Log.txt c’est sa :
Logfile of random’s system information tool 1.06 (written by random/random)
Run by nathan at 2009-10-23 14:48:17
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 6 GB (19%) free of 30 GB
Total RAM: 2047 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:48:30, on 23/10/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iTALC\ica.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\nathan\Bureau\RSIT.exe
C:\Documents and Settings\nathan\Bureau\HijackThis\nathan.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.fr…
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Programme d’aide de l’Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Save Flash - {4064EA35-578D-4073-A834-C96D82CBCF40} - C:\Program Files\Save Flash\SaveFlash.dll
O4 - HKLM…\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM…\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install
O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM…\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre6\bin\jusched.exe”
O4 - HKLM…\Run: [BDMCon] “C:\Program Files\Softwin\BitDefender10\bdmcon.exe” /reg
O4 - HKLM…\Run: [BDAgent] “C:\Program Files\Softwin\BitDefender10\bdagent.exe”
O4 - HKLM…\Run: [Adobe Reader Speed Launcher] “C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe”
O4 - HKLM…\Run: [Malwarebytes Anti-Malware (reboot)] “C:\Program Files\Malwarebytes’ Anti-Malware\mbam.exe” /runcleanupscript
O4 - HKCU…\Run: [BitTorrent DNA] “C:\Program Files\DNA\btdna.exe”
O4 - HKCU…\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\msnmsgr.exe” /background
O4 - HKUS\S-1-5-19…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SERVICE LOCAL’)
O4 - HKUS\S-1-5-20…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SERVICE RÉSEAU’)
O4 - HKUS\S-1-5-18…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘SYSTEM’)
O4 - HKUS.DEFAULT…\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User ‘Default user’)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra ‘Tools’ menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: iTALC Client (icas) - Unknown owner - C:\Program Files\iTALC\ica.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
–
End of file - 5516 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\WGASetup.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d’aide de l’Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-09-19 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-09-19 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4064EA35-578D-4073-A834-C96D82CBCF40} - &Save Flash - C:\Program Files\Save Flash\SaveFlash.dll [2009-01-19 1105920]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
“SoundMan”=C:\WINDOWS\SOUNDMAN.EXE [2006-08-03 577536]
“nwiz”=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2009-07-09 1657376]
“NvCplDaemon”=C:\WINDOWS\system32\NvCpl.dll [2009-07-14 13877248]
“NvMediaCenter”=C:\WINDOWS\system32\NvMcTray.dll [2009-07-14 86016]
“SunJavaUpdateSched”=C:\Program Files\Java\jre6\bin\jusched.exe [2009-09-19 149280]
“BDMCon”=C:\Program Files\Softwin\BitDefender10\bdmcon.exe [2007-04-02 290816]
“BDAgent”=C:\Program Files\Softwin\BitDefender10\bdagent.exe [2007-03-26 69632]
“Adobe Reader Speed Launcher”=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
“Malwarebytes Anti-Malware (reboot)”=C:\Program Files\Malwarebytes’ Anti-Malware\mbam.exe [2009-09-10 1312080]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
“BitTorrent DNA”=C:\Program Files\DNA\btdna.exe [2009-10-07 323392]
“msnmsgr”=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
“NoDriveTypeAutoRun”=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
“HonorAutoRunSetting”=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
“%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019"
“%windir%\Network Diagnostic\xpnetdiag.exe”="%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000"
“D:\jeux\worldatwar\CoDWaW.exe”=“D:\jeux\worldatwar\CoDWaW.exe::Disabled:Call of Duty®: World at War Campaign/Coop"
“C:\Program Files\DNA\btdna.exe”="C:\Program Files\DNA\btdna.exe::Enabled:DNA”
“C:\Program Files\Messenger\msmsgs.exe”=“C:\Program Files\Messenger\msmsgs.exe::Enabled:Windows Messenger"
“C:\Program Files\Windows Live\Messenger\wlcsdk.exe”="C:\Program Files\Windows Live\Messenger\wlcsdk.exe::Enabled:Windows Live Call”
“C:\Program Files\Windows Live\Messenger\msnmsgr.exe”=“C:\Program Files\Windows Live\Messenger\msnmsgr.exe::Enabled:Windows Live Messenger"
“C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe”="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe::Enabled:Windows Live FolderShare”
“C:\Program Files\Pando Networks\Media Booster\PMB.exe”=“C:\Program Files\Pando Networks\Media Booster\PMB.exe::Enabled:Pando Media Booster"
“C:\Documents and Settings\All Users\Application Data\NexonUS\NGM\NGM.exe”="C:\Documents and Settings\All Users\Application Data\NexonUS\NGM\NGM.exe::Enabled:Nexon Game Manager”
“C:\Nexon\Combat Arms\CombatArms.exe”=“C:\Nexon\Combat Arms\CombatArms.exe:Enabled:CombatArms.exe"
