe /X{49389932-51FA-4D26-8B4F-CE86B24302C2}
TreeSize Free V1.78–>“C:\Program Files\TreeSize\unins000.exe”
UltraVNC v1.0.1–>“C:\Program Files\UltraVNC\unins000.exe”
VideoLAN VLC media player 0.8.4–>C:\Program Files\VideoLAN\VLC\uninstall.exe
WaveLab Lite–>“C:\Program Files\Steinberg\WaveLab Lite\Unwise.exe” C:\PROGRA~1\STEINB~1\WAVELA~1\install.log
Winamp (remove only)–>“C:\Program Files\Winamp\UninstWA.exe”
Windows Live Messenger–>MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Media Connect–>msiexec.exe /I {F6869CD2-3DB4-476D-A4C7-B3AE7C3ACF7B}
Windows Media Connect–>MsiExec.exe /I{F6869CD2-3DB4-476D-A4C7-B3AE7C3ACF7B}
Windows Media Format 11 runtime–>“C:\Program Files\Windows Media Player\wmsetsdk.exe” /UninstallAll
Windows Media Format 11 runtime–>“C:\WINDOWS$NtUninstallWMFDist11$\spuninst\spuninst.exe”
Windows XP Service Pack 3–>“C:\WINDOWS$NtServicePackUninstall$\spuninst\spuninst.exe”
WINFLASH V2.15–>C:\WINDOWS\IsUninst.exe -f"C:\Program Files\ASUS\WINFLASH\Uninst.isu"
Xlobby–>C:\Program Files\Xlobby\Uninstall.exe
ZillaFTP Download Manager 5.0.0.0–>“C:\Program Files\ZillaFTP\unins000.exe”
======Security center information======
AV: AVG Anti-Virus Free (outdated)
AV: Norton Internet Security (outdated)
FW: Norton Internet Security
======System event log======
Computer Name: BOULOT
Event Code: 4201
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{E7AAEC26-D533-4A34-A125-FC94A4D9F606} était connectée au réseau,
et a lancé une opération normale sur la carte réseau.
Record Number: 24533
Source Name: Tcpip
Time Written: 20081228114610.000000+060
Event Type: Informations
User:
Computer Name: BOULOT
Event Code: 1003
Message: Votre ordinateur n’a pas pu renouveler son adresse à partir du réseau (à partir
du serveur DHCP) pour la carte réseau dont l’adresse réseau est 0012F0E427D0. Il s’est
produit l’erreur suivante :
L’opération a été annulée par l’utilisateur.
.
Votre ordinateur va continuer à essayer d’obtenir sa propre adresse auprès du
serveur d’adresse réseau (DHCP).
Record Number: 24532
Source Name: Dhcp
Time Written: 20081228114605.000000+060
Event Type: Avertissement
User:
Computer Name: BOULOT
Event Code: 4201
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{E7AAEC26-D533-4A34-A125-FC94A4D9F606} était connectée au réseau,
et a lancé une opération normale sur la carte réseau.
Record Number: 24531
Source Name: Tcpip
Time Written: 20081228114605.000000+060
Event Type: Informations
User:
Computer Name: BOULOT
Event Code: 4201
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{E7AAEC26-D533-4A34-A125-FC94A4D9F606} était connectée au réseau,
et a lancé une opération normale sur la carte réseau.
Record Number: 24530
Source Name: Tcpip
Time Written: 20081228114600.000000+060
Event Type: Informations
User:
Computer Name: BOULOT
Event Code: 1003
Message: Votre ordinateur n’a pas pu renouveler son adresse à partir du réseau (à partir
du serveur DHCP) pour la carte réseau dont l’adresse réseau est 0012F0E427D0. Il s’est
produit l’erreur suivante :
L’opération a été annulée par l’utilisateur.
.
Votre ordinateur va continuer à essayer d’obtenir sa propre adresse auprès du
serveur d’adresse réseau (DHCP).
