Se connecter / S'enregistrer
Votre question

Affichage intempestifs de pages web

Tags :
  • web
  • Sécurité
Dernière réponse : dans Sécurité et virus
18 Décembre 2009 15:39:31

Bonjour,

Un ptit probleme qui m'agace et à laquelle je ne trouve pas de solution ! Pourriez vous m'aider à arreter l'affichage intempestif de pages web car en effet malgrés que je ne lance pas les explorers internets de fenetre de pages web s'ouvrent toutes seules ! merci par avance de toute l'aide que vous pourriez m'apporter !

Autres pages sur : affichage intempestifs pages web

a c 267 8 Sécurité
18 Décembre 2009 16:59:24

Bonjour,

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    18 Décembre 2009 17:19:42

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by yannick at 2009-12-18 17:16:52
    Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
    System drive C: has 64 GB (45%) free of 144 GB
    Total RAM: 2047 MB (60% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 17:17:17, on 18/12/2009
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v8.00 (8.00.6001.18865)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\WINDOWS\SMINST\scheduler.exe
    C:\Users\yannick\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
    C:\Program Files\PDF Complete\pdfsty.exe
    C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
    C:\Program Files\EoRezo\EoEngine.exe
    C:\Program Files\Hp\HP Software Update\hpwuschd2.exe
    C:\Program Files\Iminent\IMBooster\IMBooster.exe
    C:\Program Files\Analog Devices\Core\smax4pnp.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\WINDOWS\System32\p2phost.exe
    C:\Program Files\Electronic Arts\EADM\Core.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Windows\system32\conime.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\yannick\Downloads\RSIT.exe
    C:\Program Files\trend micro\yannick.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.durable.com/recherche
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://y.lo.st
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.hp.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.durable.com/recherche
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.durable.com/recherche
    R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.durable.com/recherche
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.durable.com/recherche
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: (no name) - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - (no file)
    O1 - Hosts: ::1 localhost
    O2 - BHO: SaveMoney - {0C9929B6-0791-4208-B41A-91C6ABFD9027} - C:\Program Files\Iminent\SaveMoney\tbcore3.dll
    O2 - BHO: Shareaza Web Download Hook - {0EEDB912-C5FA-486F-8334-57288578C627} - C:\Program Files\Shareaza\RazaWebHook32.dll
    O2 - BHO: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\tbinte.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (file missing)
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: CHelperBHO - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - C:\Program Files\Iminent\SearchTheWeb\Iminent.BHO.NavigationError.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Iminent.LinkToContent - {A6E9BAAF-53CD-4575-967B-2AF710A7D21F} - C:\Program Files\Iminent\IMBooster\Iminent.LinkToContent.dll
    O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll
    O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
    O3 - Toolbar: SaveMoney - {76985346-BDA2-4B2E-A727-956D7B8B012E} - C:\Program Files\Iminent\SaveMoney\tbcore3.dll
    O3 - Toolbar: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\tbinte.dll
    O3 - Toolbar: WalterShop - {9ec204df-0e48-4c32-816e-2e928a4fd9c2} - mscoree.dll (file missing)
    O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
    O4 - HKLM\..\Run: [PDF Complete] "C:\Program Files\PDF Complete\pdfsty.exe"
    O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
    O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
    O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\EoRezo\EoEngine.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [IMBooster] C:\Program Files\Iminent\IMBooster\imbooster.exe /warmup
    O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
    O4 - HKLM\..\Run: [Iminent.Notifier] C:\Program Files\Iminent\SearchTheWeb\Iminent.Notifier.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\RunOnce: [ST Recovery Launcher] %WINDIR%\SMINST\launcher.exe
    O4 - HKLM\..\RunOnce: [SoftwareHelper] C:\Users\yannick\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe -runonce
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe -s
    O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
    O4 - HKCU\..\RunOnce: [Iminent.Notifier Install] "C:\Users\yannick\AppData\Local\Temp\NotifierSetup.exe" /s
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Startup: Notification de cadeaux MSN.lnk = C:\Users\yannick\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
    O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
    O8 - Extra context menu item: Download with &Shareaza - res://c:\program files\shareaza\razawebhook32.dll/3000
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O13 - Gopher Prefix:
    O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/Install...
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O20 - Winlogon Notify: DeviceNP - C:\Windows\SYSTEM32\DeviceNP.dll
    O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\Windows\system32\AEADISRV.EXE
    O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
    O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
    O23 - Service: Verrouillage des périphériques / Audition HP ProtectTools (FLCDLOCK) - Hewlett-Packard Ltd - C:\Windows\system32\flcdlock.exe
    O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
    O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
    O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
    O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
    O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe

    --
    End of file - 11636 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\HPCeeScheduleForyannick.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C9929B6-0791-4208-B41A-91C6ABFD9027}]
    SaveMoney Class - C:\Program Files\Iminent\SaveMoney\tbcore3 [2009-01-16 2596864]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0EEDB912-C5FA-486F-8334-57288578C627}]
    Shareaza Web Download Hook - C:\Program Files\Shareaza\RazaWebHook32.dll [2009-10-31 86528]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31c322dc-5878-452e-a2d8-c4aab9973c9a}]
    interdescargas-FR Toolbar - C:\Program Files\interdescargas-FR\tbinte.dll [2009-10-01 2166296]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
    AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
    Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
    Iminent.BHO.NavigationError - C:\Program Files\Iminent\SearchTheWeb\Iminent.BHO.NavigationError.dll [2009-12-01 110832]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6E9BAAF-53CD-4575-967B-2AF710A7D21F}]
    LinkToContent Class - C:\Program Files\Iminent\IMBooster\Iminent.LinkToContent.dll [2009-10-29 106224]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}]
    EoBHO Class - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll [2008-11-18 42792]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
    Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2009-06-04 1144712]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-12-05 41760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
    Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {CCC7A320-B3CA-4199-B1A6-9F516DD69829}
    {76985346-BDA2-4B2E-A727-956D7B8B012E} - SaveMoney - C:\Program Files\Iminent\SaveMoney\tbcore3 [2009-01-16 2596864]
    {31c322dc-5878-452e-a2d8-c4aab9973c9a} - interdescargas-FR Toolbar - C:\Program Files\interdescargas-FR\tbinte.dll [2009-10-01 2166296]
    {9ec204df-0e48-4c32-816e-2e928a4fd9c2} - WalterShop - C:\Windows\system32\mscoree.dll [2009-03-30 278848]
    {D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2009-06-04 1144712]
    {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
    "StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
    "PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2007-05-08 331552]
    "PTHOSTTR"=C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2007-01-09 145184]
    "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-28 1045800]
    "hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-05-11 472632]
    "WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-10 317128]
    "HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2007-06-05 71176]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-12-05 149280]
    "QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-06-11 163840]
    "EoEngine"=C:\Program Files\EoRezo\EoEngine.exe [2009-02-23 472872]
    "HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
    ""= []
    "IMBooster"=C:\Program Files\Iminent\IMBooster\imbooster.exe [2009-10-29 1334512]
    "SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-02-21 1183744]
    "Iminent.Notifier"=C:\Program Files\Iminent\SearchTheWeb\Iminent.Notifier.exe [2009-12-01 504048]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]
    "WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2007-05-23 192512]
    "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "ST Recovery Launcher"=C:\Windows\SMINST\launcher.exe [2007-06-06 44168]
    "SoftwareHelper"=C:\Users\yannick\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe [2008-12-09 368224]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
    "LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2007-04-19 484904]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
    "Shareaza"=C:\Program Files\Shareaza\Shareaza.exe [2009-10-31 5794816]
    "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
    "Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]
    "CollaborationHost"=C:\Windows\system32\p2phost.exe [2008-01-19 192000]
    "EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2009-09-03 3342336]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "Iminent.Notifier Install"=C:\Users\yannick\AppData\Local\Temp\NotifierSetup.exe /s []

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe

    C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
    Notification de cadeaux MSN.lnk - C:\Users\yannick\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
    C:\Windows\system32\DeviceNP.dll [2007-06-08 49152]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "EnableUIADesktopToggle"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "BindDirectlyToPropertySetStorage"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    ======File associations======