“C:\Nexon\Combat Arms\Engine.exe”=“C:\Nexon\Combat Arms\Engine.exe:Enabled:Engine.exe"
“C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe”="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe::Enabled:NEXON_EU_Downloader_Engine”
“C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe”="C:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe::Enabled:Nexon Game Manager”
“C:\Nexon\Combat Arms EU\CombatArms.exe”=“C:\Nexon\Combat Arms EU\CombatArms.exe:Enabled:CombatArms.exe"
“C:\Nexon\Combat Arms EU\Engine.exe”=“C:\Nexon\Combat Arms EU\Engine.exe:Enabled:Engine.exe"
“C:\Nexon\Combat Arms EU\NMService.exe”="C:\Nexon\Combat Arms EU\NMService.exe::Enabled:Nexon Messenger Core”
“C:\Program Files\Steam\SteamApps\bestounet88\counter-strike source\hl2.exe”="C:\Program Files\Steam\SteamApps\bestounet88\counter-strike source\hl2.exe::Enabled:hl2”
“C:\Program Files\Metin2_France\metin2.bin”=“C:\Program Files\Metin2_France\metin2.bin::Enabled:metin2"
“C:\Program Files\Steam\SteamApps\bestounet88\half-life 2 deathmatch\hl2.exe”="C:\Program Files\Steam\SteamApps\bestounet88\half-life 2 deathmatch\hl2.exe::Enabled:hl2”
“C:\Program Files\iTALC\ica.exe”=“C:\Program Files\iTALC\ica.exe::Enabled:iTALC Client Application (ICA)"
“C:\Program Files\Skype\Phone\Skype.exe”="C:\Program Files\Skype\Phone\Skype.exe::Enabled:Skype”
“C:\Program Files\River Past\Audio Capture\AudioCapture.exe”=“C:\Program Files\River Past\Audio Capture\AudioCapture.exe:*:Enabled:River Past Audio Capture”
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
“%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe::enabled:@xpsp2res.dll,-22019"
“%windir%\Network Diagnostic\xpnetdiag.exe”="%windir%\Network Diagnostic\xpnetdiag.exe::Enabled:@xpsp3res.dll,-20000"
“C:\Program Files\Windows Live\Messenger\wlcsdk.exe”=“C:\Program Files\Windows Live\Messenger\wlcsdk.exe::Enabled:Windows Live Call"
“C:\Program Files\Windows Live\Messenger\msnmsgr.exe”="C:\Program Files\Windows Live\Messenger\msnmsgr.exe::Enabled:Windows Live Messenger”
“C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe”=“C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe::Enabled:Windows Live FolderShare"
“C:\Program Files\Pando Networks\Media Booster\PMB.exe”="C:\Program Files\Pando Networks\Media Booster\PMB.exe::Enabled:Pando Media Booster”
“C:\Nexon\Combat Arms\CombatArms.exe”=“C:\Nexon\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe”
“C:\Nexon\Combat Arms\Engine.exe”=“C:\Nexon\Combat Arms\Engine.exe:*Enabled:Engine.exe”
“C:\Nexon\Combat Arms EU\CombatArms.exe”=“C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe”
“C:\Nexon\Combat Arms EU\Engine.exe”=“C:\Nexon\Combat Arms EU\Engine.exe:Enabled:Engine.exe"
“C:\Program Files\iTALC\ica.exe”="C:\Program Files\iTALC\ica.exe::Enabled:iTALC Client Application (ICA)”
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2{c50aa750-8dcf-11de-ad2f-0013d3aefcdc}]
shell\AutoRun\command - G:\Programs\nu2menu\nu2menu.exe
======List of files/folders created in the last 1 months======
2009-10-23 12:37:35 ----HT---- C:\WINDOWS\system32\22070d4.dll
2009-10-23 12:37:35 ----HT---- C:\WINDOWS\system32\10a106ed.dll
2009-10-23 12:37:01 ----HT---- C:\WINDOWS\system32\96f6fc0.dll
2009-10-23 12:37:01 ----HT---- C:\WINDOWS\system32\16a61080.dll
2009-10-23 11:24:48 ----A---- C:\WINDOWS\ntbtlog.txt
2009-10-23 11:15:52 ----D---- C:\rsit
2009-10-21 15:11:00 ----HT---- C:\WINDOWS\system32\23766a8.dll
2009-10-20 17:54:36 ----D---- C:\Documents and Settings\nathan\Application Data\Malwarebytes
2009-10-20 17:54:32 ----D---- C:\Program Files\Malwarebytes’ Anti-Malware
2009-10-20 17:54:32 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-10-20 13:49:54 ----D---- C:\Program Files\Lame for Audacity
2009-10-19 20:32:22 ----D---- C:\Documents and Settings\nathan\Application Data\Cool Record Edit Pro
2009-10-19 20:25:33 ----D---- C:\Documents and Settings\nathan\Application Data\Free Sound Recorder
2009-10-19 20:23:13 ----A---- C:\WINDOWS\system32\NCTWMAFile2.dll
2009-10-19 20:23:13 ----A---- C:\WINDOWS\system32\NCTTextToAudio2.dll
2009-10-19 20:23:13 ----A---- C:\WINDOWS\system32\NCTAudioVisualization2.dll
2009-10-19 20:23:13 ----A---- C:\WINDOWS\system32\NCTAudioTransform2.dll
2009-10-19 20:23:13 ----A---- C:\WINDOWS\system32\NCTAudioRecord2.dll
2009-10-19 20:23:13 ----A---- C:\WINDOWS\system32\NCTAudioPlayer2.dll
2009-10-19 20:23:13 ----A---- C:\WINDOWS\system32\NCTAudioInformation2.dll
2009-10-19 20:23:13 ----A---- C:\WINDOWS\system32\NCTAudioFile2.dll
2009-10-19 20:23:13 ----A---- C:\WINDOWS\system32\NCTAudioEditor2.dll
2009-10-19 20:23:13 ----A---- C:\WINDOWS\system32\NCTAudioCDGrabber2.dll
2009-10-19 20:23:12 ----D---- C:\Program Files\Free Sound Recorder
2009-10-19 20:11:24 ----D---- C:\Program Files\River Past
2009-10-19 20:11:24 ----D---- C:\Documents and Settings\nathan\Application Data\River Past G5
2009-10-19 20:11:24 ----D---- C:\Documents and Settings\All Users\Application Data\River Past G5