Record Number: 24529
Source Name: Dhcp
Time Written: 20081228114555.000000+060
Event Type: Avertissement
User:
=====Application event log=====
Computer Name: BOULOT
Event Code: 1
Message: Application started
Record Number: 2818
Source Name: ccProxy
Time Written: 20061109231554.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: BOULOT
Event Code: 1
Message:
Record Number: 2817
Source Name: ISService
Time Written: 20061109231553.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: BOULOT
Event Code: 1
Message: Application started
Record Number: 2816
Source Name: ccEvtMgr
Time Written: 20061109231553.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: BOULOT
Event Code: 26
Message: Application starting
Record Number: 2815
Source Name: ccEvtMgr
Time Written: 20061109231553.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: BOULOT
Event Code: 1
Message: Application started
Record Number: 2814
Source Name: ccSetMgr
Time Written: 20061109231553.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM
======Environment variables======
“ComSpec”=%SystemRoot%\system32\cmd.exe
“Path”=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\TortoiseSVN\bin
“windir”=%SystemRoot%
“FP_NO_HOST_CHECK”=NO
“OS”=Windows_NT
“PROCESSOR_ARCHITECTURE”=x86
“PROCESSOR_LEVEL”=6
“PROCESSOR_IDENTIFIER”=x86 Family 6 Model 13 Stepping 6, GenuineIntel
“PROCESSOR_REVISION”=0d06
“NUMBER_OF_PROCESSORS”=1
“PATHEXT”=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
“TEMP”=%SystemRoot%\TEMP
“TMP”=%SystemRoot%\TEMP
-----------------EOF-----------------
Logfile of random’s system information tool 1.06 (written by random/random)
Run by Juju at 2009-07-22 21:45:09
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 9 GB (48%) free of 18 GB
Total RAM: 1023 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:46:35, on 22/07/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\PostgreSQL\8.2\bin\postgres.exe
C:\Program Files\UltraVNC\WinVNC.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\PostgreSQL\8.2\bin\postgres.exe
C:\Program Files\PostgreSQL\8.2\bin\postgres.exe
C:\Program Files\PostgreSQL\8.2\bin\postgres.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\ASUS\ASUS Hotkey\Hotkey.exe
C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\PROGRA~1\MICROS~2\rapimgr.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe
C:\WINDOWS\system32\taskmgr.exe
F:\RSIT.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HijackThis\Juju.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.fr…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.asus.com…
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = www.asus.com…
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.9.24.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM…\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM…\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM…\Run: [ASUS Live Update] C:\Program Files\ASUS\ASUS Live Update\ALU.exe
O4 - HKLM…\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM…\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM…\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM…\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM…\Run: [Zshutdown] c:\sysprep\patch\sysprep.cmd
O4 - HKLM…\Run: [ccApp] “C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe”
O4 - HKLM…\Run: [SSC_UserPrompt] C:\Program Files\Fichiers communs\Symantec Shared\Security Center\UsrPrmpt.exe
O4 - HKLM…\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM…\Run: [EOUApp] C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe
O4 - HKLM…\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM…\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM…\Run: [WinVNC] “C:\Program Files\UltraVNC\WinVNC.exe” -servicehelper
O4 - HKLM…\Run: [LogMeIn GUI] “C:\Program Files\LogMeIn\x86\LogMeInSystray.exe”
O4 - HKLM…\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM…\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe”
O4 - HKLM…\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM…\Run: [LogitechCommunicationsManager] “C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe”
O4 - HKLM…\Run: [LogitechQuickCamRibbon] “C:\Program Files\Logitech\QuickCam10\QuickCam10.exe” /hide
O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU…\Run: [H/PC Connection Agent] “C:\Program Files\Microsoft ActiveSync\wcescomm.exe”
O4 - HKCU…\Run: [BitComet] “C:\Program Files\BitComet\BitComet.exe”
O4 - HKCU…\Run: [MessengerPlus3] “C:\Program Files\MessengerPlus! 3\MsgPlus.exe” /WinStart