    .js - edit - C:\Windows\System32\Notepad.exe %1
    .js - open - C:\Windows\System32\WScript.exe "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-12-18 17:16:52 ----D---- C:\rsit
    2009-12-18 17:16:52 ----D---- C:\Program Files\trend micro
    2009-12-18 15:38:03 ----D---- C:\ProgramData\Avira
    2009-12-18 15:38:03 ----D---- C:\Program Files\Avira
    2009-12-18 14:07:41 ----A---- C:\cleannavi.txt
    2009-12-18 14:07:15 ----D---- C:\Program Files\Navilog1
    2009-12-17 14:41:45 ----A---- C:\Windows\system32\UnifiedToolbarCleanup.bat
    2009-12-17 14:41:14 ----A---- C:\Windows\system32\KiweeChatbarCleanup.bat
    2009-12-16 20:49:43 ----RHD---- C:\Users\yannick\AppData\Roaming\SecuROM
    2009-12-16 19:39:07 ----D---- C:\ProgramData\Electronic Arts
    2009-12-16 19:37:43 ----A---- C:\Windows\system32\vp6vfw.dll
    2009-12-16 19:37:34 ----D---- C:\Program Files\Microsoft WSE
    2009-12-16 19:26:56 ----D---- C:\Program Files\Electronic Arts
    2009-12-16 19:06:02 ----D---- C:\temp
    2009-12-11 15:59:24 ----A---- C:\Windows\system32\winhttp.dll
    2009-12-10 18:03:40 ----A---- C:\Windows\system32\schannel.dll
    2009-12-10 18:03:40 ----A---- C:\Windows\system32\kerberos.dll
    2009-12-10 16:25:54 ----A---- C:\Windows\system32\nshhttp.dll
    2009-12-10 16:25:52 ----A---- C:\Windows\system32\httpapi.dll
    2009-12-10 16:13:52 ----A---- C:\Windows\system32\mshtml.dll
    2009-12-10 16:13:50 ----A---- C:\Windows\system32\ieframe.dll
    2009-12-10 16:13:49 ----A---- C:\Windows\system32\iertutil.dll
    2009-12-10 16:13:48 ----A---- C:\Windows\system32\wininet.dll
    2009-12-10 16:13:48 ----A---- C:\Windows\system32\urlmon.dll
    2009-12-10 16:13:47 ----A---- C:\Windows\system32\occache.dll
    2009-12-10 16:13:47 ----A---- C:\Windows\system32\msfeeds.dll
    2009-12-10 16:13:47 ----A---- C:\Windows\system32\iedkcs32.dll
    2009-12-10 16:13:46 ----A---- C:\Windows\system32\ieui.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\msfeedssync.exe
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\msfeedsbs.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\jsproxy.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\ieUnatt.exe
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\iesysprep.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\iesetup.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\iernonce.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\iepeers.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\ie4uinit.exe
    2009-12-09 21:29:47 ----A---- C:\Windows\system32\rastls.dll
    2009-12-08 22:29:45 ----D---- C:\Program Files\IObit
    2009-12-07 19:32:10 ----D---- C:\ProgramData\SimCity Societies
    2009-12-07 18:55:48 ----D---- C:\Electronic Arts
    2009-12-07 18:55:47 ----A---- C:\Windows\system32\xinput1_3.dll
    2009-12-07 18:55:46 ----A---- C:\Windows\system32\xactengine2_7.dll
    2009-12-07 18:55:46 ----A---- C:\Windows\system32\d3dx9_33.dll
    2009-12-07 18:55:45 ----A---- C:\Windows\system32\xactengine2_6.dll
    2009-12-07 18:55:44 ----A---- C:\Windows\system32\xactengine2_5.dll
    2009-12-07 18:55:41 ----A---- C:\Windows\system32\xactengine2_4.dll
    2009-12-07 18:55:41 ----A---- C:\Windows\system32\x3daudio1_1.dll
    2009-12-07 18:55:41 ----A---- C:\Windows\system32\d3dx9_31.dll
    2009-12-07 18:55:40 ----A---- C:\Windows\system32\xinput1_2.dll
    2009-12-07 18:55:40 ----A---- C:\Windows\system32\xactengine2_3.dll
    2009-12-07 18:55:39 ----A---- C:\Windows\system32\xinput1_1.dll
    2009-12-07 18:55:39 ----A---- C:\Windows\system32\xactengine2_2.dll
    2009-12-07 18:55:38 ----A---- C:\Windows\system32\xactengine2_1.dll
    2009-12-07 18:55:24 ----A---- C:\Windows\system32\xactengine2_0.dll
    2009-12-07 18:55:24 ----A---- C:\Windows\system32\x3daudio1_0.dll
    2009-12-07 18:55:24 ----A---- C:\Windows\system32\d3dx9_30.dll
    2009-12-07 18:55:23 ----A---- C:\Windows\system32\d3dx9_29.dll
    2009-12-07 18:55:22 ----A---- C:\Windows\system32\d3dx9_28.dll
    2009-12-07 18:55:22 ----A---- C:\Windows\system32\d3dx9_27.dll
    2009-12-07 18:55:22 ----A---- C:\Windows\system32\d3dx9_26.dll
    2009-12-07 18:55:22 ----A---- C:\Windows\system32\d3dx9_25.dll
    2009-12-07 18:55:21 ----A---- C:\Windows\system32\d3dx9_24.dll
    2009-12-07 18:41:14 ----D---- C:\7-Zip
    2009-12-07 18:36:57 ----D---- C:\Users\yannick\AppData\Roaming\Roxio
    2009-12-07 00:00:26 ----D---- C:\Users\yannick\AppData\Roaming\InterVideo
    2009-12-06 23:54:45 ----D---- C:\Users\yannick\AppData\Roaming\PeerNetworking
    2009-12-06 15:58:09 ----D---- C:\Windows\SQL9_KB970892_ENU
    2009-12-06 13:56:08 ----D---- C:\Program Files\Microsoft Sync Framework
    2009-12-06 13:53:54 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
    2009-12-06 00:31:52 ----D---- C:\Program Files\SopCast
    2009-12-06 00:31:43 ----D---- C:\Program Files\Ask.com
    2009-12-05 20:36:20 ----A---- C:\Windows\system32\javaws.exe
    2009-12-05 20:36:20 ----A---- C:\Windows\system32\deploytk.dll
    2009-12-05 20:36:18 ----A---- C:\Windows\system32\javaw.exe
    2009-12-05 20:36:18 ----A---- C:\Windows\system32\java.exe
    2009-12-05 19:31:18 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
    2009-12-05 19:07:19 ----D---- C:\Program Files\Common Files\INCA Shared
    2009-12-05 18:53:01 ----D---- C:\Program Files\gPotato.eu
    2009-12-05 17:29:46 ----D---- C:\Users\yannick\AppData\Roaming\skypePM
    2009-12-05 17:27:04 ----D---- C:\Users\yannick\AppData\Roaming\Skype
    2009-12-05 17:26:13 ----D---- C:\Program Files\Common Files\Skype
    2009-12-05 17:26:12 ----RD---- C:\Program Files\Skype
    2009-12-05 17:26:06 ----D---- C:\ProgramData\Skype
    2009-12-04 17:52:58 ----D---- C:\Program Files\aMSN
    2009-12-04 16:29:45 ----D---- C:\Program Files\QuickTime
    2009-12-04 16:29:44 ----D---- C:\ProgramData\Apple Computer
    2009-12-04 16:28:04 ----D---- C:\Program Files\Common Files\Apple
    2009-12-04 16:27:34 ----D---- C:\Program Files\Apple Software Update
    2009-12-04 16:27:33 ----D---- C:\ProgramData\Apple
    2009-12-04 14:15:43 ----D---- C:\Program Files\Windows Live Safety Center
    2009-12-04 12:09:28 ----HD---- C:\ProgramData\{807264C7-1DED-4921-97ED-B6020E1FA982}
    2009-12-04 12:07:49 ----D---- C:\Windows\Minidump
    2009-12-03 20:56:50 ----D---- C:\Program Files\Windows Portable Devices
    2009-12-03 20:08:35 ----A---- C:\Windows\system32\UIRibbonRes.dll
    2009-12-03 20:08:35 ----A---- C:\Windows\system32\UIAnimation.dll
    2009-12-03 20:08:34 ----A---- C:\Windows\system32\UIRibbon.dll
    2009-12-03 20:08:07 ----A---- C:\Windows\system32\WMPhoto.dll
    2009-12-03 20:08:07 ----A---- C:\Windows\system32\cdd.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\XpsRasterService.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\XpsGdiConverter.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\WindowsCodecs.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\dxdiagn.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\d3d10warp.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\d2d1.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\xpsservices.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\XpsPrint.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\OpcServices.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\FntCache.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\dxgi.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\dxdiag.exe
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\DWrite.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d11.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d10level9.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d10core.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d10_1core.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d10_1.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d10.dll
    2009-12-03 20:07:45 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
    2009-12-03 20:07:45 ----A---- C:\Windows\system32\wpdbusenum.dll
    2009-12-03 20:07:45 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
    2009-12-03 20:07:44 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\WPDSp.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\WPDShServiceObj.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\wpdshext.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\wpd_ci.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\PortableDeviceApi.dll
    2009-12-03 20:07:08 ----A---- C:\Windows\system32\oleaccrc.dll
    2009-12-03 20:07:07 ----A---- C:\Windows\system32\UIAutomationCore.dll
    2009-12-03 20:07:07 ----A---- C:\Windows\system32\oleacc.dll
    2009-12-03 19:59:15 ----D---- C:\Program Files\LSI SoftModem
    2009-12-03 13:51:38 ----D---- C:\Windows\system32\eu-ES
    2009-12-03 13:51:38 ----D---- C:\Windows\system32\ca-ES
    2009-12-03 13:51:35 ----D---- C:\Windows\system32\vi-VN
    2009-12-03 13:32:24 ----D---- C:\Windows\system32\EventProviders
    2009-12-03 12:50:19 ----D---- C:\Windows\CheckSur
    2009-12-02 22:47:26 ----A---- C:\Windows\system32\NlsLexicons0007.dll
    2009-12-02 22:47:22 ----A---- C:\Windows\system32\SLsvc.exe
    2009-12-02 22:47:22 ----A---- C:\Windows\system32\SLCExt.dll
    2009-12-02 22:47:20 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
    2009-12-02 22:47:20 ----A---- C:\Windows\system32\DevicePairingWizard.exe
    2009-12-02 22:47:19 ----A---- C:\Windows\system32\NlsLexicons0009.dll
    2009-12-02 22:47:16 ----A---- C:\Windows\system32\mssrch.dll
    2009-12-02 22:47:14 ----A---- C:\Windows\system32\tquery.dll
    2009-12-02 22:47:12 ----A---- C:\Windows\system32\scavenge.dll
    2009-12-02 22:47:12 ----A---- C:\Windows\system32\RMActivate_isv.exe
    2009-12-02 22:47:12 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
    2009-12-02 22:47:11 ----A---- C:\Windows\system32\RMActivate.exe
    2009-12-02 22:47:10 ----A---- C:\Windows\system32\msi.dll
    2009-12-02 22:47:09 ----A---- C:\Windows\system32\imapi2fs.dll
    2009-12-02 22:47:08 ----A---- C:\Windows\system32\WscEapPr.dll
    2009-12-02 22:47:08 ----A---- C:\Windows\system32\wcnwiz2.dll
    2009-12-02 22:47:08 ----A---- C:\Windows\system32\sysmain.dll
    2009-12-02 22:47:08 ----A---- C:\Windows\system32\secproc_isv.dll
    2009-12-02 22:47:06 ----A---- C:\Windows\system32\icardagt.exe
    2009-12-02 22:47:05 ----A---- C:\Windows\system32\EhStorShell.dll
    2009-12-02 22:47:05 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
    2009-12-02 22:47:04 ----A---- C:\Windows\system32\spreview.exe
    2009-12-02 22:47:04 ----A---- C:\Windows\system32\spinstall.exe
    2009-12-02 22:47:04 ----A---- C:\Windows\system32\drmv2clt.dll
    2009-12-02 22:47:02 ----A---- C:\Windows\system32\spwizui.dll
    2009-12-02 22:47:02 ----A---- C:\Windows\system32\shell32.dll
    2009-12-02 22:47:02 ----A---- C:\Windows\system32\secproc.dll
    2009-12-02 22:47:02 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
    2009-12-02 22:47:01 ----A---- C:\Windows\system32\SearchIndexer.exe
    2009-12-02 22:47:01 ----A---- C:\Windows\system32\p2psvc.dll
    2009-12-02 22:47:01 ----A---- C:\Windows\system32\mssvp.dll
    2009-12-02 22:47:00 ----A---- C:\Windows\system32\mssphtb.dll
    2009-12-02 22:47:00 ----A---- C:\Windows\system32\mssph.dll
    2009-12-02 22:47:00 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
    2009-12-02 22:47:00 ----A---- C:\Windows\system32\mscoree.dll
    2009-12-02 22:46:59 ----A---- C:\Windows\system32\sdohlp.dll
    2009-12-02 22:46:59 ----A---- C:\Windows\system32\imapi2.dll
    2009-12-02 22:46:58 ----A---- C:\Windows\system32\sperror.dll
    2009-12-02 22:46:58 ----A---- C:\Windows\system32\IMJP10K.DLL
    2009-12-02 22:46:58 ----A---- C:\Windows\system32\esent.dll
    2009-12-02 22:46:58 ----A---- C:\Windows\system32\DevicePairing.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\wevtsvc.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\SLC.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\RMActivate_ssp.exe
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\PresentationHostProxy.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\msshsq.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\korwbrkr.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\IasMigReader.exe
    2009-12-02 22:46:55 ----A---- C:\Windows\system32\msjet40.dll
    2009-12-02 22:46:55 ----A---- C:\Windows\system32\MPSSVC.dll
    2009-12-02 22:46:54 ----A---- C:\Windows\system32\Query.dll
    2009-12-02 22:46:54 ----A---- C:\Windows\system32\qmgr.dll
    2009-12-02 22:46:53 ----A---- C:\Windows\system32\P2PGraph.dll
    2009-12-02 22:46:53 ----A---- C:\Windows\system32\ole32.dll
    2009-12-02 22:46:53 ----A---- C:\Windows\system32\ntdll.dll
    2009-12-02 22:46:53 ----A---- C:\Windows\system32\msexch40.dll
    2009-12-02 22:46:53 ----A---- C:\Windows\system32\diagperf.dll
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\winload.exe
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\uDWM.dll
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\srchadmin.dll
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\mmc.exe
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\mblctr.exe
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\EncDec.dll
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\dfsr.exe
    2009-12-02 22:46:51 ----A---- C:\Windows\system32\riched20.dll
    2009-12-02 22:46:51 ----A---- C:\Windows\system32\RacEngn.dll
    2009-12-02 22:46:51 ----A---- C:\Windows\system32\IasMigPlugin.dll
    2009-12-02 22:46:51 ----A---- C:\Windows\system32\fdBth.dll
    2009-12-02 22:46:50 ----A---- C:\Windows\system32\SearchProtocolHost.exe
    2009-12-02 22:46:50 ----A---- C:\Windows\system32\SearchFilterHost.exe
    2009-12-02 22:46:50 ----A---- C:\Windows\system32\milcore.dll
    2009-12-02 22:46:50 ----A---- C:\Windows\system32\kernel32.dll
    2009-12-02 22:46:49 ----A---- C:\Windows\system32\spoolss.dll
    2009-12-02 22:46:49 ----A---- C:\Windows\system32\schedsvc.dll
    2009-12-02 22:46:49 ----A---- C:\Windows\system32\NaturalLanguage6.dll
    2009-12-02 22:46:49 ----A---- C:\Windows\system32\EhStorAPI.dll
    2009-12-02 22:46:49 ----A---- C:\Windows\system32\CertEnroll.dll
    2009-12-02 22:46:48 ----A---- C:\Windows\system32\msvcp60.dll
    2009-12-02 22:46:48 ----A---- C:\Windows\system32\msjtes40.dll
    2009-12-02 22:46:48 ----A---- C:\Windows\system32\infocardapi.dll
    2009-12-02 22:46:48 ----A---- C:\Windows\system32\gpedit.dll
    2009-12-02 22:46:48 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
    2009-12-02 22:46:47 ----A---- C:\Windows\system32\WinSAT.exe
    2009-12-02 22:46:46 ----A---- C:\Windows\system32\PresentationSettings.exe
    2009-12-02 22:46:46 ----A---- C:\Windows\system32\mstext40.dll
    2009-12-02 22:46:46 ----A---- C:\Windows\system32\Magnify.exe
    2009-12-02 22:46:46 ----A---- C:\Windows\system32\es.dll
    2009-12-02 22:46:46 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
    2009-12-02 22:46:45 ----A---- C:\Windows\system32\advapi32.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\WebClnt.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\slwmi.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\msxbde40.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\msexcl40.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\comsvcs.dll
    2009-12-02 22:46:43 ----A---- C:\Windows\system32\vssapi.dll
    2009-12-02 22:46:43 ----A---- C:\Windows\system32\NetProjW.dll
    2009-12-02 22:46:43 ----A---- C:\Windows\system32\authui.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\propsys.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\PresentationHost.exe
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\newdev.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\msrepl40.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\iasrecst.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\gpsvc.dll
    2009-12-02 22:46:41 ----A---- C:\Windows\system32\setupapi.dll
    2009-12-02 22:46:41 ----A---- C:\Windows\system32\rpcss.dll
    2009-12-02 22:46:41 ----A---- C:\Windows\system32\mspbde40.dll
    2009-12-02 22:46:41 ----A---- C:\Windows\system32\eudcedit.exe
    2009-12-02 22:46:41 ----A---- C:\Windows\system32\crypt32.dll
    2009-12-02 22:46:41 ----A---- C:\Windows\explorer.exe
    2009-12-02 22:46:40 ----A---- C:\Windows\system32\d3d9.dll
    2009-12-02 22:46:39 ----A---- C:\Windows\system32\msltus40.dll
    2009-12-02 22:46:39 ----A---- C:\Windows\system32\mfc42.dll
    2009-12-02 22:46:39 ----A---- C:\Windows\system32\davclnt.dll
    2009-12-02 22:46:38 ----A---- C:\Windows\system32\shlwapi.dll
    2009-12-02 22:46:38 ----A---- C:\Windows\system32\msrd3x40.dll
    2009-12-02 22:46:38 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
    2009-12-02 22:46:38 ----A---- C:\Windows\system32\EhStorAuthn.dll
    2009-12-02 22:46:37 ----A---- C:\Windows\system32\wevtapi.dll
    2009-12-02 22:46:37 ----A---- C:\Windows\system32\photowiz.dll
    2009-12-02 22:46:37 ----A---- C:\Windows\system32\nlhtml.dll
    2009-12-02 22:46:37 ----A---- C:\Windows\system32\msdtctm.dll
    2009-12-02 22:46:37 ----A---- C:\Windows\system32\browseui.dll
    2009-12-02 22:46:36 ----A---- C:\Windows\system32\user32.dll
    2009-12-02 22:46:36 ----A---- C:\Windows\system32\samsrv.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\win32spl.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\WcnNetsh.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\SLCommDlg.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\quartz.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\oleaut32.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\ci.dll
    2009-12-02 22:46:34 ----A---- C:\Windows\system32\netshell.dll
    2009-12-02 22:46:34 ----A---- C:\Windows\system32\IKEEXT.DLL
    2009-12-02 22:46:34 ----A---- C:\Windows\system32\compcln.exe
    2009-12-02 22:46:34 ----A---- C:\Windows\system32\apds.dll
    2009-12-02 22:46:32 ----A---- C:\Windows\system32\mswstr10.dll
    2009-12-02 22:46:32 ----A---- C:\Windows\system32\audiosrv.dll
    2009-12-02 22:46:31 ----A---- C:\Windows\system32\xmlfilter.dll
    2009-12-02 22:46:31 ----A---- C:\Windows\system32\msctf.dll
    2009-12-02 22:46:31 ----A---- C:\Windows\system32\emdmgmt.dll
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\VSSVC.exe
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\QAGENTRT.DLL
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\msvcrt.dll
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\mfc42u.dll
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\iphlpsvc.dll
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\gdi32.dll
    2009-12-02 22:46:29 ----A---- C:\Windows\system32\sqlsrv32.dll
    2009-12-02 22:46:29 ----A---- C:\Windows\system32\SLUI.exe
    2009-12-02 22:46:29 ----A---- C:\Windows\system32\odbc32.dll
    2009-12-02 22:46:29 ----A---- C:\Windows\system32\msrd2x40.dll
    2009-12-02 22:46:29 ----A---- C:\Windows\system32\eapphost.dll
    2009-12-02 22:46:28 ----A---- C:\Windows\system32\winresume.exe
    2009-12-02 22:46:28 ----A---- C:\Windows\system32\shdocvw.dll
    2009-12-02 22:46:28 ----A---- C:\Windows\system32\propdefs.dll
    2009-12-02 22:46:27 ----A---- C:\Windows\system32\WsmSvc.dll
    2009-12-02 22:46:27 ----A---- C:\Windows\system32\wevtutil.exe
    2009-12-02 22:46:27 ----A---- C:\Windows\system32\swprv.dll
    2009-12-02 22:46:27 ----A---- C:\Windows\system32\mssitlb.dll
    2009-12-02 22:46:27 ----A---- C:\Windows\system32\dbgeng.dll
    2009-12-02 22:46:26 ----A---- C:\Windows\system32\usp10.dll
    2009-12-02 22:46:26 ----A---- C:\Windows\system32\mmcndmgr.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\vds.exe
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\netlogon.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\msscb.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\msctfp.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\fdBthProxy.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\drvinst.exe
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\devmgr.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\DevicePairingProxy.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\BFE.DLL
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\adsldpc.dll
    2009-12-02 22:46:24 ----A---- C:\Windows\system32\WMVSDECD.DLL
    2009-12-02 22:46:24 ----A---- C:\Windows\system32\Wldap32.dll
    2009-12-02 22:46:24 ----A---- C:\Windows\system32\wcnwiz.dll
    2009-12-02 22:46:24 ----A---- C:\Windows\system32\evr.dll
    2009-12-02 22:46:23 ----A---- C:\Windows\system32\wercon.exe
    2009-12-02 22:46:23 ----A---- C:\Windows\system32\services.exe
    2009-12-02 22:46:23 ----A---- C:\Windows\system32\mimefilt.dll
    2009-12-02 22:46:23 ----A---- C:\Windows\system32\comdlg32.dll
    2009-12-02 22:46:23 ----A---- C:\Windows\system32\adtschema.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\wcncsvc.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\umpnpmgr.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\taskeng.exe
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\rtffilt.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\reg.exe
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\mswdat10.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\msjter40.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\msdtcprx.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\msdrm.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\ipsmsnap.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\dnsapi.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\certutil.exe
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\certcli.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\WMNetMgr.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\w32time.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\TsWpfWrp.exe
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\rsaenh.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\msshooks.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\msscntrs.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\msihnd.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\MMDevAPI.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\IPSECSVC.DLL
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\bthserv.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\bcrypt.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\wmicmiplugin.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\profsvc.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\netapi32.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\mtxclu.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\msstrc.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\mscories.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\inetpp.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\inetcomm.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\hidserv.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\fundisc.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\dhcpcsvc6.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\dfshim.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\cryptsvc.dll
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\wdc.dll
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\termsrv.dll
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\shsvcs.dll
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\msiexec.exe
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\imapi.dll
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\chsbrkr.dll
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\spoolsv.exe
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\rasmans.dll
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\pnidui.dll
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\icardres.dll
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\iassdo.dll
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\autofmt.exe
    2009-12-02 22:46:17 ----A---- C:\Windows\system32\wersvc.dll
    2009-12-02 22:46:17 ----A---- C:\Windows\system32\slmgr.vbs
    2009-12-02 22:46:17 ----A---- C:\Windows\system32\scrrun.dll
    2009-12-02 22:46:17 ----A---- C:\Windows\system32\PSHED.DLL
    2009-12-02 22:46:16 ----A---- C:\Windows\system32\pdh.dll
    2009-12-02 22:46:16 ----A---- C:\Windows\system32\dhcpcsvc.dll
    2009-12-02 22:46:15 ----A---- C:\Windows\system32\wmpmde.dll
    2009-12-02 22:46:15 ----A---- C:\Windows\system32\pidgenx.dll
    2009-12-02 22:46:15 ----A---- C:\Windows\system32\CertEnrollUI.dll
    2009-12-02 22:46:15 ----A---- C:\Windows\system32\azroles.dll
    2009-12-02 22:46:14 ----A---- C:\Windows\system32\winlogon.exe
    2009-12-02 22:46:14 ----A---- C:\Windows\system32\SyncCenter.dll
    2009-12-02 22:46:13 ----A---- C:\Windows\system32\SLUINotify.dll
    2009-12-02 22:46:13 ----A---- C:\Windows\system32\msjetoledb40.dll
    2009-12-02 22:46:13 ----A---- C:\Windows\system32\comuid.dll
    2009-12-02 22:46:13 ----A---- C:\Windows\system32\certmgr.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\wisptis.exe
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\untfs.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\taskcomp.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\spp.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\sethc.exe
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\scrobj.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\rtutils.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\ncrypt.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\kd1394.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\iassam.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\dwm.exe
    2009-12-02 22:46:11 ----A---- C:\Windows\system32\winsrv.dll
    2009-12-02 22:46:11 ----A---- C:\Windows\system32\printui.dll
    2009-12-02 22:46:11 ----A---- C:\Windows\system32\iasnap.dll
    2009-12-02 22:46:11 ----A---- C:\Windows\system32\autoconv.exe
    2009-12-02 22:46:11 ----A---- C:\Windows\system32\autochk.exe
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\wow32.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\userenv.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\spcmsg.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\osk.exe
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\onex.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\mswsock.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\kdusb.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\kdcom.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\cscript.exe
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\basecsp.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\audiodg.exe
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\WinSCard.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\winmm.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\WerFaultSecure.exe
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\RelMon.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\rdpencom.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\offfilt.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\msftedit.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\dnsrslvr.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\wsepno.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\WerFault.exe
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\Utilman.exe
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\stobject.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\SndVol.exe
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\secproc_ssp.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\prnntfy.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\msnetobj.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\mscms.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\mfplat.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\mcmde.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\diskraid.exe
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\apphelp.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\adsmsext.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\wscript.exe
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\wscntfy.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\wiaservc.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\ulib.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\sysclass.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\rastapi.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\pnpsetup.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\odbccp32.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\ipsecsnp.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\IPHLPAPI.DLL
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\iasdatastore.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\fdProxy.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\dsound.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\cryptui.dll
    2009-12-02 22:46:06 ----A---- C:\Windows\system32\wlangpui.dll
    2009-12-02 22:46:06 ----A---- C:\Windows\system32\diskpart.exe
    2009-12-02 22:46:06 ----A---- C:\Windows\system32\brcpl.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\wusa.exe
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\wscsvc.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\WMVENCOD.DLL
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\vdsdyn.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\regsvc.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\rasapi32.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\ntprint.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\mscorier.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\logman.exe
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\iashlpr.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\gpapi.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\zipfldr.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\wshext.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\wpccpl.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\rasdlg.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\netcenter.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\iasrad.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\findstr.exe
    2009-12-02 22:46:03 ----A---- C:\Windows\system32\wsnmp32.dll
    2009-12-02 22:46:03 ----A---- C:\Windows\system32\wer.dll
    2009-12-02 22:46:03 ----A---- C:\Windows\system32\themecpl.dll
    2009-12-02 22:46:03 ----A---- C:\Windows\system32\iassvcs.dll
    2009-12-02 22:46:02 ----A---- C:\Windows\system32\uxsms.dll
    2009-12-02 22:46:02 ----A---- C:\Windows\system32\srvsvc.dll
    2009-12-02 22:46:02 ----A---- C:\Windows\system32\mssprxy.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\tsbyuv.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\slcc.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\scansetting.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\powrprof.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\ntmarta.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\msutb.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\mstsc.exe
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\mstlsapi.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\iasads.dll
    2009-12-02 22:46:00 ----A---- C:\Windows\system32\powercpl.dll
    2009-12-02 22:46:00 ----A---- C:\Windows\system32\PerfCenterCPL.dll
    2009-12-02 22:46:00 ----A---- C:\Windows\system32\networkmap.dll
    2009-12-02 22:46:00 ----A---- C:\Windows\system32\iasacct.dll
    2009-12-02 22:46:00 ----A---- C:\Windows\system32\authz.dll
    2009-12-02 22:45:59 ----A---- C:\Windows\system32\sud.dll
    2009-12-02 22:45:59 ----A---- C:\Windows\system32\newdev.exe
    2009-12-02 22:45:59 ----A---- C:\Windows\system32\dot3svc.dll
    2009-12-02 22:45:59 ----A---- C:\Windows\system32\connect.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\usercpl.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\themeui.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\systemcpl.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\samlib.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\qdvd.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\pcaui.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\mmci.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\autoplay.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\accessibilitycpl.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\wscisvif.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\wpcao.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\wlanpref.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\vdsutil.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\tapisrv.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\sdclt.exe
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\scksp.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\scesrv.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\rpchttp.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\rekeywiz.exe
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\regapi.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\psisdecd.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\oleprn.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\msinfo32.exe
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\mpr.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\imm32.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\iaspolcy.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\feclient.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\Faultrep.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\dot3msm.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\DeviceEject.exe
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\AudioSes.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\whealogr.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\TSTheme.exe
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\tcpmon.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\tcpipcfg.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\spwinsat.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\scecli.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\rasplap.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\rasgcw.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\qedit.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\PnPUnattend.exe
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\pnpui.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\perfdisk.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\ncryptui.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\hdwwiz.exe
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\FWPUCLNT.DLL
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\fdWSD.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\dpapimig.exe
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\cmmon32.exe
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\certreq.exe
    2009-12-02 22:45:55 ----A---- C:\Windows\system32\srcore.dll
    2009-12-02 22:45:55 ----A---- C:\Windows\system32\SCardSvr.dll
    2009-12-02 22:45:55 ----A---- C:\Windows\system32\conime.exe
    2009-12-02 22:45:55 ----A---- C:\Windows\system32\cmdial32.dll
    2009-12-02 22:45:54 ----A---- C:\Windows\system32\SnippingTool.exe
    2009-12-02 22:45:54 ----A---- C:\Windows\system32\raschap.dll
    2009-12-02 22:45:54 ----A---- C:\Windows\system32\MSVidCtl.dll
    2009-12-02 22:45:54 ----A---- C:\Windows\system32\fontext.dll
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\WMVXENCD.DLL
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\wlanui.dll
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\wiaaut.dll
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\shwebsvc.dll
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\rasppp.dll
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\PnPutil.exe
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\dsprop.dll
    2009-12-02 22:45:52 ----A---- C:\Windows\system32\shsetup.dll
    2009-12-02 22:45:52 ----A---- C:\Windows\system32\rasmontr.dll
    2009-12-02 22:45:52 ----A---- C:\Windows\system32\oobefldr.dll
    2009-12-02 22:45:52 ----A---- C:\Windows\system32\modemui.dll
    2009-12-02 22:45:52 ----A---- C:\Windows\system32\dimsroam.dll
    2009-12-02 22:45:51 ----A---- C:\Windows\system32\wmdrmsdk.dll
    2009-12-02 22:45:51 ----A---- C:\Windows\system32\mscandui.dll
    2009-12-02 22:45:51 ----A---- C:\Windows\system32\dataclen.dll
    2009-12-02 22:45:51 ----A---- C:\Windows\system32\chtbrkr.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\WSDMon.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\wmpeffects.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\wlgpclnt.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\smss.exe
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\rdpwsx.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\netplwiz.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\credui.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\certprop.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\blackbox.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\wscapi.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\wpcsvc.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\thawbrkr.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\softkbd.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\sendmail.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\networkexplorer.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\msscp.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\msimtf.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\logagent.exe
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\InkEd.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\ifmon.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\gpresult.exe
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\cipher.exe
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\version.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\puiapi.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\olepro32.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\msctfui.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\mprapi.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\input.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\ExplorerFrame.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\drmmgrtn.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\dmsynth.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\wshbth.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\wsdchngr.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\Storprop.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\SMBHelperClass.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\SLLUA.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\rasdial.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\rasdiag.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\msjint40.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\msisip.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\MsCtfMonitor.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\l2nacp.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\ipconfig.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\ftp.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\fdWCN.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\fdSSDP.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\fc.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\eappcfg.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\eapp3hst.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\dot3cfg.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\dmusic.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\cscdll.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\cscapi.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\bthudtask.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\bthci.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\tscupgrd.exe
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\slcinst.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\ocsetup.exe
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\nslookup.exe
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\networkitemfactory.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\mmcico.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\hbaapi.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\FwRemoteSvr.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\fdeploy.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\eappgnui.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\PNPXAssoc.dll
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\NcdProp.dll
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\iscsilog.dll
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\gpupdate.exe
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\csrstub.exe
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\cbsra.exe
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\bitsigd.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\winrnr.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\vdmdbg.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\slwga.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\odbcconf.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\midimap.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\inetppui.dll
    2009-12-02 22:45:42 ----A---- C:\Windows\system32\msimsg.dll
    2009-12-02 22:45:42 ----A---- C:\Windows\system32\f3ahvoas.dll
    2009-12-02 22:45:23 ----A---- C:\Windows\system32\SmiEngine.dll
    2009-12-02 22:45:15 ----A---- C:\Windows\system32\wdscore.dll
    2009-12-02 22:45:15 ----A---- C:\Windows\system32\PkgMgr.exe
    2009-12-02 22:45:00 ----A---- C:\Windows\system32\drvstore.dll
    2009-12-02 22:27:19 ----A---- C:\Windows\system32\jscript.dll
    2009-12-02 17:28:00 ----D---- C:\ProgramData\NOS
    2009-12-02 17:28:00 ----D---- C:\Program Files\NOS
    2009-12-02 14:35:15 ----D---- C:\Program Files\PerfLogs
    2009-12-02 13:41:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2009-12-02 13:23:10 ----A---- C:\Windows\system32\mshtmled.dll
    2009-12-02 13:23:10 ----A---- C:\Windows\system32\icardie.dll
    2009-12-02 13:23:09 ----A---- C:\Windows\system32\msls31.dll
    2009-12-02 13:23:09 ----A---- C:\Windows\system32\mshtmler.dll
    2009-12-02 13:23:09 ----A---- C:\Windows\system32\corpol.dll
    2009-12-02 13:23:09 ----A---- C:\Windows\system32\admparse.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\licmgr10.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\inseng.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\imgutil.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\ieakeng.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\dxtrans.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\dxtmsft.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\WinFXDocObj.exe
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\wextract.exe
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\webcheck.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\pngfilt.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\mstime.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\msrating.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\ieakui.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\ieaksie.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\advpack.dll
    2009-12-02 13:23:06 ----A---- C:\Windows\system32\vbscript.dll
    2009-12-02 13:23:06 ----A---- C:\Windows\system32\ieapfltr.dll
    2009-12-02 13:23:05 ----A---- C:\Windows\system32\url.dll
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\SetDepNx.exe
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\PDMSetup.exe
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\mshta.exe
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\iexpress.exe
    2009-12-02 12:05:25 ----A---- C:\Windows\system32\imagesp1.dll
    2009-12-02 12:05:16 ----A---- C:\Windows\system32\sstpsvc.dll
    2009-12-02 12:05:13 ----A---- C:\Windows\system32\winrscmd.dll
    2009-12-02 12:04:50 ----A---- C:\Windows\system32\xpssvcs.dll
    2009-12-02 12:04:41 ----A---- C:\Windows\system32\spwizimg.dll
    2009-12-02 12:04:40 ----A---- C:\Windows\system32\lpremove.exe
    2009-12-02 12:04:40 ----A---- C:\Windows\bfsvc.exe
    2009-12-02 12:04:35 ----A---- C:\Windows\system32\recdisc.exe
    2009-12-02 12:04:33 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
    2009-12-02 12:04:29 ----A---- C:\Windows\system32\msvbvm60.dll
    2009-12-02 12:04:17 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
    2009-12-02 12:04:16 ----A---- C:\Windows\system32\xolehlp.dll
    2009-12-02 12:04:13 ----A---- C:\Windows\system32\SSShim.dll
    2009-12-02 12:04:11 ----A---- C:\Windows
    Contenus similaires
    a c 267 8 Sécurité
    18 Décembre 2009 17:28:51