2009-10-19 17:20:05 ----D---- C:\Program Files\CCleaner
2009-10-18 21:41:07 ----D---- C:\RAM Cheat
2009-10-18 21:39:28 ----D---- C:\Program Files\Nouvelle Cible Studio
2009-10-18 13:00:42 ----D---- C:\Program Files\AC Tool
2009-10-17 14:17:02 ----D---- C:\Documents and Settings\nathan\Application Data\Audacity
2009-10-17 14:16:51 ----D---- C:\Program Files\Audacity 1.3 Beta (Unicode)
2009-10-15 22:51:27 ----D---- C:\Program Files\sks32
2009-10-14 20:27:14 ----SHD---- C:\Config.Msi
2009-10-14 20:25:46 ----HDC---- C:\WINDOWS$NtUninstallKB974455$
2009-10-14 20:25:39 ----HDC---- C:\WINDOWS$NtUninstallKB958869$
2009-10-14 20:23:36 ----HDC---- C:\WINDOWS$NtUninstallKB969059$
2009-10-14 20:22:34 ----D---- C:\WINDOWS\ie8updates
2009-10-14 20:21:00 ----D---- C:\WINDOWS\WBEM
2009-10-14 20:19:11 ----HDC---- C:\WINDOWS\ie8
2009-10-14 20:14:33 ----A---- C:\WINDOWS\system32\MRT.exe
2009-10-14 20:12:53 ----HDC---- C:\WINDOWS$NtUninstallKB954155_WM9$
2009-10-14 20:12:44 ----HDC---- C:\WINDOWS$NtUninstallKB974112$
2009-10-14 20:12:29 ----HDC---- C:\WINDOWS$NtUninstallKB975025$
2009-10-14 20:12:14 ----HDC---- C:\WINDOWS$NtUninstallKB974571$
2009-10-14 20:11:44 ----HDC---- C:\WINDOWS$NtUninstallKB971486$
2009-10-14 20:11:07 ----HDC---- C:\WINDOWS$NtUninstallKB973525$
2009-10-14 20:10:52 ----HDC---- C:\WINDOWS$NtUninstallKB975467$
2009-10-14 14:33:15 ----HT---- C:\WINDOWS\system32\41e898c.dll
2009-10-14 14:33:15 ----HT---- C:\WINDOWS\system32\21b1f2c.dll
2009-10-14 12:01:01 ----HT---- C:\WINDOWS\system32\2c34fbdc.dll
2009-10-14 12:01:01 ----HT---- C:\WINDOWS\system32\1ccfd7.dll
2009-10-13 22:35:59 ----HT---- C:\WINDOWS\system32\db0d71b.dll
2009-10-13 22:35:59 ----HT---- C:\WINDOWS\system32\11cd07a0.dll
2009-10-13 22:05:43 ----HT---- C:\WINDOWS\system32\e3bc5d8.dll
2009-10-13 22:05:43 ----HT---- C:\WINDOWS\system32\3c44bbd.dll
2009-10-13 21:40:08 ----HT---- C:\WINDOWS\system32\e68fda4.dll
2009-10-13 21:40:08 ----HT---- C:\WINDOWS\system32\24b1eeae.dll
2009-10-13 19:13:58 ----HT---- C:\WINDOWS\system32\bd26c4.dll
2009-10-13 19:13:58 ----HT---- C:\WINDOWS\system32\52c481e.dll
2009-10-13 13:48:35 ----HT---- C:\WINDOWS\system32\1d5e5b34.dll
2009-10-13 13:48:35 ----HT---- C:\WINDOWS\system32\10836840.dll
2009-10-13 13:41:06 ----D---- C:\Program Files\Axon Data
2009-10-13 11:51:01 ----HT---- C:\WINDOWS\system32\81f7f86.dll
2009-10-13 11:51:01 ----HT---- C:\WINDOWS\system32\2b068d0.dll
2009-10-13 11:44:18 ----HT---- C:\WINDOWS\system32\20067df.dll
2009-10-13 11:44:18 ----HT---- C:\WINDOWS\system32\1c82b7c6.dll
2009-10-12 22:44:37 ----HT---- C:\WINDOWS\system32\cd47d7e.dll
2009-10-12 22:44:37 ----HT---- C:\WINDOWS\system32\21e71f6.dll
2009-10-12 22:43:56 ----HT---- C:\WINDOWS\system32\1eae2acc.dll
2009-10-12 22:43:56 ----HT---- C:\WINDOWS\system32\114ddc9c.dll
2009-10-12 20:42:25 ----HT---- C:\WINDOWS\system32\dede378.dll
2009-10-12 20:42:25 ----HT---- C:\WINDOWS\system32\74c9a8.dll
2009-10-12 18:33:57 ----HT---- C:\WINDOWS\system32\31449aa9.dll
2009-10-12 18:33:57 ----HT---- C:\WINDOWS\system32\1f15fc92.dll
2009-10-12 17:22:53 ----HT---- C:\WINDOWS\system32\30bc5680.dll
2009-10-12 17:22:53 ----HT---- C:\WINDOWS\system32\1865311e.dll
2009-10-12 16:40:36 ----HT---- C:\WINDOWS\system32\ed2f31.dll
2009-10-12 16:40:35 ----HT---- C:\WINDOWS\system32\100020a2.dll
2009-10-12 16:35:09 ----HT---- C:\WINDOWS\system32\29f0db2e.dll
2009-10-12 14:26:08 ----HT---- C:\WINDOWS\system32\3703318.dll
2009-10-12 14:26:08 ----HT---- C:\WINDOWS\system32\32aef38.dll
2009-10-12 13:07:15 ----HT---- C:\WINDOWS\system32\863f026.dll
2009-10-12 13:07:15 ----HT---- C:\WINDOWS\system32\1b7ab94.dll
2009-10-12 12:42:41 ----HT---- C:\WINDOWS\system32\c04b3e6.dll
2009-10-11 22:35:26 ----D---- C:\Documents and Settings\nathan\Application Data\DofusOnline.D3C9F6CBD45122AC696063EA7CD9E35E7469708A.1
2009-10-11 22:05:29 ----D---- C:\Program Files\Dofus 2 Online
2009-10-11 22:05:24 ----D---- C:\Program Files\Fichiers communs\Adobe AIR
2009-10-09 19:33:51 ----D---- C:\Program Files\iTALC
2009-10-09 19:32:26 ----D---- C:\Documents and Settings\nathan\Application Data\iTALC
2009-10-07 16:03:27 ----D---- C:\Program Files\Fichiers communs\Merge Modules
2009-10-07 09:09:38 ----HDC---- C:\WINDOWS$NtUninstallKB942288-v3$
2009-10-07 09:09:13 ----D---- C:\Program Files\Microsoft SQL Server
2009-10-07 09:09:08 ----D---- C:\Program Files\Microsoft Silverlight
2009-10-07 09:08:57 ----D---- C:\Program Files\Microsoft Synchronization Services
2009-10-07 09:05:06 ----D---- C:\Program Files\Microsoft.NET
2009-10-07 09:05:05 ----D---- C:\Program Files\Microsoft Visual Studio 9.0
2009-10-07 09:05:05 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-10-07 09:04:36 ----D---- C:\Program Files\Microsoft SDKs
2009-10-07 09:04:22 ----N---- C:\WINDOWS\system32\spmsg2.dll
2009-10-07 09:04:16 ----HDC---- C:\WINDOWS$NtUninstallXPSEPSCLP$
2009-10-06 22:34:06 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-10-06 22:33:52 ----D---- C:\Program Files\Adobe