O4 - HKCU…\Run: [msnmsgr] “C:\Program Files\MSN Messenger\msnmsgr.exe” /background
O4 - HKCU…\Run: [DAEMON Tools] “C:\Program Files\DAEMON Tools\daemon.exe” -lang 1033
O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SERVICE LOCAL’)
O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SERVICE RÉSEAU’)
O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)
O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)
O4 - Global Startup: Hotkey.lnk = C:\Program Files\ASUS\ASUS Hotkey\Hotkey.exe
O4 - Global Startup: ASUS ChkMail.lnk = C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: &D&ownload &with BitComet - C:\Program… Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - C:\Program… Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - C:\Program… Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra ‘Tools’ menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - Extra ‘Tools’ menuitem: Créer un favori mobile… - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.9.24.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra ‘Tools’ menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: OwnershipProtocol - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe
O23 - Service: PostgreSQL Database Server 8.2 (pgsql-8.2) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\8.2\bin\pg_ctl.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Apache Tomcat (Tomcat6) - Apache Software Foundation - d:\java\Tomcat 6.0\bin\tomcat6.exe
O23 - Service: VNC Server (winvnc) - UltraVNC - C:\Program Files\UltraVNC\WinVNC.exe
–
End of file - 12933 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Symantec NetDetect.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.1.9.24.dll [2007-09-28 521528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-02-24 1078552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{9ECB9560-04F9-4bbc-943D-298DDF1699E1}]
CNisExtBho Class - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll [2004-08-31 103568]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{BDF3E430-B101-42AD-A544-FADC6B084872}]
CNavExtBho Class - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll [2005-10-19 218736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - Norton Internet Security - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll [2004-08-31 103568]
{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - Norton AntiVirus - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll [2005-10-19 218736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
“HControl”=C:\WINDOWS\ATK0100\HControl.exe [2005-02-04 98304]
“SoundMan”=C:\WINDOWS\SOUNDMAN.EXE [2004-12-14 77824]
“ASUS Live Update”=C:\Program Files\ASUS\ASUS Live Update\ALU.exe [2003-09-19 172032]
“Power_Gear”=C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe [2004-09-21 81920]
“SynTPLpr”=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2004-11-16 98394]
“SynTPEnh”=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2004-11-16 688218]
“ATIPTA”=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-08-03 339968]
“Zshutdown”=c:\sysprep\patch\sysprep.cmd []
“ccApp”=C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe [2005-07-14 58992]
“SSC_UserPrompt”=C:\Program Files\Fichiers communs\Symantec Shared\Security Center\UsrPrmpt.exe [2004-11-02 218240]
“”= []
“IntelWireless”=C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [2004-08-06 385024]
“EOUApp”=C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe [2004-08-06 356352]
“Symantec NetDriver Monitor”=C:\PROGRA~1\SYMNET~1\SNDMon.exe [2005-10-27 100056]
“NeroFilterCheck”=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
“WinVNC”=C:\Program Files\UltraVNC\WinVNC.exe [2005-08-06 974848]
“LogMeIn GUI”=C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [2007-04-17 63048]
“WinampAgent”=C:\Program Files\Winamp\winampa.exe [2007-05-15 35328]
“SunJavaUpdateSched”=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
“AVG8_TRAY”=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-02-24 1601304]
“LogitechCommunicationsManager”=C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe [2007-02-08 488984]
“LogitechQuickCamRibbon”=C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [2007-02-08 774168]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
“CTFMON.EXE”=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
“H/PC Connection Agent”=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2005-11-15 1204224]
“BitComet”=C:\Program Files\BitComet\BitComet.exe [2005-09-08 2600960]
“MessengerPlus3”=C:\Program Files\MessengerPlus! 3\MsgPlus.exe [2007-06-22 190024]