  • Désinstalle eoEngine.

  • Désactive l'UAC le temps de la désinfection.

  • Télécharge Ad-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

    /!\ Déconnecte-toi et ferme toutes applications en cours /!\

  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
    (Sous Vista, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
  • Choisis la langue F pour français.
  • Au menu principal, choisis l'option L.

    /!\ Laisse travailler l'outil /!\

  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).

    (CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

    Note : "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Kaspersky, etc.) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
    18 Décembre 2009 17:57:13

    .
    ======= RAPPORT D'AD-REMOVER 1.1.4.6_F | UNIQUEMENT XP/VISTA/7 =======
    .
    Mit à jour par C_XX le 17.12.2009 à 20:37
    Contact: AdRemover.contact@gmail.com
    Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
    .
    Lancé à: 17:44:44, 18/12/2009 | Mode Normal | Option: CLEAN
    Exécuté de: C:\Program Files\Ad-Remover\
    Système d'exploitation: Microsoft® Windows Vista™ Home Premium Service Pack 2 v6.0.6002
    Nom du PC: PC-DE-YANNICK | Utilisateur actuel: yannick
    .
    ============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
    .

    C:\Users\yannick\AppData\Roaming\Macromedia\Flash Player\#Security\FlashPlayerTrust\UnifiedToolbar.cfg
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\extensions\{346de098-61f9-4b42-89da-6dfba7091bb6}
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\extensions\toolbar@ask.com
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\searchplugins\askcom.xml
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\searchplugins\sweetim.xml
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\SweetIMToolbarData
    C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
    C:\Windows\Installer\{E1B94435-241E-4519-B1C3-C4DD9EB352A2}
    C:\Program Files\Mozilla FireFox\Components\AskHPRFF.js
    C:\Program Files\Mozilla FireFox\extensions\linkcontent@iminent
    C:\Program Files\Mozilla FireFox\searchplugins\SearchTheWeb.xml
    C:\Windows\System32\Macromed\Flash\FlashPlayerTrust\UnifiedToolbar.cfg
    C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar
    C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\IMBooster
    C:\Program Files\Ask.com
    C:\Program Files\EoRezo
    C:\Program Files\Iminent - ... ERREUR SUPPRESSION !!
    C:\Users\yannick\AppData\Roaming\EoRezo
    C:\Users\yannick\AppData\LocalLow\AGI
    C:\Users\yannick\AppData\LocalLow\AskToolbar
    C:\Users\yannick\AppData\LocalLow\Kiwee Toolbar
    C:\ProgramData\Iminent
    C:\Windows\Installer\21512.msi
    C:\Windows\Installer\b3c332.msi
    C:\Users\yannick\AppData\Local\aaoibwid.bat

    (!) -- Fichiers temporaires supprimés.

    .
    HKCU\software\AGI
    HKCU\software\appdatalow\AskBarDis
    HKCU\software\appdatalow\AskHomepage
    HKCU\software\appdatalow\software\AskToolbar
    HKCU\software\Ask.com
    HKCU\software\EoRezo
    HKCU\software\Iminent
    HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\Registry\User\S-1-5-21-4279542743-161633257-314541366-1006\Software\Sweetim
    HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
    HKCU\software\microsoft\internet explorer\searchscopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
    HKCU\software\microsoft\internet explorer\searchscopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
    HKCU\software\microsoft\internet explorer\searchscopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
    HKCU\software\microsoft\internet explorer\searchscopes\{EEE6C360-6118-11DC-9C72-001320C79847}
    HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}
    HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847}
    HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
    HKCU\software\SweetIM
    HKLM\software\AGI
    HKLM\Software\Classes\AppID\{362A53B2-2913-4F8A-82F5-7E0A23FDC6F9}
    HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
    HKLM\software\classes\appid\EoRezoBHO.DLL
    HKLM\software\classes\appid\GenericAskToolbar.DLL
    HKLM\Software\Classes\CLSID\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}
    HKLM\Software\Classes\CLSID\{696E3174-4F6C-4777-7834-654C4A705677}
    HKLM\Software\Classes\CLSID\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
    HKLM\Software\Classes\CLSID\{A6E9BAAF-53CD-4575-967B-2AF710A7D21F}
    HKLM\Software\Classes\CLSID\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
    HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
    HKLM\Software\Classes\CLSID\{E03BAFDC-EB9D-4C35-A7A2-AB6C62FF0A68}
    HKLM\Software\Classes\CLSID\{E6375F37-E4D1-4F51-B651-4658C27AC5BF}
    HKLM\software\classes\EoRezoBHO.EoBHO
    HKLM\software\classes\EoRezoBHO.EoBHO.1
    HKLM\software\classes\GenericAskToolbar.ToolbarWnd
    HKLM\software\classes\GenericAskToolbar.ToolbarWnd.1
    HKLM\software\classes\IminentBHONavigationError.CHelperBHO
    HKLM\software\classes\IminentBHONavigationError.CHelperBHO.1
    HKLM\software\classes\IminentLinkToContent.LinkToContent
    HKLM\software\classes\IminentLinkToContent.LinkToContent.1
    HKLM\software\classes\installer\Products\53449B1EE14291541B3C4CDDE93B252A
    HKLM\software\classes\installer\Products\A28B4D68DEBAA244EB686953B7074FEF
    HKLM\software\classes\installer\Products\C73660D04266C3348A703CD454AD1B48
    HKLM\Software\Classes\Interface\{0CA97EEE-C8C4-4B10-A332-10AF1FBEB534}
    HKLM\Software\Classes\Interface\{12FB9C3D-0875-4CAA-B3B1-9DCCCE749DE5}
    HKLM\Software\Classes\Interface\{3E16A203-C0AA-4D44-ACC5-38A70A8C76DA}
    HKLM\Software\Classes\Interface\{819DB72D-1C28-4387-9778-E2FF3DC86F74}
    HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
    HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
    HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
    HKLM\Software\Classes\TypeLib\{2C6674DB-EFB5-464A-A715-3E770B9C8A94}
    HKLM\Software\Classes\TypeLib\{587D1093-12E0-4B0E-9426-AF9DC5ABB77D}
    HKLM\Software\Classes\TypeLib\{77860007-19AE-4C29-B26D-AEA48F3A05C5}
    HKLM\Software\Classes\TypeLib\{B6ACB3F1-6A83-432C-B854-3E1056F87F4E}
    HKLM\Software\Classes\TypeLib\{C7403C30-3644-43D8-A82F-4BD84B9682D9}
    HKLM\software\classes\URLSearchHook.ToolbarURLSearchHook
    HKLM\software\classes\URLSearchHook.ToolbarURLSearchHook.1
    HKLM\software\EoRezo
    HKLM\software\iAvatars.com
    HKLM\software\Iminent
    HKLM\software\Loader
    HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
    HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
    HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440}
    HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6E9BAAF-53CD-4575-967B-2AF710A7D21F}
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Products\53449B1EE14291541B3C4CDDE93B252A
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Products\C73660D04266C3348A703CD454AD1B48
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\IMBooster
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Iminent.Notifier
    HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\SoftwareHelper
    HKLM\software\microsoft\windows\currentversion\uninstall\{0D06637C-6624-433C-A807-C34D45DAB184}
    HKLM\software\microsoft\windows\currentversion\uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
    HKLM\software\microsoft\windows\currentversion\uninstall\{E1B94435-241E-4519-B1C3-C4DD9EB352A2}
    HKLM\software\microsoft\windows\currentversion\uninstall\eoEngine_is1
    HKLM\software\microsoft\windows\currentversion\uninstall\IMBooster
    HKLM\software\microsoft\windows\currentversion\uninstall\SearchTheWeb
    HKLM\software\microsoft\windows\currentversion\uninstall\SoftwareUpdate_is1
    HKLM\software\SweetIM
    .
    ============== Scan additionnel ==============
    .
    .
    * Mozilla FireFox Version 3.5.5 [fr] *
    .
    Nom du profil: 8ucg06gb.default (yannick)
    .
    (yannick, prefs.js) Browser.download.lastDir, C:\Users\yannick\Downloads
    (yannick, prefs.js) Browser.search.defaultenginename, Yahoo! Search
    (yannick, prefs.js) Browser.search.defaulturl, hxxp://www.durable.com/result?cx=partner-pub-7902900401080901%...
    (yannick, prefs.js) Browser.search.selectedEngine, Yahoo! Search
    (yannick, prefs.js) Browser.startup.homepage, hxxp://go.microsoft.com/fwlink/?LinkId=69157
    (yannick, prefs.js) Extensions.enabledItems, toolbar@ask.com:3.4.4.113,linkcontent@iminent:1.0,{a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.6,{346de098-61f9-4b42-89da-6dfba7091bb6}:2.3.0.4,{9AA46F4F-4DC7-4c06-97AF-5035170634FE}:3.2.9,{31c322dc-5878-452e-a2d8-c4aab9973c9a}:2.4.0.4,{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17,{20a82645-c095-46ed-80e3-08825760534b}:1.1,{B13721C7-F507-4982-B2E5-502A71474FED}:3.3.0.3971,{EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.9,toolbar@waltershop.com:1.0,{635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5
    (yannick, prefs.js) Keyword.URL, hxxp://fr.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_fr&p=
    (yannick, prefs.js) Sweetim.toolbar.previous.browser.search.defaultenginename, Yahoo! Search
    (yannick, prefs.js) Sweetim.toolbar.previous.browser.search.defaulturl, hxxp://www.durable.com/result?cx=partner-pub-7902900401080901%...
    (yannick, prefs.js) Sweetim.toolbar.previous.browser.search.selectedEngine, Yahoo! Search
    (yannick, prefs.js) Sweetim.toolbar.previous.browser.startup.homepage, hxxp://www.durable.com/recherche
    (yannick, prefs.js) Sweetim.toolbar.previous.keyword.URL, hxxp://fr.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_fr&p=
    .
    (yannick, prefs.js) EFFACE - Browser.search.defaultengine, Ask.com
    (yannick, prefs.js) EFFACE - Browser.search.defaultthis.engineName, interdescargas-FR Customized Web Search
    (yannick, prefs.js) EFFACE - Browser.search.order.1, Ask.com
    (yannick, prefs.js) EFFACE - Extensions.asktb.cbid, PV
    (yannick, prefs.js) EFFACE - Extensions.asktb.default-channel-url-mask, hxxp://fr.ask.com/web?q={query}&qsrc={qsrc}&o={o}&l={l}
    (yannick, prefs.js) EFFACE - Extensions.asktb.first-launch-url, hxxp://g.msn.com/5mefr_fr/11
    (yannick, prefs.js) EFFACE - Extensions.asktb.fresh-install, false
    (yannick, prefs.js) EFFACE - Extensions.asktb.l, dis
    (yannick, prefs.js) EFFACE - Extensions.asktb.last-config-req, 1261140920637
    (yannick, prefs.js) EFFACE - Extensions.asktb.locale, fr_FR
    (yannick, prefs.js) EFFACE - Extensions.asktb.o, 15000
    (yannick, prefs.js) EFFACE - Extensions.asktb.options-lang, fr
    (yannick, prefs.js) EFFACE - Extensions.asktb.options-locale, UK
    (yannick, prefs.js) EFFACE - Extensions.asktb.overlay-reloaded-using-restart, true
    (yannick, prefs.js) EFFACE - Extensions.asktb.qsrc, 2871
    (yannick, prefs.js) EFFACE - Extensions.asktb.r, 6
    (yannick, prefs.js) EFFACE - Extensions.enabledItems, toolbar@ask.com:3.4.4.113,linkcontent@iminent:1.0,{a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.6,{346de098-61f9-4b42-89da-6dfba7091bb6}:2.3.0.4,{9AA46F4F-4DC7-4c06-97AF-5035170634FE}:3.2.9,{31c322dc-5878-452e-a2d8-c4aab9973c9a}:2.4.0.4,{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17,{20a82645-c095-46ed-80e3-08825760534b}:1.1,{B13721C7-F507-4982-B2E5-502A71474FED}:3.3.0.3971,{EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.9,toolbar@waltershop.com:1.0,{635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.highlight.colors, #FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.logger.ConsoleHandler.MinReportLevel, 7
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.logger.FileHandler.FileName, ff-toolbar.log
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.logger.FileHandler.MaxFileSize, 200000
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.logger.FileHandler.MinReportLevel, 7
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.mode.debug, false
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.previous.browser.search.defaultenginename, Yahoo! Search
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.previous.browser.search.defaulturl, hxxp://www.durable.com/result?cx=partner-pub-7902900401080901%...
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.previous.browser.search.selectedEngine, Yahoo! Search
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.previous.browser.startup.homepage, hxxp://www.durable.com/recherche
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.previous.keyword.URL, hxxp://fr.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_fr&p=
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.search.external, <?xml version=\1.0\?><TOOLBAR><EXTERNAL_SEARCH engine=\hxxp://*google.*\ param=\q=\ /><EXTERNAL_SEARCH engine=\hxxp://search.yahoo.com/*\ param=\p=\ /><EXTERNAL_SEARCH engine=\hxxp://search.sweetim.*\ param=\q=\ /><EXTERNAL_SEARCH engine=\hxxp://*.live.*/*\ param=\q=\ /><EXTERNAL_SEARCH engine=\hxxp://*youtube.com/\ param=\search_query=\ /><EXTERNAL_SEARCH engine=\hxxp://*.ebay.*/search/*\ param=\satitle=\ /><EXTERNAL_SEARCH engine=\hxxp://*.amazon.com/s/*\ param=\field-keywords=\ /></TOOLBAR>
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.search.history.capacity, 10
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.simapp_id, {BD8AB257-0E2C-40B5-B1FB-A18D55B58E10}
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.urls.homepage, hxxp://home.sweetim.com
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.version, 1.0.0.9
    .
    .
    .
    * Internet Explorer Version 8.0.6001.18865 *
    .
    [HKEY_CURRENT_USER\..\Internet Explorer\Main]
    .
    Start Page: hxxp://fr.msn.com/
    Do404Search: 01000000
    Local Page: C:\Windows\system32\blank.htm
    Show_ToolBar: yes
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Search Bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
    SearchAssistant:
    Enable Browser Extensions: yes
    Default_page_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
    .
    Start Page: hxxp://fr.msn.com/
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Delete_Temp_Files_On_Exit: yes
    Local Page: C:\Windows\System32\blank.htm
    Search bar: hxxp://search.msn.com/spbasic.htm
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
    .
    Tabs: res://ieframe.dll/tabswelcome.htm
    .
    ===================================
    .
    17230 Octet(s) - C:\Ad-Report-CLEAN[1].log
    .
    0 Fichier(s) - C:\Users\yannick\AppData\Local\Temp
    0 Fichier(s) - C:\Windows\Temp
    0 Fichier(s) - C:\Windows\Prefetch
    .
    20 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
    1109 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
    .
    Fin à: 17:55:33 | 18/12/2009 - CLEAN[1]
    .
    ============== E.O.F ==============
    .
    a c 267 8 Sécurité
    18 Décembre 2009 18:06:14