2009-10-06 15:23:37 ----A---- C:\WINDOWS\w32dasm8.ini
2009-10-05 16:18:08 ----D---- C:\Documents and Settings\nathan\Application Data\skypePM
2009-10-05 16:13:30 ----D---- C:\Documents and Settings\nathan\Application Data\Skype
2009-10-05 16:12:54 ----D---- C:\Program Files\Fichiers communs\Skype
2009-10-05 16:12:50 ----RD---- C:\Program Files\Skype
2009-10-05 16:12:45 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2009-10-02 21:01:42 ----D---- C:\Documents and Settings\nathan\Application Data\Bitdefender
2009-10-02 21:00:03 ----D---- C:\Program Files\Softwin
2009-10-02 21:00:03 ----D---- C:\Documents and Settings\All Users\Application Data\BitDefender
2009-10-02 20:59:38 ----D---- C:\Program Files\Fichiers communs\Softwin
2009-10-01 19:35:00 ----D---- C:\Program Files\Trainer Maker Kit
2009-09-30 13:26:24 ----D---- C:\Program Files\Save Flash
2009-09-29 10:07:13 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-09-29 10:07:13 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-09-29 09:22:38 ----D---- C:\Program Files\Workspace Macro Pro 6.5
2009-09-28 15:41:28 ----A---- C:\Documents and Settings\nathan\Application Data\bdfvconp.ini
2009-09-25 19:21:51 ----A---- C:\WINDOWS\system32\phversion.txt
2009-09-25 07:36:32 ----N---- C:\WINDOWS\system32\ieencode.dll
======List of files/folders modified in the last 1 months======
2009-10-23 14:46:46 ----D---- C:\Documents and Settings\nathan\Application Data\DNA
2009-10-23 14:46:26 ----D---- C:\WINDOWS\system32
2009-10-23 14:21:55 ----D---- C:\WINDOWS\Temp
2009-10-23 13:49:55 ----D---- C:\WINDOWS\system32\drivers
2009-10-23 12:37:30 ----D---- C:\WINDOWS\Prefetch
2009-10-23 12:33:10 ----D---- C:\WINDOWS\system32\CatRoot2
2009-10-23 12:06:46 ----D---- C:\WINDOWS
2009-10-23 12:06:29 ----D---- C:\Program Files\DNA
2009-10-23 11:23:34 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-10-23 09:18:03 ----D---- C:\Program Files\Mozilla Firefox
2009-10-20 19:44:35 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-10-20 17:54:32 ----RD---- C:\Program Files
2009-10-20 13:53:41 ----HD---- C:\WINDOWS\inf
2009-10-20 13:53:38 ----D---- C:\WINDOWS\system32\CatRoot
2009-10-20 13:50:28 ----D---- C:\WINDOWS\system32\config
2009-10-20 13:50:11 ----D---- C:\WINDOWS\system32\wbem
2009-10-20 13:50:10 ----D---- C:\WINDOWS\Registration
2009-10-20 13:49:17 ----D---- C:\WINDOWS\system32\Restore
2009-10-20 10:56:24 ----D---- C:\WINDOWS\Help
2009-10-19 20:22:09 ----D---- C:\Program Files\Fichiers communs
2009-10-18 22:50:18 ----D---- C:\Program Files\Cheat Engine
2009-10-17 08:51:19 ----HD---- C:\WINDOWS$hf_mig$
2009-10-16 21:45:17 ----D---- C:\Program Files\Metin2_France
2009-10-15 10:17:53 ----D---- C:\Documents and Settings\All Users\Application Data\2DBoy
2009-10-15 09:35:10 ----D---- C:\WINDOWS\system
2009-10-14 21:26:44 ----D---- C:\WINDOWS\Debug
2009-10-14 20:54:00 ----D---- C:\WINDOWS\Microsoft.NET
2009-10-14 20:53:55 ----RSD---- C:\WINDOWS\assembly
2009-10-14 20:46:02 ----D---- C:\WINDOWS\system32\fr-fr
2009-10-14 20:46:02 ----D---- C:\Program Files\Internet Explorer
2009-10-14 20:28:56 ----SHD---- C:\WINDOWS\Installer
2009-10-14 20:28:47 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-10-14 20:28:24 ----D---- C:\WINDOWS\WinSxS
2009-10-14 20:20:53 ----D---- C:\WINDOWS\Media
2009-10-11 22:05:28 ----D---- C:\Documents and Settings\nathan\Application Data\Adobe
2009-10-09 20:02:25 ----RSD---- C:\WINDOWS\Fonts
2009-10-07 16:07:15 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-10-07 16:05:00 ----SD---- C:\Documents and Settings\nathan\Application Data\Microsoft
2009-10-07 16:05:00 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-10-07 15:35:51 ----D---- C:\Program Files\Steam
2009-10-07 15:34:05 ----D---- C:\Program Files\001
2009-10-07 08:05:25 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-10-06 22:34:20 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-10-03 09:10:58 ----D---- C:\WINDOWS\system32\DirectX
2009-10-03 08:54:24 ----D---- C:\Program Files\GamersFirst
2009-10-02 20:44:18 ----D---- C:\Program Files\Fichiers communs\BitDefender
2009-10-02 19:54:47 ----A---- C:\WINDOWS\bdagent.INI
2009-10-02 19:28:48 ----D---- C:\Program Files\BitDefender
2009-10-01 19:09:48 ----A---- C:\WINDOWS\TSearch.INI
2009-09-29 15:34:47 ----D---- C:\Program Files\Dofus
2009-09-25 08:46:20 ----D---- C:\Program Files\Fichiers communs\Akamai
2009-09-25 07:36:34 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-09-24 17:43:34 ----D---- C:\Documents and Settings\nathan\Application Data\SlimBrowser
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14720]
R1 oreans32;oreans32; ??\C:\WINDOWS\system32\drivers\oreans32.sys []
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-08-18 4017536]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-07-14 7741664]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-04-06 33536]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-04-06 12928]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d’hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2007-01-09 236544]