“msnmsgr”=C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]
“DAEMON Tools”=C:\Program Files\DAEMON Tools\daemon.exe [2007-08-16 167368]
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Hotkey.lnk - C:\Program Files\ASUS\ASUS Hotkey\Hotkey.exe
ASUS ChkMail.lnk - C:\Program Files\ASUS\Asus ChkMail\ChkMail.exe
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2009-02-24 10520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\IntelWireless]
C:\Program Files\Intel\Wireless\Bin\LgNotify.dll [2004-08-06 110592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LMIinit]
C:\WINDOWS\system32\LMIinit.dll [2008-10-25 87352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-08-24 133120]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
“notification packages”=
scecli
scecli
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
“NoDriveTypeAutoRun”=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
“%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019"
“C:\Program Files\Microsoft ActiveSync\rapimgr.exe”=“C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager”
“C:\Program Files\Microsoft ActiveSync\wcescomm.exe”=“C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager”
“C:\Program Files\Microsoft ActiveSync\WCESMgr.exe”=“C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application”
“C:\Program Files\AVG\AVG8\avgupd.exe”="C:\Program Files\AVG\AVG8\avgupd.exe::Enabled:avgupd.exe"
“C:\Program Files\AVG\AVG8\avgemc.exe”=“C:\Program Files\AVG\AVG8\avgemc.exe::Enabled:avgemc.exe"
“%windir%\Network Diagnostic\xpnetdiag.exe”="%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000”
“C:\Program Files\MSN Messenger\msnmsgr.exe”=“C:\Program Files\MSN Messenger\msnmsgr.exe::Enabled:Windows Live Messenger 8.1"
“C:\Program Files\MSN Messenger\livecall.exe”="C:\Program Files\MSN Messenger\livecall.exe::Enabled:Windows Live Messenger 8.1 (Phone)”
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
“%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019"
“C:\Program Files\Microsoft ActiveSync\rapimgr.exe”=“C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager”
“C:\Program Files\Microsoft ActiveSync\wcescomm.exe”=“C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager”
“C:\Program Files\Microsoft ActiveSync\WCESMgr.exe”=“C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application”
“%windir%\Network Diagnostic\xpnetdiag.exe”="%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000"
“C:\Program Files\MSN Messenger\msnmsgr.exe”=“C:\Program Files\MSN Messenger\msnmsgr.exe::Enabled:Windows Live Messenger 8.1"
“C:\Program Files\MSN Messenger\livecall.exe”="C:\Program Files\MSN Messenger\livecall.exe::Enabled:Windows Live Messenger 8.1 (Phone)”
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2{cf836e10-735d-11dc-b107-0012f0e427d0}]
shell\AutoRun\command - start.exe
shell\iledefrance\command - start.exe
======List of files/folders created in the last 3 months======
2009-07-22 21:45:09 ----D---- C:\rsit
2009-07-22 21:38:33 ----D---- C:\WINDOWS\LastGood
2009-07-19 23:37:11 ----D---- C:\Documents and Settings\Juju\Application Data\Malwarebytes
2009-07-19 23:37:05 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-07-19 23:37:04 ----D---- C:\Program Files\Malwarebytes’ Anti-Malware
2009-07-18 13:33:57 ----D---- C:\Program Files\HijackThis
2009-07-15 23:02:38 ----A---- C:\WINDOWS\ntbtlog.txt
2009-07-15 22:50:11 ----D---- C:\WINDOWS\Prefetch
2009-07-15 22:47:06 ----HD---- C:\WINDOWS$NtUninstallKB956803$
2009-07-15 22:46:27 ----HD---- C:\WINDOWS$NtUninstallKB957095$
2009-07-15 22:45:50 ----HD---- C:\WINDOWS$NtUninstallKB954211$
2009-07-15 22:45:06 ----HD---- C:\WINDOWS$NtUninstallKB956841$
2009-07-15 22:44:32 ----HD---- C:\WINDOWS$NtUninstallKB938464$
2009-07-15 22:43:53 ----HD---- C:\WINDOWS$NtUninstallKB956390$
2009-07-15 22:43:16 ----HD---- C:\WINDOWS$NtUninstallKB946648$
2009-07-15 22:42:35 ----HD---- C:\WINDOWS$NtUninstallKB952287$
2009-07-15 22:41:59 ----HD---- C:\WINDOWS$NtUninstallKB951066$
2009-07-15 22:41:24 ----HD---- C:\WINDOWS$NtUninstallKB952954$
2009-07-15 22:40:47 ----HD---- C:\WINDOWS$NtUninstallKB950974$
2009-07-15 22:40:07 ----HD---- C:\WINDOWS$NtUninstallKB953838$
2009-07-15 22:39:29 ----HD---- C:\WINDOWS$NtUninstallKB951748$
2009-07-15 22:38:55 ----HD---- C:\WINDOWS$NtUninstallKB951376-v2$
2009-07-15 22:38:15 ----HD---- C:\WINDOWS$NtUninstallKB950762$
2009-07-15 22:37:38 ----HD---- C:\WINDOWS$NtUninstallKB950759$
2009-07-15 22:36:55 ----HD---- C:\WINDOWS$NtUninstallKB951698$