  • Désinstalle Ad-Remover.

  • Refais un scan RSIT et poste le rapport log.
    18 Décembre 2009 18:13:49

    .
    ======= RAPPORT D'AD-REMOVER 1.1.4.6_F | UNIQUEMENT XP/VISTA/7 =======
    .
    Mit à jour par C_XX le 17.12.2009 à 20:37
    Contact: AdRemover.contact@gmail.com
    Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
    .
    Lancé à: 17:44:44, 18/12/2009 | Mode Normal | Option: CLEAN
    Exécuté de: C:\Program Files\Ad-Remover\
    Système d'exploitation: Microsoft® Windows Vista™ Home Premium Service Pack 2 v6.0.6002
    Nom du PC: PC-DE-YANNICK | Utilisateur actuel: yannick
    .
    ============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
    .

    C:\Users\yannick\AppData\Roaming\Macromedia\Flash Player\#Security\FlashPlayerTrust\UnifiedToolbar.cfg
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\extensions\{346de098-61f9-4b42-89da-6dfba7091bb6}
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\extensions\toolbar@ask.com
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\searchplugins\askcom.xml
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\searchplugins\sweetim.xml
    C:\Users\yannick\AppData\Roaming\Mozilla\FireFox\Profiles\8ucg06gb.default\SweetIMToolbarData
    C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
    C:\Windows\Installer\{E1B94435-241E-4519-B1C3-C4DD9EB352A2}
    C:\Program Files\Mozilla FireFox\Components\AskHPRFF.js
    C:\Program Files\Mozilla FireFox\extensions\linkcontent@iminent
    C:\Program Files\Mozilla FireFox\searchplugins\SearchTheWeb.xml
    C:\Windows\System32\Macromed\Flash\FlashPlayerTrust\UnifiedToolbar.cfg
    C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar
    C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\IMBooster
    C:\Program Files\Ask.com
    C:\Program Files\EoRezo
    C:\Program Files\Iminent - ... ERREUR SUPPRESSION !!
    C:\Users\yannick\AppData\Roaming\EoRezo
    C:\Users\yannick\AppData\LocalLow\AGI
    C:\Users\yannick\AppData\LocalLow\AskToolbar
    C:\Users\yannick\AppData\LocalLow\Kiwee Toolbar
    C:\ProgramData\Iminent
    C:\Windows\Installer\21512.msi
    C:\Windows\Installer\b3c332.msi
    C:\Users\yannick\AppData\Local\aaoibwid.bat

    (!) -- Fichiers temporaires supprimés.

    .
    HKCU\software\AGI
    HKCU\software\appdatalow\AskBarDis
    HKCU\software\appdatalow\AskHomepage
    HKCU\software\appdatalow\software\AskToolbar
    HKCU\software\Ask.com
    HKCU\software\EoRezo
    HKCU\software\Iminent
    HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\Registry\User\S-1-5-21-4279542743-161633257-314541366-1006\Software\Sweetim
    HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
    HKCU\software\microsoft\internet explorer\searchscopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
    HKCU\software\microsoft\internet explorer\searchscopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
    HKCU\software\microsoft\internet explorer\searchscopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
    HKCU\software\microsoft\internet explorer\searchscopes\{EEE6C360-6118-11DC-9C72-001320C79847}
    HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}
    HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847}
    HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
    HKCU\software\SweetIM
    HKLM\software\AGI
    HKLM\Software\Classes\AppID\{362A53B2-2913-4F8A-82F5-7E0A23FDC6F9}
    HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
    HKLM\software\classes\appid\EoRezoBHO.DLL
    HKLM\software\classes\appid\GenericAskToolbar.DLL
    HKLM\Software\Classes\CLSID\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}
    HKLM\Software\Classes\CLSID\{696E3174-4F6C-4777-7834-654C4A705677}
    HKLM\Software\Classes\CLSID\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
    HKLM\Software\Classes\CLSID\{A6E9BAAF-53CD-4575-967B-2AF710A7D21F}
    HKLM\Software\Classes\CLSID\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
    HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
    HKLM\Software\Classes\CLSID\{E03BAFDC-EB9D-4C35-A7A2-AB6C62FF0A68}
    HKLM\Software\Classes\CLSID\{E6375F37-E4D1-4F51-B651-4658C27AC5BF}
    HKLM\software\classes\EoRezoBHO.EoBHO
    HKLM\software\classes\EoRezoBHO.EoBHO.1
    HKLM\software\classes\GenericAskToolbar.ToolbarWnd
    HKLM\software\classes\GenericAskToolbar.ToolbarWnd.1
    HKLM\software\classes\IminentBHONavigationError.CHelperBHO
    HKLM\software\classes\IminentBHONavigationError.CHelperBHO.1
    HKLM\software\classes\IminentLinkToContent.LinkToContent
    HKLM\software\classes\IminentLinkToContent.LinkToContent.1
    HKLM\software\classes\installer\Products\53449B1EE14291541B3C4CDDE93B252A
    HKLM\software\classes\installer\Products\A28B4D68DEBAA244EB686953B7074FEF
    HKLM\software\classes\installer\Products\C73660D04266C3348A703CD454AD1B48
    HKLM\Software\Classes\Interface\{0CA97EEE-C8C4-4B10-A332-10AF1FBEB534}
    HKLM\Software\Classes\Interface\{12FB9C3D-0875-4CAA-B3B1-9DCCCE749DE5}
    HKLM\Software\Classes\Interface\{3E16A203-C0AA-4D44-ACC5-38A70A8C76DA}
    HKLM\Software\Classes\Interface\{819DB72D-1C28-4387-9778-E2FF3DC86F74}
    HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
    HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
    HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
    HKLM\Software\Classes\TypeLib\{2C6674DB-EFB5-464A-A715-3E770B9C8A94}
    HKLM\Software\Classes\TypeLib\{587D1093-12E0-4B0E-9426-AF9DC5ABB77D}
    HKLM\Software\Classes\TypeLib\{77860007-19AE-4C29-B26D-AEA48F3A05C5}
    HKLM\Software\Classes\TypeLib\{B6ACB3F1-6A83-432C-B854-3E1056F87F4E}
    HKLM\Software\Classes\TypeLib\{C7403C30-3644-43D8-A82F-4BD84B9682D9}
    HKLM\software\classes\URLSearchHook.ToolbarURLSearchHook
    HKLM\software\classes\URLSearchHook.ToolbarURLSearchHook.1
    HKLM\software\EoRezo
    HKLM\software\iAvatars.com
    HKLM\software\Iminent
    HKLM\software\Loader
    HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
    HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
    HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440}
    HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6E9BAAF-53CD-4575-967B-2AF710A7D21F}
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Products\53449B1EE14291541B3C4CDDE93B252A
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
    HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Products\C73660D04266C3348A703CD454AD1B48
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\IMBooster
    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Iminent.Notifier
    HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\SoftwareHelper
    HKLM\software\microsoft\windows\currentversion\uninstall\{0D06637C-6624-433C-A807-C34D45DAB184}
    HKLM\software\microsoft\windows\currentversion\uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
    HKLM\software\microsoft\windows\currentversion\uninstall\{E1B94435-241E-4519-B1C3-C4DD9EB352A2}
    HKLM\software\microsoft\windows\currentversion\uninstall\eoEngine_is1
    HKLM\software\microsoft\windows\currentversion\uninstall\IMBooster
    HKLM\software\microsoft\windows\currentversion\uninstall\SearchTheWeb
    HKLM\software\microsoft\windows\currentversion\uninstall\SoftwareUpdate_is1
    HKLM\software\SweetIM
    .
    ============== Scan additionnel ==============
    .
    .
    * Mozilla FireFox Version 3.5.5 [fr] *
    .
    Nom du profil: 8ucg06gb.default (yannick)
    .
    (yannick, prefs.js) Browser.download.lastDir, C:\Users\yannick\Downloads
    (yannick, prefs.js) Browser.search.defaultenginename, Yahoo! Search
    (yannick, prefs.js) Browser.search.defaulturl, hxxp://www.durable.com/result?cx=partner-pub-7902900401080901%...
    (yannick, prefs.js) Browser.search.selectedEngine, Yahoo! Search
    (yannick, prefs.js) Browser.startup.homepage, hxxp://go.microsoft.com/fwlink/?LinkId=69157
    (yannick, prefs.js) Extensions.enabledItems, toolbar@ask.com:3.4.4.113,linkcontent@iminent:1.0,{a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.6,{346de098-61f9-4b42-89da-6dfba7091bb6}:2.3.0.4,{9AA46F4F-4DC7-4c06-97AF-5035170634FE}:3.2.9,{31c322dc-5878-452e-a2d8-c4aab9973c9a}:2.4.0.4,{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17,{20a82645-c095-46ed-80e3-08825760534b}:1.1,{B13721C7-F507-4982-B2E5-502A71474FED}:3.3.0.3971,{EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.9,toolbar@waltershop.com:1.0,{635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5
    (yannick, prefs.js) Keyword.URL, hxxp://fr.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_fr&p=
    (yannick, prefs.js) Sweetim.toolbar.previous.browser.search.defaultenginename, Yahoo! Search
    (yannick, prefs.js) Sweetim.toolbar.previous.browser.search.defaulturl, hxxp://www.durable.com/result?cx=partner-pub-7902900401080901%...
    (yannick, prefs.js) Sweetim.toolbar.previous.browser.search.selectedEngine, Yahoo! Search
    (yannick, prefs.js) Sweetim.toolbar.previous.browser.startup.homepage, hxxp://www.durable.com/recherche
    (yannick, prefs.js) Sweetim.toolbar.previous.keyword.URL, hxxp://fr.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_fr&p=
    .
    (yannick, prefs.js) EFFACE - Browser.search.defaultengine, Ask.com
    (yannick, prefs.js) EFFACE - Browser.search.defaultthis.engineName, interdescargas-FR Customized Web Search
    (yannick, prefs.js) EFFACE - Browser.search.order.1, Ask.com
    (yannick, prefs.js) EFFACE - Extensions.asktb.cbid, PV
    (yannick, prefs.js) EFFACE - Extensions.asktb.default-channel-url-mask, hxxp://fr.ask.com/web?q={query}&qsrc={qsrc}&o={o}&l={l}
    (yannick, prefs.js) EFFACE - Extensions.asktb.first-launch-url, hxxp://g.msn.com/5mefr_fr/11
    (yannick, prefs.js) EFFACE - Extensions.asktb.fresh-install, false
    (yannick, prefs.js) EFFACE - Extensions.asktb.l, dis
    (yannick, prefs.js) EFFACE - Extensions.asktb.last-config-req, 1261140920637
    (yannick, prefs.js) EFFACE - Extensions.asktb.locale, fr_FR
    (yannick, prefs.js) EFFACE - Extensions.asktb.o, 15000
    (yannick, prefs.js) EFFACE - Extensions.asktb.options-lang, fr
    (yannick, prefs.js) EFFACE - Extensions.asktb.options-locale, UK
    (yannick, prefs.js) EFFACE - Extensions.asktb.overlay-reloaded-using-restart, true
    (yannick, prefs.js) EFFACE - Extensions.asktb.qsrc, 2871
    (yannick, prefs.js) EFFACE - Extensions.asktb.r, 6
    (yannick, prefs.js) EFFACE - Extensions.enabledItems, toolbar@ask.com:3.4.4.113,linkcontent@iminent:1.0,{a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.6,{346de098-61f9-4b42-89da-6dfba7091bb6}:2.3.0.4,{9AA46F4F-4DC7-4c06-97AF-5035170634FE}:3.2.9,{31c322dc-5878-452e-a2d8-c4aab9973c9a}:2.4.0.4,{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17,{20a82645-c095-46ed-80e3-08825760534b}:1.1,{B13721C7-F507-4982-B2E5-502A71474FED}:3.3.0.3971,{EEE6C361-6118-11DC-9C72-001320C79847}:1.0.0.9,toolbar@waltershop.com:1.0,{635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.5
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.highlight.colors, #FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.logger.ConsoleHandler.MinReportLevel, 7
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.logger.FileHandler.FileName, ff-toolbar.log
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.logger.FileHandler.MaxFileSize, 200000
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.logger.FileHandler.MinReportLevel, 7
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.mode.debug, false
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.previous.browser.search.defaultenginename, Yahoo! Search
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.previous.browser.search.defaulturl, hxxp://www.durable.com/result?cx=partner-pub-7902900401080901%...
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.previous.browser.search.selectedEngine, Yahoo! Search
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.previous.browser.startup.homepage, hxxp://www.durable.com/recherche
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.previous.keyword.URL, hxxp://fr.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_fr&p=
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.search.external, <?xml version=\1.0\?><TOOLBAR><EXTERNAL_SEARCH engine=\hxxp://*google.*\ param=\q=\ /><EXTERNAL_SEARCH engine=\hxxp://search.yahoo.com/*\ param=\p=\ /><EXTERNAL_SEARCH engine=\hxxp://search.sweetim.*\ param=\q=\ /><EXTERNAL_SEARCH engine=\hxxp://*.live.*/*\ param=\q=\ /><EXTERNAL_SEARCH engine=\hxxp://*youtube.com/\ param=\search_query=\ /><EXTERNAL_SEARCH engine=\hxxp://*.ebay.*/search/*\ param=\satitle=\ /><EXTERNAL_SEARCH engine=\hxxp://*.amazon.com/s/*\ param=\field-keywords=\ /></TOOLBAR>
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.search.history.capacity, 10
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.simapp_id, {BD8AB257-0E2C-40B5-B1FB-A18D55B58E10}
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.urls.homepage, hxxp://home.sweetim.com
    (yannick, prefs.js) EFFACE - Sweetim.toolbar.version, 1.0.0.9
    .
    .
    .
    * Internet Explorer Version 8.0.6001.18865 *
    .
    [HKEY_CURRENT_USER\..\Internet Explorer\Main]
    .
    Start Page: hxxp://fr.msn.com/
    Do404Search: 01000000
    Local Page: C:\Windows\system32\blank.htm
    Show_ToolBar: yes
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Search Bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
    SearchAssistant:
    Enable Browser Extensions: yes
    Default_page_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
    .
    Start Page: hxxp://fr.msn.com/
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Delete_Temp_Files_On_Exit: yes
    Local Page: C:\Windows\System32\blank.htm
    Search bar: hxxp://search.msn.com/spbasic.htm
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
    .
    Tabs: res://ieframe.dll/tabswelcome.htm
    .
    ===================================
    .
    17230 Octet(s) - C:\Ad-Report-CLEAN[1].log
    .
    0 Fichier(s) - C:\Users\yannick\AppData\Local\Temp
    0 Fichier(s) - C:\Windows\Temp
    0 Fichier(s) - C:\Windows\Prefetch
    .
    20 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
    1109 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
    .
    Fin à: 17:55:33 | 18/12/2009 - CLEAN[1]
    .
    ============== E.O.F ==============
    .
    a c 267 8 Sécurité
    18 Décembre 2009 18:16:19

    Pourquoi m'avoir reposté ce rapport ?
    18 Décembre 2009 18:20:16

    excuse ptite erreur voilà le rapport :