S3 ASFWHide;ASFWHide; ??\C:\DOCUME~1\nathan\LOCALS~1\Temp\ASFWHide []
S3 bdfdll;bdfdll; ??\C:\Program Files\Softwin\BitDefender10\bdfdll.sys []
S3 BDFsDrv;BDFsDrv; ??\C:\Program Files\Softwin\BitDefender10\bdfsdrv.sys []
S3 BDRsDrv;BDRsDrv; ??\C:\Program Files\Softwin\BitDefender10\bdrsdrv.sys []
S3 DBKDRVR54;DBKDRVR54; ??\C:\Program Files\Cheat Engine\dbk32.sys []
S3 EagleNT;EagleNT; ??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 Profos;Profos; ??\C:\Program Files\Softwin\BitDefender10\profos.sys []
S3 Trufos;Trufos; ??\C:\Program Files\Softwin\BitDefender10\trufos.sys []
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-09-28 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 bdss;BitDefender Scan Server; C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe [2007-01-19 81920]
R2 icas;iTALC Client; C:\Program Files\iTALC\ica.exe [2008-07-23 844800]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-09-19 153376]
R2 LIVESRV;BitDefender Desktop Update Service; C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe [2008-07-11 278528]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-07-14 168004]
R2 VSSERV;BitDefender Virus Shield; C:\Program Files\Softwin\BitDefender10\vsserv.exe [2007-10-24 462848]
R2 XCOMM;BitDefender Communicator; C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe [2006-11-09 86016]
S3 aspnet_state;Service d’état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Info.txt c’est sa :
info.txt logfile of random’s system information tool 1.06 2009-10-23 11:16:05
======Uninstall list======
–>rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
AC Tool–>C:\PROGRA~1\ACTOOL~1\UNWISE.EXE C:\PROGRA~1\ACTOOL~1\INSTALL.LOG
Adobe AIR–>c:\Program Files\Fichiers communs\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR–>MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX–>C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin–>C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9.1 - Français–>MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Akamai NetSession Interface–>C:\Program Files\Fichiers communs\Akamai\uninstall.exe
Assistant de connexion Windows Live–>MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
AVS Audio Converter version 5.1–>“C:\Program Files\AVS4YOU\AVSAudioConverter\unins000.exe”
AVS Update Manager 1.0–>“C:\Program Files\AVS4YOU\AVSUpdateManager\unins000.exe”
AVS4YOU Software Navigator 1.3–>“C:\Program Files\AVS4YOU\AVSSoftwareNavigator\unins000.exe”
AxCrypt (Désinstaller uniquement)–>“C:\Program Files\Axon Data\AxCrypt\AxCryptU.exe”
BitDefender Free Edition v10–>MsiExec.exe /I{CEFC581D-BEAE-4F75-989E-BD931970D8AD}
Call of Duty® - World at War™ 1.2 Patch–>C:\Program Files\InstallShield Installation Information{2BF0AE92-C3BC-4112-9066-1546342B1FAE}\setup.exe -runfromtemp -l0x0409
CCleaner (remove only)–>“C:\Program Files\CCleaner\uninst.exe”
Cheat Engine 5.4–>“C:\Program Files\Cheat Engine\unins000.exe”
Cheat Engine 5.5–>“C:\Program Files\Cheat Engine\unins001.exe”
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB945282)–>C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB946040)–>C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB946308)–>C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB946344)–>C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB947540)–>C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB947789)–>C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB948127)–>C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Basic 2008 Express SP1 - Français (KB951708)–>C:\WINDOWS\system32\msiexec.exe /package {EAF461BE-79BE-340B-AEBA-82D1230EC024} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Windows XP (KB942288-v3)–>“C:\WINDOWS$NtUninstallKB942288-v3$\spuninst\spuninst.exe”
Correctif pour Windows XP (KB952287)–>“C:\WINDOWS$NtUninstallKB952287$\spuninst\spuninst.exe”
Correctif pour Windows XP (KB961118)–>“C:\WINDOWS$NtUninstallKB961118$\spuninst\spuninst.exe”
Correctif pour Windows XP (KB970653-v3)–>“C:\WINDOWS$NtUninstallKB970653-v3$\spuninst\spuninst.exe”
Dofus 1.28.0–>C:\Program Files\Dofus\uninstall.exe
Dofus Online–>msiexec /qb /x {727DB182-D10F-11B1-7DBC-CD35CA67A5CF}
Dofus Online–>MsiExec.exe /I{727DB182-D10F-11B1-7DBC-CD35CA67A5CF}
Free Sound Recorder v8.1.1–>“C:\Program Files\Free Sound Recorder\unins000.exe”
Galerie de photos Windows Live–>MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
GamersFirst LIVE!–>“C:\Program Files\GamersFirst\LIVE!\uninstall.exe”
HijackThis 2.0.2–>“C:\Documents and Settings\nathan\Local Settings\Temporary Internet Files\Content.IE5\FI9BIFW2\HijackThis.exe” /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)–>C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)–>C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Installation Windows Live–>C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live–>MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