2009-07-15 22:33:55 ----N---- C:\WINDOWS\system32\msxml6r.dll
2009-07-15 22:33:55 ----N---- C:\WINDOWS\system32\msxml6.dll
2009-07-15 22:33:42 ----N---- C:\WINDOWS\system32\credssp.dll
2009-07-15 22:33:42 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2009-07-15 22:33:42 ----N---- C:\WINDOWS\system32\azroles.dll
2009-07-15 22:33:42 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2009-07-15 22:33:42 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2009-07-15 22:33:42 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2009-07-15 22:33:42 ----N---- C:\WINDOWS\system32\aaclient.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\eappcfg.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\eapolqec.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\dot3ui.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\dot3svc.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\dot3msm.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\dot3api.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\dimsroam.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2009-07-15 22:33:41 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2009-07-15 22:33:40 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2009-07-15 22:33:40 ----N---- C:\WINDOWS\system32\eapsvc.dll
2009-07-15 22:33:40 ----N---- C:\WINDOWS\system32\eapqec.dll
2009-07-15 22:33:40 ----N---- C:\WINDOWS\system32\eappprxy.dll
2009-07-15 22:33:40 ----N---- C:\WINDOWS\system32\eapphost.dll
2009-07-15 22:33:40 ----N---- C:\WINDOWS\system32\eappgnui.dll
2009-07-15 22:33:39 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2009-07-15 22:33:39 ----N---- C:\WINDOWS\system32\kmsvc.dll
2009-07-15 22:33:39 ----N---- C:\WINDOWS\system32\kbdpash.dll
2009-07-15 22:33:39 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2009-07-15 22:33:39 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2009-07-15 22:33:39 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2009-07-15 22:33:38 ----N---- C:\WINDOWS\system32\napipsec.dll
2009-07-15 22:33:38 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2009-07-15 22:33:38 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2009-07-15 22:33:38 ----N---- C:\WINDOWS\system32\mssha.dll
2009-07-15 22:33:38 ----N---- C:\WINDOWS\system32\mmcperf.exe
2009-07-15 22:33:38 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2009-07-15 22:33:38 ----N---- C:\WINDOWS\system32\mmcex.dll
2009-07-15 22:33:38 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2009-07-15 22:33:37 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2009-07-15 22:33:37 ----N---- C:\WINDOWS\system32\onex.dll
2009-07-15 22:33:37 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2009-07-15 22:33:37 ----N---- C:\WINDOWS\system32\napstat.exe
2009-07-15 22:33:37 ----N---- C:\WINDOWS\system32\napmontr.dll
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\slserv.exe
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\slrundll.exe
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\slgen.dll
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\slextspk.dll
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\slcoinst.dll
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\setupn.exe
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\s3gnb.dll
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\rasqec.dll
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\qutil.dll
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\qcliprov.dll
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\qagentrt.dll
2009-07-15 22:33:36 ----N---- C:\WINDOWS\system32\qagent.dll
2009-07-15 22:33:35 ----N---- C:\WINDOWS\system32\tspkg.dll
2009-07-15 22:33:35 ----N---- C:\WINDOWS\system32\tsgqec.dll
2009-07-15 22:33:34 ----N---- C:\WINDOWS\system32\wmphoto.dll
2009-07-15 22:33:34 ----N---- C:\WINDOWS\system32\wlanapi.dll
2009-07-15 22:33:34 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2009-07-15 22:33:34 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2009-07-15 22:33:33 ----N---- C:\WINDOWS\system32\xmllite.dll
2009-07-15 22:33:33 ----N---- C:\WINDOWS\slrundll.exe
2009-07-15 22:30:25 ----D---- C:\WINDOWS\ServicePackFiles
2009-07-15 22:27:33 ----A---- C:\WINDOWS\002780_.tmp
2009-07-15 22:23:50 ----HD---- C:\WINDOWS$NtServicePackUninstall$
2009-07-10 15:50:26 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-07-10 15:50:26 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-05-30 20:13:31 ----SHD---- C:\Config.Msi
2009-05-30 13:16:39 ----A---- C:\WINDOWS\resetlog.txt