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by yannick at 2009-12-18 18:13:11
    Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
    System drive C: has 64 GB (45%) free of 144 GB
    Total RAM: 2047 MB (57% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 18:13:16, on 18/12/2009
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v8.00 (8.00.6001.18865)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\WINDOWS\SMINST\scheduler.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
    C:\Program Files\PDF Complete\pdfsty.exe
    C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
    C:\Program Files\Hp\HP Software Update\hpwuschd2.exe
    C:\Program Files\Analog Devices\Core\smax4pnp.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
    C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\WINDOWS\System32\p2phost.exe
    C:\Program Files\Electronic Arts\EADM\Core.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Windows\explorer.exe
    C:\Windows\system32\notepad.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Windows\system32\conime.exe
    C:\Users\yannick\Downloads\RSIT.exe
    C:\Program Files\trend micro\yannick.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.durable.com/recherche
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: SaveMoney - {0C9929B6-0791-4208-B41A-91C6ABFD9027} - C:\Program Files\Iminent\SaveMoney\tbcore3.dll (file missing)
    O2 - BHO: Shareaza Web Download Hook - {0EEDB912-C5FA-486F-8334-57288578C627} - C:\Program Files\Shareaza\RazaWebHook32.dll
    O2 - BHO: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\tbinte.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (file missing)
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
    O3 - Toolbar: SaveMoney - {76985346-BDA2-4B2E-A727-956D7B8B012E} - C:\Program Files\Iminent\SaveMoney\tbcore3.dll (file missing)
    O3 - Toolbar: interdescargas-FR Toolbar - {31c322dc-5878-452e-a2d8-c4aab9973c9a} - C:\Program Files\interdescargas-FR\tbinte.dll
    O3 - Toolbar: WalterShop - {9ec204df-0e48-4c32-816e-2e928a4fd9c2} - mscoree.dll (file missing)
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
    O4 - HKLM\..\Run: [PDF Complete] "C:\Program Files\PDF Complete\pdfsty.exe"
    O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
    O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\RunOnce: [ST Recovery Launcher] %WINDIR%\SMINST\launcher.exe
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe -s
    O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
    O4 - HKCU\..\RunOnce: [Iminent.Notifier Install] "C:\Users\yannick\AppData\Local\Temp\NotifierSetup.exe" /s
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Startup: Notification de cadeaux MSN.lnk = C:\Users\yannick\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
    O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
    O8 - Extra context menu item: Download with &Shareaza - res://c:\program files\shareaza\razawebhook32.dll/3000
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O13 - Gopher Prefix:
    O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/Install...
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O20 - Winlogon Notify: DeviceNP - C:\Windows\SYSTEM32\DeviceNP.dll
    O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\Windows\system32\AEADISRV.EXE
    O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
    O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
    O23 - Service: Verrouillage des périphériques / Audition HP ProtectTools (FLCDLOCK) - Hewlett-Packard Ltd - C:\Windows\system32\flcdlock.exe
    O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
    O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
    O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
    O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
    O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe

    --
    End of file - 9853 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\HPCeeScheduleForyannick.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C9929B6-0791-4208-B41A-91C6ABFD9027}]
    SaveMoney Class - C:\Program Files\Iminent\SaveMoney\tbcore3.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0EEDB912-C5FA-486F-8334-57288578C627}]
    Shareaza Web Download Hook - C:\Program Files\Shareaza\RazaWebHook32.dll [2009-10-31 86528]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31c322dc-5878-452e-a2d8-c4aab9973c9a}]
    interdescargas-FR Toolbar - C:\Program Files\interdescargas-FR\tbinte.dll [2009-10-01 2166296]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
    AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
    Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-12-05 41760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
    Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {CCC7A320-B3CA-4199-B1A6-9F516DD69829}
    {76985346-BDA2-4B2E-A727-956D7B8B012E} - SaveMoney - C:\Program Files\Iminent\SaveMoney\tbcore3.dll []
    {31c322dc-5878-452e-a2d8-c4aab9973c9a} - interdescargas-FR Toolbar - C:\Program Files\interdescargas-FR\tbinte.dll [2009-10-01 2166296]
    {9ec204df-0e48-4c32-816e-2e928a4fd9c2} - WalterShop - C:\Windows\system32\mscoree.dll [2009-03-30 278848]
    {21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
    "StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
    "PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2007-05-08 331552]
    "PTHOSTTR"=C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2007-01-09 145184]
    "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-28 1045800]
    "hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-05-11 472632]
    "WAWifiMessage"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe [2007-01-10 317128]
    "HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2007-06-05 71176]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-12-05 149280]
    "QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-06-11 163840]
    "HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
    ""= []
    "SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2007-02-21 1183744]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]
    "WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2007-05-23 192512]
    "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "ST Recovery Launcher"=C:\Windows\SMINST\launcher.exe [2007-06-06 44168]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
    "LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2007-04-19 484904]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
    "Shareaza"=C:\Program Files\Shareaza\Shareaza.exe [2009-10-31 5794816]
    "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
    "Skype"=C:\Program Files\Skype\Phone\Skype.exe [2009-10-09 25623336]
    "CollaborationHost"=C:\Windows\system32\p2phost.exe [2008-01-19 192000]
    "EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2009-09-03 3342336]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "Iminent.Notifier Install"=C:\Users\yannick\AppData\Local\Temp\NotifierSetup.exe /s []

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe

    C:\Users\yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
    Notification de cadeaux MSN.lnk - C:\Users\yannick\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
    C:\Windows\system32\DeviceNP.dll [2007-06-08 49152]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "EnableLUA"=0
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "EnableUIADesktopToggle"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "BindDirectlyToPropertySetStorage"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    ======File associations======