Java™ 6 Update 16–>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216016FF}
Junk Mail filter update–>MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
LAME v3.98.2 for Audacity–>“C:\Program Files\Lame for Audacity\unins000.exe”
Malwarebytes’ Anti-Malware–>“C:\Program Files\Malwarebytes’ Anti-Malware\unins000.exe”
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA–>MsiExec.exe /I{72AD53CC-CCC0-3757-8480-9EE176866A7C}
Microsoft .NET Framework 2.0 Service Pack 2–>MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA–>MsiExec.exe /I{0BD83598-C2EF-3343-847B-7D2E84599128}
Microsoft .NET Framework 3.0 Service Pack 2–>MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 - fra–>MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1–>C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1–>MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard–>MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Silverlight–>MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]–>MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft SQL Server 2008 Management Objects–>MsiExec.exe /I{F5E87B12-3C27-452F-8E78-21D42164FD83}
Microsoft SQL Server Compact 3.5 SP1 - Français–>MsiExec.exe /I{58FD9176-17BF-4D9A-8773-5ECA2947D391}
Microsoft Visual Basic 2008 Express Edition with SP1 - FRA–>MsiExec.exe /X{EAF461BE-79BE-340B-AEBA-82D1230EC024}
Microsoft Visual Basic 2008 Express SP1 - Français–>C:\Program Files\Microsoft Visual Studio 9.0\Microsoft Visual Basic 2008 Express Edition with SP1 - FRA\setup.exe
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053–>MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable–>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148–>MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Express Edition - FRA–>MsiExec.exe /X{15473D70-D791-3B5E-B174-2FD19EC0D017}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729–>MsiExec.exe /X{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}
Microsoft Visual C++ 2008 Express - Français–>C:\Program Files\Microsoft Visual Studio 9.0\Microsoft Visual C++ 2008 Express Edition - FRA\setup.exe
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries–>MsiExec.exe /X{842FAF7C-50EF-4463-9B8F-6222E1384D7D}
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - fra–>MsiExec.exe /X{484AB636-ADBC-3A85-AB82-41873BDD1083}
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32–>MsiExec.exe /X{044F9133-B8D7-4d11-BF39-803FA20F5C8B}
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)–>“C:\WINDOWS$NtUninstallKB952069_WM9$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Lecteur Windows Media (KB954155)–>“C:\WINDOWS$NtUninstallKB954155_WM9$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Lecteur Windows Media (KB968816)–>“C:\WINDOWS$NtUninstallKB968816_WM9$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Lecteur Windows Media (KB973540)–>“C:\WINDOWS$NtUninstallKB973540_WM9$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)–>“C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB974455)–>“C:\WINDOWS\ie8updates\KB974455-IE8\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB923561)–>“C:\WINDOWS$NtUninstallKB923561$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB938464-v2)–>“C:\WINDOWS$NtUninstallKB938464-v2$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB946648)–>“C:\WINDOWS$NtUninstallKB946648$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB950762)–>“C:\WINDOWS$NtUninstallKB950762$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB950974)–>“C:\WINDOWS$NtUninstallKB950974$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951066)–>“C:\WINDOWS$NtUninstallKB951066$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951376-v2)–>“C:\WINDOWS$NtUninstallKB951376-v2$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB951748)–>“C:\WINDOWS$NtUninstallKB951748$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB952004)–>“C:\WINDOWS$NtUninstallKB952004$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB952954)–>“C:\WINDOWS$NtUninstallKB952954$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB954459)–>“C:\WINDOWS$NtUninstallKB954459$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB954600)–>“C:\WINDOWS$NtUninstallKB954600$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB955069)–>“C:\WINDOWS$NtUninstallKB955069$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956572)–>“C:\WINDOWS$NtUninstallKB956572$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956744)–>“C:\WINDOWS$NtUninstallKB956744$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956802)–>“C:\WINDOWS$NtUninstallKB956802$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956803)–>“C:\WINDOWS$NtUninstallKB956803$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB956844)–>“C:\WINDOWS$NtUninstallKB956844$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB957097)–>“C:\WINDOWS$NtUninstallKB957097$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB958644)–>“C:\WINDOWS$NtUninstallKB958644$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB958687)–>“C:\WINDOWS$NtUninstallKB958687$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB958869)–>“C:\WINDOWS$NtUninstallKB958869$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB959426)–>“C:\WINDOWS$NtUninstallKB959426$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB960225)–>“C:\WINDOWS$NtUninstallKB960225$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB960803)–>“C:\WINDOWS$NtUninstallKB960803$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB960859)–>“C:\WINDOWS$NtUninstallKB960859$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB961371-v2)–>“C:\WINDOWS$NtUninstallKB961371-v2$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB961501)–>“C:\WINDOWS$NtUninstallKB961501$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB968537)–>“C:\WINDOWS$NtUninstallKB968537$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB969059)–>“C:\WINDOWS$NtUninstallKB969059$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB970238)–>“C:\WINDOWS$NtUninstallKB970238$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB971486)–>“C:\WINDOWS$NtUninstallKB971486$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB971557)–>“C:\WINDOWS$NtUninstallKB971557$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB971633)–>“C:\WINDOWS$NtUninstallKB971633$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB971657)–>“C:\WINDOWS$NtUninstallKB971657$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB971961)–>“C:\WINDOWS$NtUninstallKB971961$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB972260)–>“C:\WINDOWS$NtUninstallKB972260$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB973346)–>“C:\WINDOWS$NtUninstallKB973346$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB973354)–>“C:\WINDOWS$NtUninstallKB973354$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB973507)–>“C:\WINDOWS$NtUninstallKB973507$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB973525)–>“C:\WINDOWS$NtUninstallKB973525$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB973869)–>“C:\WINDOWS$NtUninstallKB973869$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB974112)–>“C:\WINDOWS$NtUninstallKB974112$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB974455)–>“C:\WINDOWS$NtUninstallKB974455$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB974571)–>“C:\WINDOWS$NtUninstallKB974571$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB975025)–>“C:\WINDOWS$NtUninstallKB975025$\spuninst\spuninst.exe”
Mise à jour de sécurité pour Windows XP (KB975467)–>“C:\WINDOWS$NtUninstallKB975467$\spuninst\spuninst.exe”
Mise à jour pour Windows Internet Explorer 8 (KB973874)–>“C:\WINDOWS\ie8updates\KB973874-IE8\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB898461)–>“C:\WINDOWS$NtUninstallKB898461$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB951978)–>“C:\WINDOWS$NtUninstallKB951978$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB955839)–>“C:\WINDOWS$NtUninstallKB955839$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB961503)–>“C:\WINDOWS$NtUninstallKB961503$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB967715)–>“C:\WINDOWS$NtUninstallKB967715$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB968389)–>“C:\WINDOWS$NtUninstallKB968389$\spuninst\spuninst.exe”
Mise à jour pour Windows XP (KB973815)–>“C:\WINDOWS$NtUninstallKB973815$\spuninst\spuninst.exe”
Module linguistique Microsoft .NET Framework 3.5 SP1- fra–>C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
Mozilla Firefox (3.5.3)–>C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSDN Library pour les éditions Microsoft Visual Studio 2008 Express–>C:\Program Files\Microsoft Visual Studio 9.0\MSDN Library for Microsoft Visual Studio 2008 Express Editions\install.exe
MSN–>C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSVCRT–>MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
NVIDIA Drivers–>C:\WINDOWS\system32\nvuninst.exe UninstallGUI
NVIDIA nView Desktop Manager–>C:\Program Files\NVIDIA Corporation\nView\nViewSetup.exe -uninstall
Outil de téléchargement Windows Live–>MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Outils de conception SQL Server Compact 3.5 SP1 - Français–>MsiExec.exe /X{A5D20C78-D226-4B41-A553-EEEBEB824853}
Pando Media Booster–>C:\Program Files\Pando Networks\Media Booster\uninst.exe
RAM Cheat–>c:\RAM Cheat\RAMCheat.exe uninst
Realtek AC’97 Audio–>RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup “C:\Program Files\InstallShield Installation Information{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe” -l0x40c -removeonly
Satsuki Decoder Pack–>C:\Program Files\Satsuki Decoder Pack\Uninstall.exe
Save Flash 4.1–>C:\Program Files\Save Flash\uninst.exe
Segoe UI–>MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Skype web features–>MsiExec.exe /I{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}
Skype 4.1–>MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