======List of files/folders modified in the last 3 months======
2009-07-19 23:37:44 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-07-19 23:35:14 ----A---- C:\WINDOWS\imsins.BAK
2009-07-15 23:23:24 ----A---- C:\WINDOWS\NeroDigital.ini
2009-07-15 22:53:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-07-15 22:51:04 ----A---- C:\WINDOWS\setuplog.txt
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-02-24 325128]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-02-24 27656]
R1 AvgTdiX;AVG8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-02-24 107272]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 40576]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2004-05-05 4228]
R1 SPBBCDrv;SPBBCDrv; ??\C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys []
R1 SYMTDI;SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [2005-04-05 267192]
R1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2004-10-05 62799]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.1.0.1; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-02-25 17056]
R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 LMIInfo;LogMeIn Kernel Information Provider; ??\C:\Program Files\LogMeIn\x86\RaInfo.sys []
R2 LMIRfsDriver;LogMeIn Remote File System Driver; ??\C:\WINDOWS\system32\drivers\LMIRfsDriver.sys []
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-10-20 13059]
R2 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2004-08-06 11354]
R2 SAVRTPEL;SAVRTPEL; ??\C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS []
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-12-14 2300928]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-10-20 768512]
R3 CmBatt;Pilote d’adaptateur secteur Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2004-10-20 1041536]
R3 HSFHWICH;HSFHWICH; C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys [2004-10-20 200064]
R3 IWCA;Intel Wireless Connection Agent Miniport for Win XP; C:\WINDOWS\system32\DRIVERS\iwca.sys [2004-08-12 234496]
R3 lmimirr;lmimirr; C:\WINDOWS\system32\DRIVERS\lmimirr.sys [2007-04-17 10144]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2007-02-06 25632]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2005-02-04 5632]
R3 NAVENG;NAVENG; ??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20051214.017\NAVENG.Sys []
R3 NAVEX15;NAVEX15; ??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20051214.017\NavEx15.Sys []
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 SAVRT;SAVRT; ??\C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT.SYS []
R3 SMCIRDA;SMSC IrCC Miniport Device Driver; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2004-12-21 46592]
R3 SYMDNS;SYMDNS; C:\WINDOWS\System32\Drivers\SYMDNS.SYS [2005-04-05 11512]
R3 SymEvent;SymEvent; ??\C:\Program Files\Symantec\SYMEVENT.SYS []
R3 SYMFW;SYMFW; C:\WINDOWS\System32\Drivers\SYMFW.SYS [2005-04-05 173208]
R3 SYMIDS;SYMIDS; C:\WINDOWS\System32\Drivers\SYMIDS.SYS [2005-04-05 36984]
R3 SYMIDSCO;SYMIDSCO; ??\C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\idsdefs\20051208.051\symidsco.sys []
R3 SYMNDIS;SYMNDIS; C:\WINDOWS\System32\Drivers\SYMNDIS.SYS [2005-04-05 47192]
R3 SYMREDRV;SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2005-04-05 17976]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2004-11-16 185824]
R3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2005-01-08 51582]
R3 usbehci;Pilote miniport de contrôleur d’hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 w29n51;Pilote de carte de connexion réseau Intel® PRO/Wireless 2200BG pour Windows XP; C:\WINDOWS\system32\DRIVERS\w29n51.sys [2004-08-07 3210496]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2004-10-20 685056]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Gigabit Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\yukonwxp.sys [2004-10-20 142464]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14720]
S3 ausens;ausens; C:\WINDOWS\system32\drivers\ausens.sys [2003-08-13 404736]
S3 ay38y9no;ay38y9no; C:\WINDOWS\system32\drivers\ay38y9no.sys []
S3 Bridge;Pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BridgeMP;Miniport de pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 CamDrL;Logitech QuickCam Pro 3000(CamDrl); C:\WINDOWS\system32\DRIVERS\Camdrl.sys [2007-02-03 1075360]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2007-11-07 25280]
S3 iComp;Hauppauge WinTV PVR USB2 Encoder; C:\WINDOWS\system32\DRIVERS\HCWUSB2.sys [2005-04-21 1442752]
S3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-02-06 1691808]