    .js - edit - C:\Windows\System32\Notepad.exe %1
    .js - open - C:\Windows\System32\WScript.exe "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-12-18 17:44:42 ----D---- C:\Program Files\Ad-Remover
    2009-12-18 17:16:52 ----D---- C:\rsit
    2009-12-18 17:16:52 ----D---- C:\Program Files\trend micro
    2009-12-18 15:38:03 ----D---- C:\ProgramData\Avira
    2009-12-18 15:38:03 ----D---- C:\Program Files\Avira
    2009-12-18 14:07:41 ----A---- C:\cleannavi.txt
    2009-12-18 14:07:15 ----D---- C:\Program Files\Navilog1
    2009-12-17 14:41:45 ----A---- C:\Windows\system32\UnifiedToolbarCleanup.bat
    2009-12-17 14:41:14 ----A---- C:\Windows\system32\KiweeChatbarCleanup.bat
    2009-12-16 20:49:43 ----RHD---- C:\Users\yannick\AppData\Roaming\SecuROM
    2009-12-16 19:39:07 ----D---- C:\ProgramData\Electronic Arts
    2009-12-16 19:37:43 ----A---- C:\Windows\system32\vp6vfw.dll
    2009-12-16 19:37:34 ----D---- C:\Program Files\Microsoft WSE
    2009-12-16 19:26:56 ----D---- C:\Program Files\Electronic Arts
    2009-12-16 19:06:02 ----D---- C:\temp
    2009-12-11 15:59:24 ----A---- C:\Windows\system32\winhttp.dll
    2009-12-10 18:03:40 ----A---- C:\Windows\system32\schannel.dll
    2009-12-10 18:03:40 ----A---- C:\Windows\system32\kerberos.dll
    2009-12-10 16:25:54 ----A---- C:\Windows\system32\nshhttp.dll
    2009-12-10 16:25:52 ----A---- C:\Windows\system32\httpapi.dll
    2009-12-10 16:13:52 ----A---- C:\Windows\system32\mshtml.dll
    2009-12-10 16:13:50 ----A---- C:\Windows\system32\ieframe.dll
    2009-12-10 16:13:49 ----A---- C:\Windows\system32\iertutil.dll
    2009-12-10 16:13:48 ----A---- C:\Windows\system32\wininet.dll
    2009-12-10 16:13:48 ----A---- C:\Windows\system32\urlmon.dll
    2009-12-10 16:13:47 ----A---- C:\Windows\system32\occache.dll
    2009-12-10 16:13:47 ----A---- C:\Windows\system32\msfeeds.dll
    2009-12-10 16:13:47 ----A---- C:\Windows\system32\iedkcs32.dll
    2009-12-10 16:13:46 ----A---- C:\Windows\system32\ieui.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\msfeedssync.exe
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\msfeedsbs.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\jsproxy.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\ieUnatt.exe
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\iesysprep.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\iesetup.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\iernonce.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\iepeers.dll
    2009-12-10 16:13:45 ----A---- C:\Windows\system32\ie4uinit.exe
    2009-12-09 21:29:47 ----A---- C:\Windows\system32\rastls.dll
    2009-12-08 22:29:45 ----D---- C:\Program Files\IObit
    2009-12-07 19:32:10 ----D---- C:\ProgramData\SimCity Societies
    2009-12-07 18:55:48 ----D---- C:\Electronic Arts
    2009-12-07 18:55:47 ----A---- C:\Windows\system32\xinput1_3.dll
    2009-12-07 18:55:46 ----A---- C:\Windows\system32\xactengine2_7.dll
    2009-12-07 18:55:46 ----A---- C:\Windows\system32\d3dx9_33.dll
    2009-12-07 18:55:45 ----A---- C:\Windows\system32\xactengine2_6.dll
    2009-12-07 18:55:44 ----A---- C:\Windows\system32\xactengine2_5.dll
    2009-12-07 18:55:41 ----A---- C:\Windows\system32\xactengine2_4.dll
    2009-12-07 18:55:41 ----A---- C:\Windows\system32\x3daudio1_1.dll
    2009-12-07 18:55:41 ----A---- C:\Windows\system32\d3dx9_31.dll
    2009-12-07 18:55:40 ----A---- C:\Windows\system32\xinput1_2.dll
    2009-12-07 18:55:40 ----A---- C:\Windows\system32\xactengine2_3.dll
    2009-12-07 18:55:39 ----A---- C:\Windows\system32\xinput1_1.dll
    2009-12-07 18:55:39 ----A---- C:\Windows\system32\xactengine2_2.dll
    2009-12-07 18:55:38 ----A---- C:\Windows\system32\xactengine2_1.dll
    2009-12-07 18:55:24 ----A---- C:\Windows\system32\xactengine2_0.dll
    2009-12-07 18:55:24 ----A---- C:\Windows\system32\x3daudio1_0.dll
    2009-12-07 18:55:24 ----A---- C:\Windows\system32\d3dx9_30.dll
    2009-12-07 18:55:23 ----A---- C:\Windows\system32\d3dx9_29.dll
    2009-12-07 18:55:22 ----A---- C:\Windows\system32\d3dx9_28.dll
    2009-12-07 18:55:22 ----A---- C:\Windows\system32\d3dx9_27.dll
    2009-12-07 18:55:22 ----A---- C:\Windows\system32\d3dx9_26.dll
    2009-12-07 18:55:22 ----A---- C:\Windows\system32\d3dx9_25.dll
    2009-12-07 18:55:21 ----A---- C:\Windows\system32\d3dx9_24.dll
    2009-12-07 18:41:14 ----D---- C:\7-Zip
    2009-12-07 18:36:57 ----D---- C:\Users\yannick\AppData\Roaming\Roxio
    2009-12-07 00:00:26 ----D---- C:\Users\yannick\AppData\Roaming\InterVideo
    2009-12-06 23:54:45 ----D---- C:\Users\yannick\AppData\Roaming\PeerNetworking
    2009-12-06 15:58:09 ----D---- C:\Windows\SQL9_KB970892_ENU
    2009-12-06 13:56:08 ----D---- C:\Program Files\Microsoft Sync Framework
    2009-12-06 13:53:54 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
    2009-12-06 00:31:52 ----D---- C:\Program Files\SopCast
    2009-12-05 20:36:20 ----A---- C:\Windows\system32\javaws.exe
    2009-12-05 20:36:20 ----A---- C:\Windows\system32\deploytk.dll
    2009-12-05 20:36:18 ----A---- C:\Windows\system32\javaw.exe
    2009-12-05 20:36:18 ----A---- C:\Windows\system32\java.exe
    2009-12-05 19:31:18 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
    2009-12-05 19:07:19 ----D---- C:\Program Files\Common Files\INCA Shared
    2009-12-05 18:53:01 ----D---- C:\Program Files\gPotato.eu
    2009-12-05 17:29:46 ----D---- C:\Users\yannick\AppData\Roaming\skypePM
    2009-12-05 17:27:04 ----D---- C:\Users\yannick\AppData\Roaming\Skype
    2009-12-05 17:26:13 ----D---- C:\Program Files\Common Files\Skype
    2009-12-05 17:26:12 ----RD---- C:\Program Files\Skype
    2009-12-05 17:26:06 ----D---- C:\ProgramData\Skype
    2009-12-04 17:52:58 ----D---- C:\Program Files\aMSN
    2009-12-04 16:29:45 ----D---- C:\Program Files\QuickTime
    2009-12-04 16:29:44 ----D---- C:\ProgramData\Apple Computer
    2009-12-04 16:28:04 ----D---- C:\Program Files\Common Files\Apple
    2009-12-04 16:27:34 ----D---- C:\Program Files\Apple Software Update
    2009-12-04 16:27:33 ----D---- C:\ProgramData\Apple
    2009-12-04 14:15:43 ----D---- C:\Program Files\Windows Live Safety Center
    2009-12-04 12:09:28 ----HD---- C:\ProgramData\{807264C7-1DED-4921-97ED-B6020E1FA982}
    2009-12-04 12:07:49 ----D---- C:\Windows\Minidump
    2009-12-03 20:56:50 ----D---- C:\Program Files\Windows Portable Devices
    2009-12-03 20:08:35 ----A---- C:\Windows\system32\UIRibbonRes.dll
    2009-12-03 20:08:35 ----A---- C:\Windows\system32\UIAnimation.dll
    2009-12-03 20:08:34 ----A---- C:\Windows\system32\UIRibbon.dll
    2009-12-03 20:08:07 ----A---- C:\Windows\system32\WMPhoto.dll
    2009-12-03 20:08:07 ----A---- C:\Windows\system32\cdd.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\XpsRasterService.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\XpsGdiConverter.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\WindowsCodecs.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\dxdiagn.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\d3d10warp.dll
    2009-12-03 20:08:06 ----A---- C:\Windows\system32\d2d1.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\xpsservices.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\XpsPrint.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\OpcServices.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\FntCache.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\dxgi.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\dxdiag.exe
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\DWrite.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d11.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d10level9.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d10core.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d10_1core.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d10_1.dll
    2009-12-03 20:08:05 ----A---- C:\Windows\system32\d3d10.dll
    2009-12-03 20:07:45 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
    2009-12-03 20:07:45 ----A---- C:\Windows\system32\wpdbusenum.dll
    2009-12-03 20:07:45 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
    2009-12-03 20:07:44 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\WPDSp.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\WPDShServiceObj.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\wpdshext.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\wpd_ci.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
    2009-12-03 20:07:42 ----A---- C:\Windows\system32\PortableDeviceApi.dll
    2009-12-03 20:07:08 ----A---- C:\Windows\system32\oleaccrc.dll
    2009-12-03 20:07:07 ----A---- C:\Windows\system32\UIAutomationCore.dll
    2009-12-03 20:07:07 ----A---- C:\Windows\system32\oleacc.dll
    2009-12-03 19:59:15 ----D---- C:\Program Files\LSI SoftModem
    2009-12-03 13:51:38 ----D---- C:\Windows\system32\eu-ES
    2009-12-03 13:51:38 ----D---- C:\Windows\system32\ca-ES
    2009-12-03 13:51:35 ----D---- C:\Windows\system32\vi-VN
    2009-12-03 13:32:24 ----D---- C:\Windows\system32\EventProviders
    2009-12-03 12:50:19 ----D---- C:\Windows\CheckSur
    2009-12-02 22:47:26 ----A---- C:\Windows\system32\NlsLexicons0007.dll
    2009-12-02 22:47:22 ----A---- C:\Windows\system32\SLsvc.exe
    2009-12-02 22:47:22 ----A---- C:\Windows\system32\SLCExt.dll
    2009-12-02 22:47:20 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
    2009-12-02 22:47:20 ----A---- C:\Windows\system32\DevicePairingWizard.exe
    2009-12-02 22:47:19 ----A---- C:\Windows\system32\NlsLexicons0009.dll
    2009-12-02 22:47:16 ----A---- C:\Windows\system32\mssrch.dll
    2009-12-02 22:47:14 ----A---- C:\Windows\system32\tquery.dll
    2009-12-02 22:47:12 ----A---- C:\Windows\system32\scavenge.dll
    2009-12-02 22:47:12 ----A---- C:\Windows\system32\RMActivate_isv.exe
    2009-12-02 22:47:12 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
    2009-12-02 22:47:11 ----A---- C:\Windows\system32\RMActivate.exe
    2009-12-02 22:47:10 ----A---- C:\Windows\system32\msi.dll
    2009-12-02 22:47:09 ----A---- C:\Windows\system32\imapi2fs.dll
    2009-12-02 22:47:08 ----A---- C:\Windows\system32\WscEapPr.dll
    2009-12-02 22:47:08 ----A---- C:\Windows\system32\wcnwiz2.dll
    2009-12-02 22:47:08 ----A---- C:\Windows\system32\sysmain.dll
    2009-12-02 22:47:08 ----A---- C:\Windows\system32\secproc_isv.dll
    2009-12-02 22:47:06 ----A---- C:\Windows\system32\icardagt.exe
    2009-12-02 22:47:05 ----A---- C:\Windows\system32\EhStorShell.dll
    2009-12-02 22:47:05 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
    2009-12-02 22:47:04 ----A---- C:\Windows\system32\spreview.exe
    2009-12-02 22:47:04 ----A---- C:\Windows\system32\spinstall.exe
    2009-12-02 22:47:04 ----A---- C:\Windows\system32\drmv2clt.dll
    2009-12-02 22:47:02 ----A---- C:\Windows\system32\spwizui.dll
    2009-12-02 22:47:02 ----A---- C:\Windows\system32\shell32.dll
    2009-12-02 22:47:02 ----A---- C:\Windows\system32\secproc.dll
    2009-12-02 22:47:02 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
    2009-12-02 22:47:01 ----A---- C:\Windows\system32\SearchIndexer.exe
    2009-12-02 22:47:01 ----A---- C:\Windows\system32\p2psvc.dll
    2009-12-02 22:47:01 ----A---- C:\Windows\system32\mssvp.dll
    2009-12-02 22:47:00 ----A---- C:\Windows\system32\mssphtb.dll
    2009-12-02 22:47:00 ----A---- C:\Windows\system32\mssph.dll
    2009-12-02 22:47:00 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
    2009-12-02 22:47:00 ----A---- C:\Windows\system32\mscoree.dll
    2009-12-02 22:46:59 ----A---- C:\Windows\system32\sdohlp.dll
    2009-12-02 22:46:59 ----A---- C:\Windows\system32\imapi2.dll
    2009-12-02 22:46:58 ----A---- C:\Windows\system32\sperror.dll
    2009-12-02 22:46:58 ----A---- C:\Windows\system32\IMJP10K.DLL
    2009-12-02 22:46:58 ----A---- C:\Windows\system32\esent.dll
    2009-12-02 22:46:58 ----A---- C:\Windows\system32\DevicePairing.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\wevtsvc.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\SLC.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\RMActivate_ssp.exe
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\PresentationHostProxy.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\msshsq.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\korwbrkr.dll
    2009-12-02 22:46:57 ----A---- C:\Windows\system32\IasMigReader.exe
    2009-12-02 22:46:55 ----A---- C:\Windows\system32\msjet40.dll
    2009-12-02 22:46:55 ----A---- C:\Windows\system32\MPSSVC.dll
    2009-12-02 22:46:54 ----A---- C:\Windows\system32\Query.dll
    2009-12-02 22:46:54 ----A---- C:\Windows\system32\qmgr.dll
    2009-12-02 22:46:53 ----A---- C:\Windows\system32\P2PGraph.dll
    2009-12-02 22:46:53 ----A---- C:\Windows\system32\ole32.dll
    2009-12-02 22:46:53 ----A---- C:\Windows\system32\ntdll.dll
    2009-12-02 22:46:53 ----A---- C:\Windows\system32\msexch40.dll
    2009-12-02 22:46:53 ----A---- C:\Windows\system32\diagperf.dll
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\winload.exe
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\uDWM.dll
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\srchadmin.dll
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\mmc.exe
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\mblctr.exe
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\EncDec.dll
    2009-12-02 22:46:52 ----A---- C:\Windows\system32\dfsr.exe
    2009-12-02 22:46:51 ----A---- C:\Windows\system32\riched20.dll
    2009-12-02 22:46:51 ----A---- C:\Windows\system32\RacEngn.dll
    2009-12-02 22:46:51 ----A---- C:\Windows\system32\IasMigPlugin.dll
    2009-12-02 22:46:51 ----A---- C:\Windows\system32\fdBth.dll
    2009-12-02 22:46:50 ----A---- C:\Windows\system32\SearchProtocolHost.exe
    2009-12-02 22:46:50 ----A---- C:\Windows\system32\SearchFilterHost.exe
    2009-12-02 22:46:50 ----A---- C:\Windows\system32\milcore.dll
    2009-12-02 22:46:50 ----A---- C:\Windows\system32\kernel32.dll
    2009-12-02 22:46:49 ----A---- C:\Windows\system32\spoolss.dll
    2009-12-02 22:46:49 ----A---- C:\Windows\system32\schedsvc.dll
    2009-12-02 22:46:49 ----A---- C:\Windows\system32\NaturalLanguage6.dll
    2009-12-02 22:46:49 ----A---- C:\Windows\system32\EhStorAPI.dll
    2009-12-02 22:46:49 ----A---- C:\Windows\system32\CertEnroll.dll
    2009-12-02 22:46:48 ----A---- C:\Windows\system32\msvcp60.dll
    2009-12-02 22:46:48 ----A---- C:\Windows\system32\msjtes40.dll
    2009-12-02 22:46:48 ----A---- C:\Windows\system32\infocardapi.dll
    2009-12-02 22:46:48 ----A---- C:\Windows\system32\gpedit.dll
    2009-12-02 22:46:48 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
    2009-12-02 22:46:47 ----A---- C:\Windows\system32\WinSAT.exe
    2009-12-02 22:46:46 ----A---- C:\Windows\system32\PresentationSettings.exe
    2009-12-02 22:46:46 ----A---- C:\Windows\system32\mstext40.dll
    2009-12-02 22:46:46 ----A---- C:\Windows\system32\Magnify.exe
    2009-12-02 22:46:46 ----A---- C:\Windows\system32\es.dll
    2009-12-02 22:46:46 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
    2009-12-02 22:46:45 ----A---- C:\Windows\system32\advapi32.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\WebClnt.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\slwmi.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\msxbde40.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\msexcl40.dll
    2009-12-02 22:46:44 ----A---- C:\Windows\system32\comsvcs.dll
    2009-12-02 22:46:43 ----A---- C:\Windows\system32\vssapi.dll
    2009-12-02 22:46:43 ----A---- C:\Windows\system32\NetProjW.dll
    2009-12-02 22:46:43 ----A---- C:\Windows\system32\authui.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\propsys.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\PresentationHost.exe
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\newdev.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\msrepl40.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\iasrecst.dll
    2009-12-02 22:46:42 ----A---- C:\Windows\system32\gpsvc.dll
    2009-12-02 22:46:41 ----A---- C:\Windows\system32\setupapi.dll
    2009-12-02 22:46:41 ----A---- C:\Windows\system32\rpcss.dll
    2009-12-02 22:46:41 ----A---- C:\Windows\system32\mspbde40.dll
    2009-12-02 22:46:41 ----A---- C:\Windows\system32\eudcedit.exe
    2009-12-02 22:46:41 ----A---- C:\Windows\system32\crypt32.dll
    2009-12-02 22:46:41 ----A---- C:\Windows\explorer.exe
    2009-12-02 22:46:40 ----A---- C:\Windows\system32\d3d9.dll
    2009-12-02 22:46:39 ----A---- C:\Windows\system32\msltus40.dll
    2009-12-02 22:46:39 ----A---- C:\Windows\system32\mfc42.dll
    2009-12-02 22:46:39 ----A---- C:\Windows\system32\davclnt.dll
    2009-12-02 22:46:38 ----A---- C:\Windows\system32\shlwapi.dll
    2009-12-02 22:46:38 ----A---- C:\Windows\system32\msrd3x40.dll
    2009-12-02 22:46:38 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
    2009-12-02 22:46:38 ----A---- C:\Windows\system32\EhStorAuthn.dll
    2009-12-02 22:46:37 ----A---- C:\Windows\system32\wevtapi.dll
    2009-12-02 22:46:37 ----A---- C:\Windows\system32\photowiz.dll
    2009-12-02 22:46:37 ----A---- C:\Windows\system32\nlhtml.dll
    2009-12-02 22:46:37 ----A---- C:\Windows\system32\msdtctm.dll
    2009-12-02 22:46:37 ----A---- C:\Windows\system32\browseui.dll
    2009-12-02 22:46:36 ----A---- C:\Windows\system32\user32.dll
    2009-12-02 22:46:36 ----A---- C:\Windows\system32\samsrv.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\win32spl.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\WcnNetsh.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\SLCommDlg.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\quartz.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\oleaut32.dll
    2009-12-02 22:46:35 ----A---- C:\Windows\system32\ci.dll
    2009-12-02 22:46:34 ----A---- C:\Windows\system32\netshell.dll
    2009-12-02 22:46:34 ----A---- C:\Windows\system32\IKEEXT.DLL
    2009-12-02 22:46:34 ----A---- C:\Windows\system32\compcln.exe
    2009-12-02 22:46:34 ----A---- C:\Windows\system32\apds.dll
    2009-12-02 22:46:32 ----A---- C:\Windows\system32\mswstr10.dll
    2009-12-02 22:46:32 ----A---- C:\Windows\system32\audiosrv.dll
    2009-12-02 22:46:31 ----A---- C:\Windows\system32\xmlfilter.dll
    2009-12-02 22:46:31 ----A---- C:\Windows\system32\msctf.dll
    2009-12-02 22:46:31 ----A---- C:\Windows\system32\emdmgmt.dll
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\VSSVC.exe
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\QAGENTRT.DLL
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\msvcrt.dll
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\mfc42u.dll
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\iphlpsvc.dll
    2009-12-02 22:46:30 ----A---- C:\Windows\system32\gdi32.dll
    2009-12-02 22:46:29 ----A---- C:\Windows\system32\sqlsrv32.dll
    2009-12-02 22:46:29 ----A---- C:\Windows\system32\SLUI.exe
    2009-12-02 22:46:29 ----A---- C:\Windows\system32\odbc32.dll
    2009-12-02 22:46:29 ----A---- C:\Windows\system32\msrd2x40.dll
    2009-12-02 22:46:29 ----A---- C:\Windows\system32\eapphost.dll
    2009-12-02 22:46:28 ----A---- C:\Windows\system32\winresume.exe
    2009-12-02 22:46:28 ----A---- C:\Windows\system32\shdocvw.dll
    2009-12-02 22:46:28 ----A---- C:\Windows\system32\propdefs.dll
    2009-12-02 22:46:27 ----A---- C:\Windows\system32\WsmSvc.dll
    2009-12-02 22:46:27 ----A---- C:\Windows\system32\wevtutil.exe
    2009-12-02 22:46:27 ----A---- C:\Windows\system32\swprv.dll
    2009-12-02 22:46:27 ----A---- C:\Windows\system32\mssitlb.dll
    2009-12-02 22:46:27 ----A---- C:\Windows\system32\dbgeng.dll
    2009-12-02 22:46:26 ----A---- C:\Windows\system32\usp10.dll
    2009-12-02 22:46:26 ----A---- C:\Windows\system32\mmcndmgr.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\vds.exe
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\netlogon.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\msscb.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\msctfp.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\fdBthProxy.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\drvinst.exe
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\devmgr.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\DevicePairingProxy.dll
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\BFE.DLL
    2009-12-02 22:46:25 ----A---- C:\Windows\system32\adsldpc.dll
    2009-12-02 22:46:24 ----A---- C:\Windows\system32\WMVSDECD.DLL
    2009-12-02 22:46:24 ----A---- C:\Windows\system32\Wldap32.dll
    2009-12-02 22:46:24 ----A---- C:\Windows\system32\wcnwiz.dll
    2009-12-02 22:46:24 ----A---- C:\Windows\system32\evr.dll
    2009-12-02 22:46:23 ----A---- C:\Windows\system32\wercon.exe
    2009-12-02 22:46:23 ----A---- C:\Windows\system32\services.exe
    2009-12-02 22:46:23 ----A---- C:\Windows\system32\mimefilt.dll
    2009-12-02 22:46:23 ----A---- C:\Windows\system32\comdlg32.dll
    2009-12-02 22:46:23 ----A---- C:\Windows\system32\adtschema.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\wcncsvc.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\umpnpmgr.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\taskeng.exe
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\rtffilt.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\reg.exe
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\mswdat10.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\msjter40.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\msdtcprx.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\msdrm.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\ipsmsnap.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\dnsapi.dll
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\certutil.exe
    2009-12-02 22:46:22 ----A---- C:\Windows\system32\certcli.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\WMNetMgr.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\w32time.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\TsWpfWrp.exe
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\rsaenh.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\msshooks.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\msscntrs.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\msihnd.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\MMDevAPI.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\IPSECSVC.DLL
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\bthserv.dll
    2009-12-02 22:46:21 ----A---- C:\Windows\system32\bcrypt.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\wmicmiplugin.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\profsvc.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\netapi32.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\mtxclu.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\msstrc.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\mscories.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\inetpp.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\inetcomm.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\hidserv.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\fundisc.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\dhcpcsvc6.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\dfshim.dll
    2009-12-02 22:46:20 ----A---- C:\Windows\system32\cryptsvc.dll
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\wdc.dll
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\termsrv.dll
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\shsvcs.dll
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\msiexec.exe
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\imapi.dll
    2009-12-02 22:46:19 ----A---- C:\Windows\system32\chsbrkr.dll
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\spoolsv.exe
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\rasmans.dll
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\pnidui.dll
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\icardres.dll
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\iassdo.dll
    2009-12-02 22:46:18 ----A---- C:\Windows\system32\autofmt.exe
    2009-12-02 22:46:17 ----A---- C:\Windows\system32\wersvc.dll
    2009-12-02 22:46:17 ----A---- C:\Windows\system32\slmgr.vbs
    2009-12-02 22:46:17 ----A---- C:\Windows\system32\scrrun.dll
    2009-12-02 22:46:17 ----A---- C:\Windows\system32\PSHED.DLL
    2009-12-02 22:46:16 ----A---- C:\Windows\system32\pdh.dll
    2009-12-02 22:46:16 ----A---- C:\Windows\system32\dhcpcsvc.dll
    2009-12-02 22:46:15 ----A---- C:\Windows\system32\wmpmde.dll
    2009-12-02 22:46:15 ----A---- C:\Windows\system32\pidgenx.dll
    2009-12-02 22:46:15 ----A---- C:\Windows\system32\CertEnrollUI.dll
    2009-12-02 22:46:15 ----A---- C:\Windows\system32\azroles.dll
    2009-12-02 22:46:14 ----A---- C:\Windows\system32\winlogon.exe
    2009-12-02 22:46:14 ----A---- C:\Windows\system32\SyncCenter.dll
    2009-12-02 22:46:13 ----A---- C:\Windows\system32\SLUINotify.dll
    2009-12-02 22:46:13 ----A---- C:\Windows\system32\msjetoledb40.dll
    2009-12-02 22:46:13 ----A---- C:\Windows\system32\comuid.dll
    2009-12-02 22:46:13 ----A---- C:\Windows\system32\certmgr.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\wisptis.exe
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\untfs.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\taskcomp.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\spp.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\sethc.exe
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\scrobj.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\rtutils.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\ncrypt.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\kd1394.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\iassam.dll
    2009-12-02 22:46:12 ----A---- C:\Windows\system32\dwm.exe
    2009-12-02 22:46:11 ----A---- C:\Windows\system32\winsrv.dll
    2009-12-02 22:46:11 ----A---- C:\Windows\system32\printui.dll
    2009-12-02 22:46:11 ----A---- C:\Windows\system32\iasnap.dll
    2009-12-02 22:46:11 ----A---- C:\Windows\system32\autoconv.exe
    2009-12-02 22:46:11 ----A---- C:\Windows\system32\autochk.exe
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\wow32.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\userenv.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\spcmsg.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\osk.exe
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\onex.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\mswsock.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\kdusb.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\kdcom.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\cscript.exe
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\basecsp.dll
    2009-12-02 22:46:10 ----A---- C:\Windows\system32\audiodg.exe
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\WinSCard.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\winmm.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\WerFaultSecure.exe
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\RelMon.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\rdpencom.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\offfilt.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\msftedit.dll
    2009-12-02 22:46:09 ----A---- C:\Windows\system32\dnsrslvr.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\wsepno.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\WerFault.exe
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\Utilman.exe
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\stobject.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\SndVol.exe
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\secproc_ssp.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\prnntfy.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\msnetobj.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\mscms.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\mfplat.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\mcmde.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\diskraid.exe
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\apphelp.dll
    2009-12-02 22:46:08 ----A---- C:\Windows\system32\adsmsext.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\wscript.exe
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\wscntfy.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\wiaservc.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\ulib.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\sysclass.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\rastapi.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\pnpsetup.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\odbccp32.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\ipsecsnp.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\IPHLPAPI.DLL
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\iasdatastore.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\fdProxy.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\dsound.dll
    2009-12-02 22:46:07 ----A---- C:\Windows\system32\cryptui.dll
    2009-12-02 22:46:06 ----A---- C:\Windows\system32\wlangpui.dll
    2009-12-02 22:46:06 ----A---- C:\Windows\system32\diskpart.exe
    2009-12-02 22:46:06 ----A---- C:\Windows\system32\brcpl.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\wusa.exe
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\wscsvc.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\WMVENCOD.DLL
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\vdsdyn.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\regsvc.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\rasapi32.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\ntprint.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\mscorier.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\logman.exe
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\iashlpr.dll
    2009-12-02 22:46:05 ----A---- C:\Windows\system32\gpapi.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\zipfldr.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\wshext.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\wpccpl.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\rasdlg.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\netcenter.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\iasrad.dll
    2009-12-02 22:46:04 ----A---- C:\Windows\system32\findstr.exe
    2009-12-02 22:46:03 ----A---- C:\Windows\system32\wsnmp32.dll
    2009-12-02 22:46:03 ----A---- C:\Windows\system32\wer.dll
    2009-12-02 22:46:03 ----A---- C:\Windows\system32\themecpl.dll
    2009-12-02 22:46:03 ----A---- C:\Windows\system32\iassvcs.dll
    2009-12-02 22:46:02 ----A---- C:\Windows\system32\uxsms.dll
    2009-12-02 22:46:02 ----A---- C:\Windows\system32\srvsvc.dll
    2009-12-02 22:46:02 ----A---- C:\Windows\system32\mssprxy.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\tsbyuv.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\slcc.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\scansetting.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\powrprof.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\ntmarta.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\msutb.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\mstsc.exe
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\mstlsapi.dll
    2009-12-02 22:46:01 ----A---- C:\Windows\system32\iasads.dll
    2009-12-02 22:46:00 ----A---- C:\Windows\system32\powercpl.dll
    2009-12-02 22:46:00 ----A---- C:\Windows\system32\PerfCenterCPL.dll
    2009-12-02 22:46:00 ----A---- C:\Windows\system32\networkmap.dll
    2009-12-02 22:46:00 ----A---- C:\Windows\system32\iasacct.dll
    2009-12-02 22:46:00 ----A---- C:\Windows\system32\authz.dll
    2009-12-02 22:45:59 ----A---- C:\Windows\system32\sud.dll
    2009-12-02 22:45:59 ----A---- C:\Windows\system32\newdev.exe
    2009-12-02 22:45:59 ----A---- C:\Windows\system32\dot3svc.dll
    2009-12-02 22:45:59 ----A---- C:\Windows\system32\connect.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\usercpl.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\themeui.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\systemcpl.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\samlib.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\qdvd.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\pcaui.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\mmci.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\autoplay.dll
    2009-12-02 22:45:58 ----A---- C:\Windows\system32\accessibilitycpl.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\wscisvif.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\wpcao.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\wlanpref.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\vdsutil.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\tapisrv.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\sdclt.exe
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\scksp.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\scesrv.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\rpchttp.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\rekeywiz.exe
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\regapi.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\psisdecd.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\oleprn.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\msinfo32.exe
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\mpr.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\imm32.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\iaspolcy.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\feclient.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\Faultrep.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\dot3msm.dll
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\DeviceEject.exe
    2009-12-02 22:45:57 ----A---- C:\Windows\system32\AudioSes.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\whealogr.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\TSTheme.exe
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\tcpmon.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\tcpipcfg.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\spwinsat.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\scecli.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\rasplap.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\rasgcw.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\qedit.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\PnPUnattend.exe
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\pnpui.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\perfdisk.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\ncryptui.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\hdwwiz.exe
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\FWPUCLNT.DLL
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\fdWSD.dll
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\dpapimig.exe
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\cmmon32.exe
    2009-12-02 22:45:56 ----A---- C:\Windows\system32\certreq.exe
    2009-12-02 22:45:55 ----A---- C:\Windows\system32\srcore.dll
    2009-12-02 22:45:55 ----A---- C:\Windows\system32\SCardSvr.dll
    2009-12-02 22:45:55 ----A---- C:\Windows\system32\conime.exe
    2009-12-02 22:45:55 ----A---- C:\Windows\system32\cmdial32.dll
    2009-12-02 22:45:54 ----A---- C:\Windows\system32\SnippingTool.exe
    2009-12-02 22:45:54 ----A---- C:\Windows\system32\raschap.dll
    2009-12-02 22:45:54 ----A---- C:\Windows\system32\MSVidCtl.dll
    2009-12-02 22:45:54 ----A---- C:\Windows\system32\fontext.dll
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\WMVXENCD.DLL
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\wlanui.dll
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\wiaaut.dll
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\shwebsvc.dll
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\rasppp.dll
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\PnPutil.exe
    2009-12-02 22:45:53 ----A---- C:\Windows\system32\dsprop.dll
    2009-12-02 22:45:52 ----A---- C:\Windows\system32\shsetup.dll
    2009-12-02 22:45:52 ----A---- C:\Windows\system32\rasmontr.dll
    2009-12-02 22:45:52 ----A---- C:\Windows\system32\oobefldr.dll
    2009-12-02 22:45:52 ----A---- C:\Windows\system32\modemui.dll
    2009-12-02 22:45:52 ----A---- C:\Windows\system32\dimsroam.dll
    2009-12-02 22:45:51 ----A---- C:\Windows\system32\wmdrmsdk.dll
    2009-12-02 22:45:51 ----A---- C:\Windows\system32\mscandui.dll
    2009-12-02 22:45:51 ----A---- C:\Windows\system32\dataclen.dll
    2009-12-02 22:45:51 ----A---- C:\Windows\system32\chtbrkr.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\WSDMon.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\wmpeffects.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\wlgpclnt.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\smss.exe
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\rdpwsx.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\netplwiz.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\credui.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\certprop.dll
    2009-12-02 22:45:50 ----A---- C:\Windows\system32\blackbox.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\wscapi.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\wpcsvc.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\thawbrkr.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\softkbd.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\sendmail.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\networkexplorer.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\msscp.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\msimtf.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\logagent.exe
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\InkEd.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\ifmon.dll
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\gpresult.exe
    2009-12-02 22:45:49 ----A---- C:\Windows\system32\cipher.exe
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\version.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\puiapi.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\olepro32.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\msctfui.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\mprapi.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\input.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\ExplorerFrame.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\drmmgrtn.dll
    2009-12-02 22:45:48 ----A---- C:\Windows\system32\dmsynth.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\wshbth.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\wsdchngr.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\Storprop.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\SMBHelperClass.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\SLLUA.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\rasdial.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\rasdiag.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\msjint40.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\msisip.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\MsCtfMonitor.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\l2nacp.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\ipconfig.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\ftp.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\fdWCN.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\fdSSDP.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\fc.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\eappcfg.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\eapp3hst.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\dot3cfg.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\dmusic.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\cscdll.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\cscapi.dll
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\bthudtask.exe
    2009-12-02 22:45:47 ----A---- C:\Windows\system32\bthci.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\tscupgrd.exe
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\slcinst.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\ocsetup.exe
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\nslookup.exe
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\networkitemfactory.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\mmcico.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\hbaapi.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\FwRemoteSvr.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\fdeploy.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\eappgnui.dll
    2009-12-02 22:45:46 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\PNPXAssoc.dll
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\NcdProp.dll
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\iscsilog.dll
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\gpupdate.exe
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\csrstub.exe
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\cbsra.exe
    2009-12-02 22:45:45 ----A---- C:\Windows\system32\bitsigd.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\winrnr.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\vdmdbg.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\slwga.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\odbcconf.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\midimap.dll
    2009-12-02 22:45:44 ----A---- C:\Windows\system32\inetppui.dll
    2009-12-02 22:45:42 ----A---- C:\Windows\system32\msimsg.dll
    2009-12-02 22:45:42 ----A---- C:\Windows\system32\f3ahvoas.dll
    2009-12-02 22:45:23 ----A---- C:\Windows\system32\SmiEngine.dll
    2009-12-02 22:45:15 ----A---- C:\Windows\system32\wdscore.dll
    2009-12-02 22:45:15 ----A---- C:\Windows\system32\PkgMgr.exe
    2009-12-02 22:45:00 ----A---- C:\Windows\system32\drvstore.dll
    2009-12-02 22:27:19 ----A---- C:\Windows\system32\jscript.dll
    2009-12-02 17:28:00 ----D---- C:\ProgramData\NOS
    2009-12-02 17:28:00 ----D---- C:\Program Files\NOS
    2009-12-02 14:35:15 ----D---- C:\Program Files\PerfLogs
    2009-12-02 13:41:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2009-12-02 13:23:10 ----A---- C:\Windows\system32\mshtmled.dll
    2009-12-02 13:23:10 ----A---- C:\Windows\system32\icardie.dll
    2009-12-02 13:23:09 ----A---- C:\Windows\system32\msls31.dll
    2009-12-02 13:23:09 ----A---- C:\Windows\system32\mshtmler.dll
    2009-12-02 13:23:09 ----A---- C:\Windows\system32\corpol.dll
    2009-12-02 13:23:09 ----A---- C:\Windows\system32\admparse.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\licmgr10.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\inseng.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\imgutil.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\ieakeng.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\dxtrans.dll
    2009-12-02 13:23:08 ----A---- C:\Windows\system32\dxtmsft.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\WinFXDocObj.exe
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\wextract.exe
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\webcheck.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\pngfilt.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\mstime.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\msrating.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\ieakui.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\ieaksie.dll
    2009-12-02 13:23:07 ----A---- C:\Windows\system32\advpack.dll
    2009-12-02 13:23:06 ----A---- C:\Windows\system32\vbscript.dll
    2009-12-02 13:23:06 ----A---- C:\Windows\system32\ieapfltr.dll
    2009-12-02 13:23:05 ----A---- C:\Windows\system32\url.dll
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\SetDepNx.exe
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\PDMSetup.exe
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\mshta.exe
    2009-12-02 13:23:04 ----A---- C:\Windows\system32\iexpress.exe
    2009-12-02 12:05:25 ----A---- C:\Windows\system32\imagesp1.dll
    2009-12-02 12:05:16 ----A---- C:\Windows\system32\sstpsvc.dll
    2009-12-02 12:05:13 ----A---- C:\Windows\system32\winrscmd.dll
    2009-12-02 12:04:50 ----A---- C:\Windows\system32\xpssvcs.dll
    2009-12-02 12:04:41 ----A---- C:\Windows\system32\spwizimg.dll
    2009-12-02 12:04:40 ----A---- C:\Windows\system32\lpremove.exe
    2009-12-02 12:04:40 ----A---- C:\Windows\bfsvc.exe
    2009-12-02 12:04:35 ----A---- C:\Windows\system32\recdisc.exe
    2009-12-02 12:04:33 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
    2009-12-02 12:04:29 ----A---- C:\Windows\system32\msvbvm60.dll
    2009-12-02 12:04:17 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
    2009-12-02 12:04:16 ----A---- C:\Windows\system32\xolehlp.dll
    2009-12-02 12:04:13 ----A---- C:\Windows\system32\SSShim.dll
    2009-12-02 12:04:11 ----A---- C:\Windows\system32\nlmgp.dll
    2009-12-02 12:04:11 ----A---- C:\Windows\system32\DfsShlEx.dll
    2009-12-02 12:04:08 ----A---- C:\Windows\system32\clusapi.dll
    2009-12-02 12:04:04 ----A---- C:\Windows\system32\winrsmgr.dll
    2009-12-02 12:04:02 ----A---- C:\Windows\system32\vdsbas.dll
    2009-12-02 12:04:00 ----A---- C:\Windows\system32\comctl32.dll
    2009-12-02 12:03:57 ----A---- C:\Windows\system32\XPSSHHDR.dll
    2009-12-02 12:03:57 ----A---- C:\Windows\system32\msdtckrm.dll
    2009-12-02 12:03:56 ----A---- C:\Windows\system32\sbe.dll
    2009-12-02 12:03:55 ----A---- C:\Windows\system32\wecutil.exe
    2009-12-02 12:03:54 ----A---- C:\Windows\system32\sdengin2.dll
    2009-12-02 12:03:53 ----A---- C:\Windows\system32\gacinstall.dll
    2009-12-02 12:03:53 ----A---- C:\Windows\system32\cmipnpinstall.dll
    2009-12-02 12:03:53 ----A---- C:\Windows\system32\cmicryptinstall.dll
    2009-12-02 12:03:51 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
    2009-12-02 12:03:48 ----A---- C:\Windows\system32\FirewallAPI.dll
    2009-12-02 12:03:46 ----A---- C:\Windows\system32\sqlceqp30.dll
    2009-12-02 12:03:46 ----A---- C:\Windows\system32\lsm.exe
    2009-12-02 12:03:44 ----A---- C:\Windows\system32\wecsvc.dll
    2009-12-02 12:03:41 ----A---- C:\Windows\system32\thumbcache.dll
    2009-12-02 12:03:37 ----A---- C:\Windows\system32\authfwcfg.dll
    2009-12-02 12:03:35 ----A---- C:\Windows\system32\dmvdsitf.dll
    2009-12-02 12:03:32 ----A---- C:\Windows\system32\wevtfwd.dll
    2009-12-02 12:03:32 ----A---- C:\Windows\system32\uexfat.dll
    2009-12-02 12:03:31 ----A---- C:\Windows\system32\DfrgNtfs.exe
    2009-12-02 12:03:30 ----A---- C:\Windows\system32\sqlcese30.dll
    2009-12-02 12:03:24 ----A---- C:\Windows\system32\mssha.dll
    2009-12-02 12:03:24 ----A---- C:\Windows\system32\dfrgui.exe
    2009-12-02 12:03:23 ----A---- C:\Windows\system32\WsmAuto.dll
    2009-12-02 12:03:23 ----A---- C:\Windows\system32\nlasvc.dll
    2009-12-02 12:03:21 ----A---- C:\Windows\system32\wmdrmdev.dll
    2009-12-02 12:03:20 ----A---- C:\Windows\system32\WsmWmiPl.dll
    2009-12-02 12:03:20 ----A---- C:\Windows\system32\ddraw.dll
    2009-12-02 12:03:19 ----A---- C:\Windows\system32\objsel.dll
    2009-12-02 12:03:18 ----A---- C:\Windows\system32\QAGENT.DLL
    2009-12-02 12:03:18 ----A---- C:\Windows\system32\dbghelp.dll
    2009-12-02 12:03:15 ----A---- C:\Windows\system32\wmdrmnet.dll
    2009-12-02 12:03:15 ----A---- C:\Windows\system32\icm32.dll
    2009-12-02 12:03:14 ----A---- C:\Windows\system32\iprtrmgr.dll
    2009-12-02 12:03:11 ----A---- C:\Windows\system32\taskschd.dll
    2009-12-02 12:03:11 ----A---- C:\Windows\system32\bcdedit.exe
    2009-12-02 12:03:10 ----A---- C:\Windows\system32\AudioEng.dll
    2009-12-02 12:03:09 ----A---- C:\Windows\system32\winsta.dll
    2009-12-02 12:03:09 ----A---- C:\Windows\system32\netprofm.dll
    2009-12-02 12:03:09 ----A---- C:\Windows\system32\hcrstco.dll
    2009-12-02 12:03:08 ----A---- C:\Windows\system32\netcfgx.dll
    2009-12-02 12:03:06 ----A---- C:\Windows\system32\lpksetup.exe
    2009-12-02 12:03:06 ----A---- C:\Windows\system32\cdosys.dll
    2009-12-02 12:03:04 ----A---- C:\Windows\system32\msdtcuiu.dll
    2009-12-02 12:03:03 ----A---- C:\Windows\system32\mprddm.dll
    2009-12-02 12:03:02 ----A----
    a c 267 8 Sécurité
    18 Décembre 2009 18:36:50