SlimBrowser (remove only)–>“C:\Program Files\SlimBrowser\uninst.exe”
SPORE–>“C:\Program Files\InstallShield Installation Information{9DF0196F-B6B8-4C3A-8790-DE42AA530101}\SPORESetup.exe” -runfromtemp -l0x040c -removeonly
Spybot - Search & Destroy–>“C:\Program Files\Spybot - Search & Destroy\unins000.exe”
SQL Server System CLR Types–>MsiExec.exe /I{342D4AD7-EC4C-4EC8-AEA6-E70F5905A490}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)–>C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
War Rock–>“C:\Program Files\GamersFirst\War Rock\uninstall.exe”
Windows Driver Package - Marvell (yukonwxp) Net (01/09/2007 10.0.4.3)–>C:\PROGRA~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\yk51x86_44C6BA9E20194A926E92AF493672BDA86D86F41A\yk51x86.inf
Windows Internet Explorer 8–>“C:\WINDOWS\ie8\spuninst\spuninst.exe”
Windows Live Call–>MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform–>MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live FolderShare–>MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
Windows Live Mail–>MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}
Windows Live Messenger–>MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
Windows XP Service Pack 3–>“C:\WINDOWS$NtServicePackUninstall$\spuninst\spuninst.exe”
WinRAR archiver–>C:\Program Files\WinRAR\uninstall.exe
XML Paper Specification Shared Components Language Pack 1.0–>“C:\WINDOWS$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe”
=====HijackThis Backups=====
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - platformdl.adobe.com… [2009-10-20]
======Hosts File======
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
======Security center information======
AV: Bitdefender Antivirus
FW: BitDefender Pare-feu (disabled)
======System event log======
Computer Name: PC
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Carte de performance WMI.
Record Number: 132
Source Name: Service Control Manager
Time Written: 20091010080103.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: PC
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l’état : arrêté.
Record Number: 131
Source Name: Service Control Manager
Time Written: 20091010080103.000000+120
Event Type: Informations
User:
Computer Name: PC
Event Code: 4202
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{9E73ABC8-E975-42E1-ACBA-8E02CBB1299B} était déconnectée du réseau,
et la configuration réseau de la carte a été abandonnée. Si la carte
réseau n’était pas déconnectée, ceci peut indiquer un disfonctionnement.
Contactez le fabricant pour des pilotes mis à jour.
Record Number: 130
Source Name: Tcpip
Time Written: 20091010080101.000000+120
Event Type: Informations
User:
Computer Name: PC
Event Code: 7036
Message: Le service Explorateur d’ordinateur est entré dans l’état : arrêté.
Record Number: 129
Source Name: Service Control Manager
Time Written: 20091010080059.000000+120
Event Type: Informations
User:
Computer Name: PC
Event Code: 7036
Message: Le service Service de la passerelle de la couche Application est entré dans l’état : en cours d’exécution.
Record Number: 128
Source Name: Service Control Manager
Time Written: 20091010080059.000000+120
Event Type: Informations
User:
=====Application event log=====
Computer Name: PC
Event Code: 1004
Message: L’utilisateur a accepté le CLUF.
Record Number: 452
Source Name: WgaSetup
Time Written: 20090902070404.000000+120
Event Type: Informations
User:
Computer Name: PC
Event Code: 1002
Message: Starting interactive setup.
Record Number: 451
Source Name: WgaSetup
Time Written: 20090902070404.000000+120
Event Type: Informations
User:
Computer Name: PC
Event Code: 1006
Message: Le CLUF a déjà été accepté.
Record Number: 450
Source Name: WgaSetup
Time Written: 20090902070404.000000+120
Event Type: Informations
User:
Computer Name: PC
Event Code: 1000
Message: Application défaillante nksp.exe, version 0.0.0.0, module défaillant engine.dll, version 0.0.0.0, adresse de défaillance 0x00112045.
Record Number: 449
Source Name: Application Error
Time Written: 20090901224925.000000+120
Event Type: erreur
User:
Computer Name: PC
Event Code: 1000
Message: Application défaillante nksp.exe, version 0.0.0.0, module défaillant ntdll.dll, version 5.1.2600.5755, adresse de défaillance 0x00011689.
Record Number: 448
Source Name: Application Error
Time Written: 20090901194026.000000+120
Event Type: erreur
User:
======Environment variables======
“ComSpec”=%SystemRoot%\system32\cmd.exe
“Path”=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
“windir”=%SystemRoot%
“FP_NO_HOST_CHECK”=NO
“OS”=Windows_NT
“PROCESSOR_ARCHITECTURE”=x86
“PROCESSOR_LEVEL”=15
“PROCESSOR_IDENTIFIER”=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
“PROCESSOR_REVISION”=2f02
“NUMBER_OF_PROCESSORS”=1
“PATHEXT”=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
“TEMP”=%SystemRoot%\TEMP
“TMP”=%SystemRoot%\TEMP
“VS90COMNTOOLS”=C:\Program Files\Microsoft Visual Studio 9.0\Common7\Tools\
-----------------EOF-----------------
Voila