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-02-06 1964064]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-02-03 41504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-05 5888]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 toshidpt;TOSHIBA Bluetooth HID port driver; C:\WINDOWS\system32\drivers\Toshidpt.sys [2002-10-17 2851]
S3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2005-01-17 98304]
S3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2004-07-09 36531]
S3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2004-11-16 50048]
S3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-07 18612]
S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:\WINDOWS\system32\drivers\TosRfSnd.sys [2004-12-16 50048]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2004-12-22 34816]
S3 uafilter;uafilter; C:\WINDOWS\System32\DRIVERS\uafilter.sys [2003-09-04 9886]
S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\drivers\UIUSys.sys []
S3 usb_rndisx;USB RNDIS Adapter; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2005-10-21 12800]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S4 LMIRfsClientNP;LMIRfsClientNP; C:\WINDOWS\system32\drivers\LMIRfsClientNP.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-10-20 389120]
R2 avg8emc;AVG8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2009-02-24 903960]
R2 avg8wd;AVG8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-02-24 298264]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe [2005-07-14 198256]
R2 ccProxy;Symantec Network Proxy; C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe [2005-03-23 235120]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe [2005-07-14 181872]
R2 EvtEng;EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2004-08-06 86016]
R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
R2 ISSVC;ISSvc; C:\Program Files\Norton Internet Security\ISSVC.exe [2005-04-18 83584]
R2 LMIMaint;LogMeIn Maintenance Service; C:\Program Files\LogMeIn\x86\RaMaint.exe [2008-10-25 116032]
R2 LogMeIn;LogMeIn; C:\Program Files\LogMeIn\x86\LogMeIn.exe [2007-04-17 63040]
R2 LVPrcSrv;Process Monitor; c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe [2007-02-06 109344]
R2 navapsvc;Norton AntiVirus Auto-Protect Service; C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe [2005-10-19 177264]
R2 OwnershipProtocol;OwnershipProtocol; C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe [2004-08-06 98304]
R2 pgsql-8.2;PostgreSQL Database Server 8.2; C:\Program Files\PostgreSQL\8.2\bin\pg_ctl.exe [2008-03-17 84657]
R2 RegSrvc;RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2004-08-06 139264]
R2 S24EventMonitor;Spectrum24 Event Monitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2004-08-06 360521]
R2 SNDSrvc;Symantec Network Drivers Service; C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe [2005-04-05 206552]
R2 SPBBCSvc;Symantec SPBBCSvc; C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe [2004-07-21 173160]
R2 winvnc;VNC Server; C:\Program Files\UltraVNC\WinVNC.exe [2005-08-06 974848]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe [2007-02-06 105248]
S2 SBService;ScriptBlocking Service; C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe [2005-10-19 67184]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 ccPwdSvc;Symantec Password Validation; C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe [2005-07-14 79472]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 SAVScan;SAVScan; C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe [2005-03-07 198368]
S3 Tomcat6;Apache Tomcat; d:\java\Tomcat 6.0\bin\tomcat6.exe [2008-01-29 57344]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WmcCds;Windows Media Connect (WMC); c:\program files\windows media connect\mswmccds.exe [2004-08-11 483328]
S3 WmcCdsLs;Windows Media Connect (WMC) Helper; C:\Program Files\Windows Media Connect\mswmcls.exe [2004-08-10 28160]
-----------------EOF-----------------
Pour GenProc, ça a merdé, meme si hijackthis était installé, jle met au cas ou
Rapport GenProc 2.606 [2] - 22/07/2009 à 22:03:39
@ Windows XP Service Pack 3 - Mode normal
@ Mozilla Firefox (3.0.5) [Navigateur par défaut]
~~ ECHEC DU TELECHARGEMENT DE MBR.EXE ~~
~~ ECHEC DU TELECHARGEMENT D’HIJACKTHIS ~~
GenProc n’a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :
Poste un rapport Nod32 www.eset-nod32.fr… (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c’est terminé, colle le rapport :
- C:\Program Files\EsetOnlineScanner\log.txt
~~ Fin à 22:05:31 ~~