  • Télécharge OTM (OldTimer) sur ton Bureau.
  • Clique droit sur OTM.exe et choisis Exécuter en tant qu'administrateur.
  • Copie (Ctrl+C) le texte suivant ci-dessous :

    :processes
    explorer.exe

    :reg
    [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C9929B6-0791-4208-B41A-91C6ABFD9027}]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    "{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"=-
    "{76985346-BDA2-4B2E-A727-956D7B8B012E}"=-
    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "Iminent.Notifier Install"=-

    :files
    C:\Program Files\Iminent

    :commands
    [purity]
    [emptytemp]
    [reboot]

  • Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
  • Clique maintenant sur le bouton MoveIt! puis ferme OTM.

    ---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

  • Poste le rapport situé dans ce dossier : C:\_OTM\MovedFiles\
    ---> Le nom du rapport correspond au moment de sa création : date_heure.log
    18 Décembre 2009 18:50:15

    All processes killed
    ========== PROCESSES ==========
    No active process named explorer.exe was found!
    ========== REGISTRY ==========
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C9929B6-0791-4208-B41A-91C6ABFD9027}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0C9929B6-0791-4208-B41A-91C6ABFD9027}\ deleted successfully.
    Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
    Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{76985346-BDA2-4B2E-A727-956D7B8B012E} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{76985346-BDA2-4B2E-A727-956D7B8B012E}\ deleted successfully.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Iminent.Notifier Install deleted successfully.
    ========== FILES ==========
    C:\Program Files\Iminent\IMBooster folder moved successfully.
    C:\Program Files\Iminent folder moved successfully.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: Public

    User: yannick
    ->Temp folder emptied: 31832 bytes
    ->Temporary Internet Files folder emptied: 3140382 bytes
    ->Java cache emptied: 13689508 bytes
    ->FireFox cache emptied: 45155736 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    Windows Temp folder emptied: 0 bytes
    %systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
    RecycleBin emptied: 2425539 bytes

    Total Files Cleaned = 61,52 mb


    OTM by OldTimer - Version 3.1.2.2 log created on 12182009_184145
    a c 267 8 Sécurité
    18 Décembre 2009 18:52:53

  • Poste le rapport info situé dans C:\Rsit.

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    18 Décembre 2009 19:02:01

    Malwarebytes' Anti-Malware 1.42
    Version de la base de données: 3385
    Windows 6.0.6002 Service Pack 2
    Internet Explorer 8.0.6001.18865

    18/12/2009 19:01:24
    mbam-log-2009-12-18 (19-01-24).txt

    Type de recherche: Examen rapide
    Eléments examinés: 100048
    Temps écoulé: 4 minute(s), 39 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 0

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    (Aucun élément nuisible détecté)
    a c 267 8 Sécurité
    18 Décembre 2009 19:04:46

    Le PC va mieux ?

    Peux-tu me poster le rapport info qui se trouve dans C:\Rsit ?
    18 Décembre 2009 19:10:43

    info.txt logfile of random's system information tool 1.06 2009-12-18 17:17:22

    ======Uninstall list======

    -->C:\Program Files\InstallShield Installation Information\{69333A04-5134-40A5-A055-9166A7AA1EC8}\setup.exe -runfromtemp -l0x0009 -removeonly
    2007 Microsoft Office system-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROHYBRIDR /dll OSETUP.DLL
    7-Zip 4.65-->"C:\7-Zip\Uninstall.exe"
    Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE
    ActiveCheck component for HP Active Support Library-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
    Adobe Download Manager-->"C:\Windows\system32\rundll32.exe" "C:\Program Files\NOS\bin\getPlus_Helper.dll",Uninstall /IE2883E8F-472F-4fb0-9522-AC9BF37916A7 /Get1
    Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Flash Player 9 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
    Agere Systems HDA Modem-->C:\Windows\agrsmdel
    aMSN 0.97.2-->C:\Program Files\aMSN\uninstall.exe
    Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
    Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
    Application Installer 4.00.B14-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{70CEFEBA-F757-4DBE-8A21-027C326137CE}\SETUP.EXE" -l0x40c
    Ask Toolbar-->MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE}
    Assistant de connexion Windows Live ID-->MsiExec.exe /X{10A44844-4465-456E-8C97-80BDD4F68845}
    Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
    BIOS Configuration for HP ProtectTools-->MsiExec.exe /X{6F8A7834-2600-49E6-9760-9D63E9D5EC8B}
    Catalyst Control Center - Branding-->MsiExec.exe /I{3F93B2BA-18EC-462B-9ACD-396599353EE1}
    Device Access Manager for HP ProtectTools-->MsiExec.exe /X{55B52830-024A-443E-AF61-61E1E71AFA1B}
    Dragonica(FR)-->C:\Program Files\gPotato.eu\Dragonica\uninst.exe
    EA Download Manager-->C:\Program Files\Electronic Arts\EADM\Uninstall.exe
    eMule-->"C:\Program Files\eMule\Uninstall.exe"
    eoEngine 9.1-->"C:\Program Files\EoRezo\unins000.exe"
    ESU for Microsoft Vista-->MsiExec.exe /I{35843988-D0A7-47AB-8B5E-C3C1D3665500}
    Fichiers de prise en charge de l'installation de Microsoft SQL Server (Français)-->MsiExec.exe /X{3380F354-C5F7-4E71-8F51-EEE6C3F06C62}
    Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F0C37541F1}
    Game Booster-->"C:\Program Files\IObit\Game Booster\unins000.exe"
    GDR 4053 for SQL Server Database Services 2005 ENU (KB970892)-->C:\Windows\SQL9_KB970892_ENU\Hotfix.exe /Uninstall
    Gestionnaire de contacts professionnels pour Outlook 2007 SP2-->"C:\Program Files\Microsoft Small Business\Business Contact Manager\SetupBootstrap\Setup.exe" /remove {69ca8988-1c6c-4285-b8af-db780a6e42af}
    Gestionnaire de contacts professionnels pour Outlook 2007 SP2-->MsiExec.exe /X{69CA8988-1C6C-4285-B8AF-DB780A6E42AF}
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
    HP Active Support Library 32 bit components-->MsiExec.exe /I{6D3DB611-D5E8-4E4B-8952-0D3F549F9CC6}
    HP Active Support Library-->C:\Program Files\InstallShield Installation Information\{E59A46D4-699C-4DC8-969F-DAC3395B4543}\setup.exe -runfromtemp -l0x0409
    HP Customer Experience Enhancements-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB5E289E-76BF-4251-9F3F-9B763F681AE0}\setup.exe" -l0x9 -removeonly
    HP Doc Viewer-->MsiExec.exe /I{082702D5-5DD8-4600-BCE5-48B15174687F}
    HP Easy Setup - Frontend-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BBE5C83E-4DC5-494F-8A23-3AAE242E94C2}\setup.exe" -l0x9 -removeonly
    HP Help and Support-->MsiExec.exe /I{584B0895-8EF3-4175-8E80-1B68BFA04636}
    HP Notebook Accessories Product Tour-->MsiExec.exe /I{521F72F4-FFE4-4959-AA88-EED06125211F}
    HP ProtectTools Security Manager-->MsiExec.exe /I{2DB165DC-DDB4-403F-B985-19F3EC7D0357}
    HP Quick Launch Buttons 6.20 G2-->C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe -runfromtemp -l0x040c -removeonly uninst
    HP Update-->MsiExec.exe /X{818ABC3C-635C-4651-8183-D0E9640B7DD1}
    HP User Guides 0085-->MsiExec.exe /I{51C8F850-4218-4C7F-AB21-AD54241106ED}
    HP Wireless Assistant-->MsiExec.exe /I{0289B18A-F99F-423F-B79F-1150D0F85492}
    HPAsset component for HP Active Support Library-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
    IMBooster-->"C:\ProgramData\{EB0535DA-8CF3-4A16-A92A-87BDC6432A9B}\IMBoosterSetup.exe" REMOVE=TRUE MODIFY=FALSE
    IMBooster-->C:\ProgramData\{EB0535DA-8CF3-4A16-A92A-87BDC6432A9B}\IMBoosterSetup.exe
    Installation de HP Backup & Recovery Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}\setup.exe" -l0x40c -uninst -removeonly
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
    Intel(R) PRO Network Connections Drivers-->Prounstl.exe
    interdescargas-FR Toolbar-->C:\PROGRA~1\INTERD~1\UNWISE.EXE /U C:\PROGRA~1\INTERD~1\INSTALL.LOG
    InterVideo DVD Check-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5D97A4A7-C274-4B63-86D9-07A33435F505}\setup.exe" REMOVEALL
    InterVideo WinDVD-->"C:\Program Files\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL
    Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216017FF}
    Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
    Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
    Les Sims™ 3-->"C:\Program Files\InstallShield Installation Information\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\setup.exe" -runfromtemp -l0x040c -removeonly
    Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
    Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp"
    Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
    Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
    Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
    Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
    Microsoft Office 2003 Web Components-->MsiExec.exe /I{90A4040C-6000-11D3-8CFE-0150048383C9}
    Microsoft Office 2007 Primary Interop Assemblies-->MsiExec.exe /X{50120000-1105-0000-0000-0000000FF1CE}
    Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
    Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
    Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
    Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
    Microsoft Office Live Add-in 1.4-->MsiExec.exe /I{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}
    Microsoft Office Outlook Connector-->MsiExec.exe /I{95120000-0122-040C-0000-0000000FF1CE}
    Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
    Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
    Microsoft Office Professional Hybrid 2007-->MsiExec.exe /X{91120000-0031-0000-0000-0000000FF1CE}
    Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
    Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
    Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
    Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
    Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
    Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
    Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
    Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
    Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
    Microsoft Office Small Business Connectivity Components-->MsiExec.exe /X{A939D341-5A04-4E0A-BB55-3E65B386432D}
    Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
    Microsoft Search Enhancement Pack-->MsiExec.exe /X{4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
    Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)-->MsiExec.exe /I{480DBB60-F0B6-45F2-B26F-1A2E11197791}
    Microsoft SQL Server 2005-->"c:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
    Microsoft SQL Server Native Client-->MsiExec.exe /I{1F24E48F-7692-4E89-8784-68DD4D2712A0}
    Microsoft SQL Server VSS Writer-->MsiExec.exe /I{A30179B7-997A-4D47-AA43-57AE59A9C78B}
    Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
    Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
    Microsoft WSE 3.0 Runtime-->MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13}
    Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C}
    Mise à jour Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {51EFB347-1F3D-4BAC-8B79-F056B904FE21}
    Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3}
    Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223}
    Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
    Mozilla Firefox (3.5.5)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MSCU for Microsoft Vista-->MsiExec.exe /I{DCB21DB9-6177-4A7B-B85D-7C081F15A424}
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    PDF Complete-->C:\Program Files\PDF Complete\pdfiutil.exe /UGUI
    QuickTime-->MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}
    Rappelz-->"C:\Program Files\gPotato.eu\Rappelz\unins000.exe"
    Roxio Activation Module-->MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
    Roxio Creator Audio-->MsiExec.exe /I{83FFCFC7-88C6-41C6-8752-958A45325C82}
    Roxio Creator Basic v9-->MsiExec.exe /I{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}
    Roxio Creator Copy-->MsiExec.exe /I{619CDD8A-14B6-43A1-AB6C-0F4EE48CE048}
    Roxio Creator Data-->MsiExec.exe /I{0D397393-9B50-4C52-84D5-77E344289F87}
    Roxio Creator Tools-->MsiExec.exe /I{0394CDC8-FABD-4ED8-B104-03393876DFDF}
    Roxio Express Labeler 3-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
    Roxio MyDVD Basic v9-->MsiExec.exe /I{33C65B6A-5D73-4E3E-A1F9-127C27BD3F72}
    Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
    SaveMoney-->regsvr32 /u /s "C:\Program Files\Iminent\SaveMoney\tbcore3.dll"
    SearchTheWeb-->"C:\ProgramData\{807264C7-1DED-4921-97ED-B6020E1FA982}\SearchTheWeb.exe" REMOVE=TRUE MODIFY=FALSE
    SearchTheWeb-->C:\ProgramData\{807264C7-1DED-4921-97ED-B6020E1FA982}\SearchTheWeb.exe
    Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
    Security Update for 2007 Microsoft Office System (KB973704)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {E626DC89-A787-4553-9BB3-DC2EC7E1593F}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for Microsoft Office Excel 2007 (KB973593)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {7D6255E3-3423-4D8B-A328-F6F8D28DD5FE}
    Security Update for Microsoft Office Outlook 2007 (KB972363)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {120BE9A0-9B09-4855-9E0C-7DEE45CB03C0}
    Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
    Security Update for Microsoft Office Publisher 2007 (KB969693)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {7BE67088-1EB3-4569-8E75-DDAFBF61BC4E}
    Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
    Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
    Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
    Shareaza 2.5.0.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
    SimCityTM Sociétés-->C:\Electronic Arts\SimCityTM Sociétés\SCS Uninstaller.exe -FromAddRemove
    SimCityTM Sociétés-->MsiExec.exe /X{0B5154C0-8F00-4616-B0AB-6240AE80D9CE}
    SimCity™ Sociétés Destinations-->MsiExec.exe /X{D1C7BB12-BE01-11DC-AAC9-EEBA55D89593}
    Skype web features-->MsiExec.exe /I{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}
    Skype™ 4.1-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
    SoftwareUpdate 1.0-->"C:\Users\yannick\AppData\Roaming\eoRezo\SoftwareUpdate\unins000.exe"
    Sonic CinePlayer Decoder Pack-->MsiExec.exe /I{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}
    SopCast 3.2.4-->C:\Program Files\SopCast\uninst.exe
    SoundMAX-->C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe -runfromtemp -l0x040c -removeonly
    Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
    Uniblue DriverScanner 2009-->"C:\ProgramData\{66E2F539-12B6-4870-A500-7689CDE75C5E}\DriverScanner_Setup.exe" REMOVE=TRUE MODIFY=FALSE
    Uniblue DriverScanner 2009-->C:\ProgramData\{66E2F539-12B6-4870-A500-7689CDE75C5E}\DriverScanner_Setup.exe
    Uniblue RegistryBooster 2010-->"C:\Program Files\Uniblue\RegistryBooster\unins000.exe"
    Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
    Update for Microsoft Office InfoPath 2007 (KB976416)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {432C5EE4-8096-4FF1-95E1-65219365DFF7}
    Update for Microsoft Office Word 2007 (KB974561)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {0CDDBAA2-2111-4A0E-A1B0-76C40C635331}
    Update for Outlook 2007 Junk Email Filter (kb976884)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {FB60F280-C70F-4174-BADB-471412AA42F0}
    Vista Default Settings-->MsiExec.exe /I{1EDD7171-AAD9-4CB1-808F-04C66C8E8C48}
    VLC media player 1.0.2-->C:\Program Files\VideoLAN\VLC\uninstall.exe
    WalterShop-->C:\Program Files\WalterShop.com\uninstaller.exe
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{ED00D08A-3C5F-488D-93A0-A04F21F23956}
    Windows Live Contrôle parental-->MsiExec.exe /X{D5D81435-B8DE-4CAF-867F-7998F2B92CFC}
    Windows Live FolderShare-->MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
    Windows Live Mail-->MsiExec.exe /I{5DD76286-9BE7-4894-A990-E905E91AC818}
    Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
    Windows Live Movie Maker-->MsiExec.exe /X{53B20C18-D8D4-4588-8737-9BBFE303C354}
    Windows Live OneCare safety scanner-->"C:\Program Files\Windows Live Safety Center\UnInstall.exe"
    Windows Live OneCare safety scanner-->MsiExec.exe /X{FE0646A7-19D0-41B4-A2BB-2C35D644270D}
    Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
    Windows Live Writer-->MsiExec.exe /X{4634B21A-CC07-4396-890C-2B8168661FEA}

    ======Security center information======

    AS: Windows Defender (disabled)

    ======System event log======

    Computer Name: PC-de-yannick
    Event Code: 1003
    Message: Votre ordinateur n'a pas pu renouveler son adresse à partir du réseau (à partir du serveur DHCP) pour la carte réseau dont l'adresse réseau est 001A73ADDAA6. Il s'est produit l'erreur suivante :
    L'opération a été annulée par l'utilisateur.. Votre ordinateur va continuer à essayer d'obtenir sa propre adresse auprès du serveur d'adresse réseau (DHCP).
    Record Number: 16289
    Source Name: Microsoft-Windows-Dhcp-Client
    Time Written: 20091201073629.000000-000
    Event Type: Avertissement
    User:

    Computer Name: PC-de-yannick
    Event Code: 4
    Message: Le spouleur d’impression n’a pas pu rouvrir une connexion d’imprimante existante car il n’a pas pu lire les informations de configuration dans la clé de Registre S-1-5-18\Printers\Connections. Le spouleur d’impression n’a pas pu ouvrir la clé de Registre. Ceci peut se produire si la clé de Registre est endommagée ou absente, ou si le Registre est momentanément indisponible.
    Record Number: 16262
    Source Name: Microsoft-Windows-SpoolerWin32SPL
    Time Written: 20091201071952.000000-000
    Event Type: Avertissement
    User:

    Computer Name: PC-de-yannick
    Event Code: 4
    Message: Le spouleur d’impression n’a pas pu rouvrir une connexion d’imprimante existante car il n’a pas pu lire les informations de configuration dans la clé de Registre S-1-5-18\Printers\Connections. Le spouleur d’impression n’a pas pu ouvrir la clé de Registre. Ceci peut se produire si la clé de Registre est endommagée ou absente, ou si le Registre est momentanément indisponible.
    Record Number: 16261
    Source Name: Microsoft-Windows-SpoolerWin32SPL
    Time Written: 20091201071952.000000-000
    Event Type: Avertissement
    User:

    Computer Name: PC-de-yannick
    Event Code: 6
    Message: IRQARB : le BIOS ACP ne contient pas un IRQ pour le périphérique dans le connecteur PCI 25, fonction 0. Contactez le fabricant de votre ordinateur pour une assistance technique.
    Record Number: 16152
    Source Name: ACPI
    Time Written: 20091201071323.955254-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-yannick
    Event Code: 4001
    Message: Le Service d’autoconfiguration WLAN s’est arrêté correctement.

    Record Number: 16147
    Source Name: Microsoft-Windows-WLAN-AutoConfig
    Time Written: 20091201071230.978400-000
    Event Type: Avertissement
    User: AUTORITE NT\SYSTEM

    =====Application event log=====

    Computer Name: PC-de-yannick
    Event Code: 11
    Message: Échec de l'extraction de la liste racine tierce partie depuis le fichier CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update...; avec l'erreur : Une chaîne de certificats n'a pas pu être établie vers une autorité racine de confiance.
    .
    Record Number: 94
    Source Name: Microsoft-Windows-CAPI2
    Time Written: 20091130221735.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-yannick
    Event Code: 8193
    Message: Échec de la création d’un point de restauration sur le volume (Processus = C:\Program Files\Common Files\Windows Live\.cache\fb323e801ca7207\DXSETUP.exe Files\Common Files\Windows Live\.cache\fb323e801ca7207\DXSETUP.exe" /silent  ; Description = div ; Hr = 0x80070057).
    Record Number: 77
    Source Name: System Restore
    Time Written: 20091130221446.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-yannick
    Event Code: 8194
    Message: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005. Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.

    Opération :
    Données du rédacteur en cours de collecte

    Contexte :
    ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
    Nom du rédacteur: System Writer
    ID d’instance du rédacteur: {e76c67fb-e92c-432a-8290-45829776eabf}
    Record Number: 75
    Source Name: VSS
    Time Written: 20091130221413.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-yannick
    Event Code: 1000
    Message: Application défaillante ccApp.exe, version 106.2.0.21, horodatage 0x45a467ef, module défaillant NSCWSCR2.DLL, version 2007.2.0.22, horodatage 0x45a9b0db, code d’exception 0xc0000005, décalage d’erreur 0x0001c9d8, ID du processus 0xf98, heure de début de l’application 0x01ca71fed707e212.
    Record Number: 68
    Source Name: Application Error
    Time Written: 20091130220952.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-yannick
    Event Code: 101
    Message:
    Record Number: 66
    Source Name: Automatic LiveUpdate Scheduler
    Time Written: 20091130220934.000000-000
    Event Type: Erreur
    User: PC-de-yannick\yannick

    =====Security event log=====

    Computer Name: PC-de-yannick
    Event Code: 5032
    Message: Le Pare-feu Windows n’a pas pu notifier l’utilisateur qu’il a empêché une application d’accepter des connexions entrantes sur le réseau.

    Code d’erreur : 2
    Record Number: 5
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20091130213341.455438-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-yannick
    Event Code: 4672
    Message: Privilèges spéciaux attribués à la nouvelle ouverture de session.

    Sujet :
    ID de sécurité : S-1-5-18
    Nom du compte : SYSTEM
    Domaine du compte : AUTORITE NT
    ID d’ouverture de session : 0x3e7

    Privilèges : SeAssignPrimaryTokenPrivilege
    SeTcbPrivilege
    SeSecurityPrivilege
    SeTakeOwnershipPrivilege
    SeLoadDriverPrivilege
    SeBackupPrivilege
    SeRestorePrivilege
    SeDebugPrivilege
    SeAuditPrivilege
    SeSystemEnvironmentPrivilege
    SeImpersonatePrivilege
    Record Number: 4
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20091130205318.229438-000
    Event Type: Succès de l'audit
    User:

    Computer Name: PC-de-yannick
    Event Code: 4624
    Message: L’ouverture de session d’un compte s’est correctement déroulée.

    Sujet :
    ID de sécurité : S-1-5-18
    Nom du compte : PC-DE-YANNICK$
    Domaine du compte : WORKGROUP
    ID d’ouverture de session : 0x3e7

    Type d’ouverture de session : 5

    Nouvelle ouverture de session :
    ID de sécurité : S-1-5-18
    Nom du compte : SYSTEM
    Domaine du compte : AUTORITE NT
    ID d’ouverture de session : 0x3e7
    GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

    Informations sur le processus :
    ID du processus : 0x248
    Nom du processus : C:\WINDOWS\System32\services.exe

    Informations sur le réseau :
    Nom de la station de travail :
    Adresse du réseau source : -
    Port source : -

    Informations détaillées sur l’authentification :
    Processus d’ouverture de session : Advapi
    Package d’authentification : Negotiate
    Services en transit : -
    Nom du package (NTLM uniquement) : -
    Longueur de la clé : 0

    Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

    Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

    Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

    Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

    Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

    Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
    - Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
    - Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
    - Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
    - La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
    Record Number: 3
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20091130205318.229438-000
    Event Type: Succès de l'audit
    User:

    Computer Name: PC-de-yannick
    Event Code: 4648
    Message: Tentative d’ouverture de session en utilisant des informations d’identification explicites.

    Sujet :
    ID de sécurité : S-1-5-18
    Nom du compte : PC-DE-YANNICK$
    Domaine du compte : WORKGROUP
    ID d’ouverture de session : 0x3e7
    GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

    Compte dont les informations d’identification ont été utilisées :
    Nom du compte : SYSTEM
    Domaine du compte : AUTORITE NT
    GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

    Serveur cible :
    Nom du serveur cible : localhost
    Informations supplémentaires : localhost

    Informations sur le processus :
    ID du processus : 0x248
    Nom du processus : C:\WINDOWS\System32\services.exe

    Informations sur le réseau :
    Adresse du réseau : -
    Port : -

    Cet événement est généré lorsqu’un processus tente d’ouvrir une session pour un compte en spécifiant explicitement les informations d’identification de ce compte. Ceci se produit le plus souvent dans les configurations par lot comme les tâches planifiées, ou avec l’utilisation de la commande RUNAS.
    Record Number: 2
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20091130205318.229438-000
    Event Type: Succès de l'audit
    User:

    Computer Name: PC-de-yannick
    Event Code: 1102
    Message: Le journal d’audit a été effacé.
    Objet :
    ID de sécurité : S-1-5-21-4279542743-161633257-314541366-1006
    Nom de compte : yannick
    Nom de domaine : PC-de-yannick
    ID de connexion : 0x1d0d2
    Record Number: 1
    Source Name: Microsoft-Windows-Eventlog
    Time Written: 20091130204645.196838-000
    Event Type: Succès de l'audit
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "Path"=%CommonProgramFiles%\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;c:\Program Files\Microsoft SQL Server\90\Tools\binn\;c:\Program Files\Common Files\Roxio Shared\DLLShared\;c:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\;C:\Program Files\QuickTime\QTSystem\
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
    "PROCESSOR_ARCHITECTURE"=x86
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "USERNAME"=SYSTEM
    "windir"=%SystemRoot%
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 11, GenuineIntel
    "PROCESSOR_REVISION"=0f0b
    "NUMBER_OF_PROCESSORS"=2
    "PLATFORM"=BNB
    "OnlineServices"=Services en ligne
    "RoxioCentral"=c:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\
    "CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_01\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre1.6.0_01\lib\ext\QTJava.zip

    -----------------EOF-----------------
    a c 267 8 Sécurité
    18 Décembre 2009 19:29:45

  • Désinstalle Java(TM) SE Runtime Environment 6 Update 1.

    Et pour ma question ?
    18 Décembre 2009 19:37:17

    OUI IL FONCTIONNE MIEUX EXCUSER MOI
    a c 267 8 Sécurité
    18 Décembre 2009 19:39:37

    1/

  • Désinstalle HijackThis.

  • Télécharge ToolsCleaner2 sur ton Bureau.
  • Clique droit sur ToolsCleaner2.exe et choisis Exécuter en tant qu'administrateur.
  • Clique sur Recherche et laisse le scan agir.
  • Clique sur Suppression pour finaliser.
  • Tu peux, si tu le souhaites, te servir des Options Facultatives.
  • Clique sur Quitter pour obtenir le rapport.
  • Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).


    2/

  • Télécharge et installe CCleaner Slim.
  • Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
  • Va dans Nettoyeur, choisis Analyser. Une fois terminé, lance le nettoyage.


    3/

  • Il est nécessaire de désactiver puis réactiver la restauration système pour la purger.


    ==Prévention==

    Réactive l'UAC si ce n'est pas déjà fait.

    Pour supprimer les popups d'AntiVir : Lien

    Conserve MBAM. Il te servira à scanner les fichiers douteux en complément de l'antivirus et scanne le disque dur régulièrement.

    Par rapport au P2P : Lien

    Voici un dossier complet (A lire avec Adobe Reader ou Foxit Reader) : Lien


    ==Problème résolu ?==

    --> Si tu estimes que ton problème est résolu, ajoute [Résolu] au titre. Pour cela :
  • Clique, dans ton premier message, sur le bouton Editer .
  • Ajoute la mention [Résolu] devant le titre.
  • Clique ensuite sur Valider votre message.


    Sois plus vigilant(e) sur Internet ;) 
    18 Décembre 2009 19:40:21

    VOILA JAVA ET DESINSTALLE
    a c 267 8 Sécurité
    18 Décembre 2009 20:32:06

    As-tu vu mon dernier message ?
    13 Mars 2010 21:26:01

    oui j'ai vu ton dernier message mais je clos la discution car c'est bon le probleme est résolu !
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS