Se connecter / S'enregistrer
Votre question

Problème avec control center

Tags :
  • default
  • Sécurité
Dernière réponse : dans Sécurité et virus
Anonyme
7 Février 2010 10:04:13

bonjour,
je viens ici pour vos demandé de l' aide car control center viens de s' invité dans mon ordi et seme une pagaille pas possible.
j' ai télécharger RSIT comme indiqué dans un autre post et voila le resultat:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Maxime at 2010-02-07 09:30:02
Microsoft® Windows Vista™ Édition Intégrale Service Pack 1
System drive C: has 90 GB (38%) free of 238 GB
Total RAM: 2047 MB (32% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:30:32, on 07/02/2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18385)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Windows\VM_STI.EXE
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Users\Maxime\suuujiv.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\Maxime\Program Files\DNA\btdna.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Teamspeak2_RC2\TeamSpeak.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Users\Maxime\AppData\Local\Temp\Jwr.exe
C:\Windows\system32\ctfmon.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Maxime\Documents\Downloads\RSIT.exe
C:\Program Files\trend micro\Maxime.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Iminent.SearchTheWeb.HelperObject - {0E896FCA-D07E-45FE-901F-6A26FCF59C02} - mscoree.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [LXCDCATS] rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCDtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Itch ford four knob] "C:\ProgramData\gram pop blue.6ldhr"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [BigDogPath] C:\Windows\VM_STI.EXE AMARICAM 8000
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [About Send] "C:\ProgramData\show default default.57tbq1q"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [suuujiv] C:\Users\Maxime\suuujiv.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsWerr] RUNDLL32.EXE C:\Users\Maxime\AppData\Local\Temp\xm1985.dll,w
O4 - HKCU\..\Run: [LosAlamos] rundll32.exe C:\Windows\system32\sshnas21.dll,AttachConsoleA
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [Google Update] "C:\Users\Maxime\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [F5JMWNZTHI] C:\Users\Maxime\AppData\Local\Temp\Jwr.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe"
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\Maxime\Program Files\DNA\btdna.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Assistant Smart Wizard NETGEAR pour WG311v3.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD44/JSCDL/jdk/6u7/jinstal...
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: lxcd_device - - C:\Windows\system32\lxcdcoms.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe

--
End of file - 10692 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1463078487-2333592742-3352730541-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1463078487-2333592742-3352730541-1000UA.job
C:\Windows\tasks\Maintenance en 1 clic.job
C:\Windows\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
C:\Windows\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E896FCA-D07E-45FE-901F-6A26FCF59C02}]
Iminent.SearchTheWeb.HelperObject - C:\Windows\system32\mscoree.dll [2008-07-27 282112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-12-11 263280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-26 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2008-10-08 1172792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2008-10-08 1172792]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-12-11 263280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2008-12-02 111928]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-05-16 92704]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-05-16 13535776]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-06-08 2221352]
"LXCDCATS"=rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCDtime.dll,_RunDLLEntry@16 []
"itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2008-06-10 1442888]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-04-02 342312]
"Itch ford four knob"=C:\ProgramData\gram pop blue.6ldhr [2009-12-16 278544]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2008-06-10 1406024]
"BigDogPath"=C:\Windows\VM_STI.EXE [2003-01-21 40960]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-01-28 2757512]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"About Send"=C:\ProgramData\show default default.57tbq1q [2010-02-06 249872]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-02-21 39408]
"suuujiv"=C:\Users\Maxime\suuujiv.exe [2010-02-06 77824]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]
"MsWerr"=C:\Users\Maxime\AppData\Local\Temp\xm1985.dll [2009-12-18 57344]
"LosAlamos"=C:\Windows\system32\sshnas21.dll [2010-02-06 173056]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-06-24 1840424]
"Google Update"=C:\Users\Maxime\AppData\Local\Google\Update\GoogleUpdate.exe [2009-09-16 133104]
"F5JMWNZTHI"=C:\Users\Maxime\AppData\Local\Temp\Jwr.exe [2010-02-06 132096]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTProAgent.exe [2007-09-06 136136]
"BitTorrent DNA"=C:\Users\Maxime\Program Files\DNA\btdna.exe [2010-02-07 323392]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Assistant Smart Wizard NETGEAR pour WG311v3.lnk - C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
NETGEAR WG111v3 Smart Wizard.lnk - C:\Program Files\NETGEAR\WG111v3\WG111v3.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2007-07-20 233888]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9c7d3ea7-fe03-11de-8103-00192148d0b0}]
shell\Auto\command - F:\Start.exe
shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.exe


======List of files/folders created in the last 1 months======

2010-02-07 09:30:03 ----D---- C:\Program Files\trend micro
2010-02-07 09:30:02 ----D---- C:\rsit
2010-02-06 19:56:28 ----RSH---- C:\Windows\system32\suuujiv.exe
2010-02-06 17:01:44 ----D---- C:\ProgramData\Malwarebytes
2010-02-06 17:01:44 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-02-06 16:29:24 ----D---- C:\Program Files\Enigma Software Group
2010-02-06 16:03:52 ----D---- C:\Users\Maxime\AppData\Roaming\Malwarebytes
2010-02-06 15:28:41 ----D---- C:\Windows\pss
2010-02-06 13:33:42 ----A---- C:\Windows\ntbtlog.txt
2010-02-06 12:58:07 ----A---- C:\Windows\system32\aswBoot.exe
2010-02-06 12:58:03 ----D---- C:\ProgramData\Alwil Software
2010-02-06 12:58:03 ----D---- C:\Program Files\Alwil Software
2010-02-06 11:10:07 ----A---- C:\Windows\msa.exe
2010-02-06 11:09:50 ----A---- C:\Windows\system32\sshnas21.dll
2010-01-31 14:06:21 ----A---- C:\ProgramData\show default default.jsktxg
2010-01-22 13:31:16 ----A---- C:\Windows\system32\mshtml.dll
2010-01-22 13:31:15 ----A---- C:\Windows\system32\wininet.dll
2010-01-22 13:31:15 ----A---- C:\Windows\system32\urlmon.dll
2010-01-22 13:31:15 ----A---- C:\Windows\system32\occache.dll
2010-01-22 13:31:13 ----A---- C:\Windows\system32\ieframe.dll
2010-01-22 13:31:12 ----A---- C:\Windows\system32\iertutil.dll
2010-01-22 13:31:12 ----A---- C:\Windows\system32\iedkcs32.dll
2010-01-22 13:31:12 ----A---- C:\Windows\system32\ieapfltr.dll
2010-01-22 13:31:11 ----A---- C:\Windows\system32\msfeeds.dll
2010-01-22 13:31:11 ----A---- C:\Windows\system32\ieUnatt.exe
2010-01-22 13:31:11 ----A---- C:\Windows\system32\iepeers.dll
2010-01-22 13:31:11 ----A---- C:\Windows\system32\ieaksie.dll
2010-01-22 13:31:10 ----A---- C:\Windows\system32\mstime.dll
2010-01-22 13:31:10 ----A---- C:\Windows\system32\jsproxy.dll
2010-01-22 13:31:10 ----A---- C:\Windows\system32\ieencode.dll
2010-01-15 13:46:50 ----A---- C:\Windows\system32\t2embed.dll
2010-01-15 13:46:50 ----A---- C:\Windows\system32\fontsub.dll

======List of files/folders modified in the last 1 months======

2010-02-07 09:30:03 ----RD---- C:\Program Files
2010-02-07 09:29:59 ----D---- C:\Windows\Temp
2010-02-07 09:28:19 ----D---- C:\Windows\system32\Tasks
2010-02-07 09:28:18 ----D---- C:\Windows\Tasks
2010-02-07 09:22:30 ----D---- C:\Users\Maxime\AppData\Roaming\DNA
2010-02-07 08:51:53 ----SD---- C:\Users\Maxime\AppData\Roaming\Microsoft
2010-02-07 08:33:52 ----HD---- C:\ProgramData
2010-02-07 08:33:48 ----HD---- C:\Windows\system32\GroupPolicy
2010-02-07 08:01:03 ----D---- C:\Program Files\DNA
2010-02-06 19:56:29 ----D---- C:\Windows\System32
2010-02-06 17:01:47 ----D---- C:\Windows\system32\drivers
2010-02-06 16:53:46 ----D---- C:\Windows\Logs
2010-02-06 16:44:39 ----SD---- C:\ProgramData\Microsoft
2010-02-06 15:28:41 ----D---- C:\Windows
2010-02-06 15:04:40 ----D---- C:\Windows\system32\catroot2
2010-02-06 14:37:54 ----D---- C:\Windows\Prefetch
2010-02-06 13:00:41 ----D---- C:\ProgramData\playwindowpart
2010-02-06 12:58:53 ----HD---- C:\Config.Msi
2010-02-06 12:58:52 ----D---- C:\Windows\winsxs
2010-02-06 12:58:19 ----SHD---- C:\Windows\Installer
2010-02-06 11:11:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-02-06 11:11:22 ----D---- C:\Windows\inf
2010-02-05 13:20:10 ----SHD---- C:\System Volume Information
2010-01-31 23:32:58 ----D---- C:\Users\Maxime\AppData\Roaming\Skype
2010-01-31 16:04:37 ----D---- C:\Users\Maxime\AppData\Roaming\skypePM
2010-01-28 16:50:12 ----D---- C:\Program Files\Lx_cats
2010-01-23 09:42:00 ----D---- C:\Program Files\Internet Explorer
2010-01-23 09:41:54 ----D---- C:\Program Files\Microsoft Silverlight
2010-01-22 13:29:20 ----D---- C:\Windows\system32\catroot
2010-01-16 01:37:39 ----D---- C:\ProgramData\Microsoft Help
2010-01-16 01:36:57 ----D---- C:\Program Files\Windows Mail
2010-01-15 23:39:12 ----A---- C:\Windows\NeroDigital.ini
2010-01-14 11:12:06 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-01-28 23376]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-01-28 163280]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-01-28 46672]
R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2008-01-21 350720]
R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver; C:\Windows\system32\DRIVERS\rtlprot.sys [2007-04-23 25896]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-01-28 19024]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-01-28 51792]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2008-12-20 271360]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2008-12-20 18048]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2008-12-03 25280]
R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
R3 NuidFltr;NUID filter driver; C:\Windows\system32\DRIVERS\NuidFltr.sys [2009-05-09 14736]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-05-16 7465312]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point32k.sys [2008-06-10 33352]
R3 RTL8023xp;Pilote Realtek 10/100 NIC Family NDIS x86; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2006-11-02 47104]
R3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-21 73088]
R3 ZSMC302;AMARICAM 8000; C:\Windows\System32\Drivers\usbvm302.sys [2004-03-19 90968]
S3 aobj37ii;aobj37ii; C:\Windows\system32\drivers\aobj37ii.sys []
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 EagleNT;EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys []
S3 jnv4_mib;jnv4_mib; \??\C:\Users\Maxime\AppData\Local\Temp\jnv4_mib.sys []
S3 MBAMCatchMe;MBAMCatchMe; \??\C:\Windows\system32\drivers\mbamcatchme.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys [2010-01-07 38224]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 RTL8187B;NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter Vista Driver; C:\Windows\system32\DRIVERS\wg111v3.sys [2007-12-28 289280]
S3 usb_rndisx;Carte RNDIS USB; C:\Windows\system32\DRIVERS\usb8023x.sys [2008-01-21 15872]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2009-03-26 36864]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2008-09-04 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2008-09-04 19968]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2008-09-04 24832]
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 WINUSB;Pilote WinUsb; C:\Windows\system32\DRIVERS\WinUSB.SYS [2008-01-21 31616]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S3 XDva222;XDva222; \??\C:\Windows\system32\XDva222.sys []
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-26 132424]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 lxcd_device;lxcd_device; C:\Windows\system32\lxcdcoms.exe [2007-04-15 537520]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-06-08 877864]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-05-16 118784]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2008-09-27 66872]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-04-02 656168]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2008-01-21 523776]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-29 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [2008-09-25 306432]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 usprserv;User Privilege Service; C:\Windows\System32\svchost.exe [2008-01-21 21504]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2008-01-21 917504]

-----------------EOF-----------------

info.txt logfile of random's system information tool 1.06 2010-02-07 09:30:45

======Uninstall list======

-->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\Windows\UNNeroBackItUp.exe /UNINSTALL
-->C:\Windows\UNNeroMediaHome.exe /UNINSTALL
-->C:\Windows\UNNeroShowTime.exe /UNINSTALL
-->C:\Windows\UNNeroVision.exe /UNINSTALL
-->C:\Windows\UNRecode.exe /UNINSTALL
-->MsiExec /X{E4D15328-8C89-484B-B9AA-F5BE9EA6D01C}
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
AMARICAM 8000-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7C74D65E-926A-4774-8517-04359E42BC81}\Setup.exe" -l0x40c
Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
Apple Mobile Device Support-->MsiExec.exe /I{AFA20D47-69C3-4030-8DF8-D37466E70F13}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
EasyBCD 1.7.2-->C:\Program Files\NeoSmart Technologies\EasyBCD\uninstall.exe
Florensia-->C:\Program Files\InstallShield Installation Information\{0C053AE9-9DB6-42EE-B991-B6C57BB5F63F}\setup.exe -runfromtemp -l0x0009 -removeonly
Gestionnaire pour appareils Windows Mobile-->MsiExec.exe /X{904CCF62-818D-4675-BC76-D37EB399F917}
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_0E996B068B56FCA2.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hamachi 1.0.3.0-->C:\Program Files\Hamachi\uninstall.exe
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
iTunes-->MsiExec.exe /I{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Lexmark 6300 Series-->C:\Program Files\Lexmark 6300 Series\Install\x86\Uninst.exe
LG PC Suite II-->C:\Program Files\InstallShield Installation Information\{14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}\setup.exe -runfromtemp -l0x040c -removeonly
LG USB Modem driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C3ABE126-2BB2-4246-BFE1-6797679B3579}\setup.exe" -l0x40c LG -removeonly
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{A1C962E2-2426-49C6-A38B-9A07E40D607C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Mirror's Edge™-->MsiExec.exe /X{AEDBD563-24BB-4EE3-8366-A654DAC2D988}
Mise à jour du pilote du Gestionnaire pour appareils Windows Mobile-->MsiExec.exe /X{E7044E25-3038-4A76-9064-344AC038043E}
Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C}
Mise à jour Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {51EFB347-1F3D-4BAC-8B79-F056B904FE21}
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3}
Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223}
Modèles de sons Windows-->RunDll32 advpack.dll,LaunchINFSection C:\Windows\INF\UltSound.inf,Uninstall
Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Nero 8-->MsiExec.exe /X{D6C9AF27-9414-46C8-B9D8-D878BA041033}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NETGEAR WG111v3 wireless USB 2.0 adapter-->C:\Program Files\InstallShield Installation Information\{5396FBD8-8BD7-47F9-92AE-F62F13D5A11D}\setup.exe -runfromtemp -l0x040c
NVIDIA Drivers-->C:\Windows\system32\NVUNINST.EXE UninstallGUI
NVIDIA PhysX v8.10.17-->MsiExec.exe /X{E4D15328-8C89-484B-B9AA-F5BE9EA6D01C}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Pangya_Eu (GOA)-->C:\Program Files\GOA\Pangya_Eu\uninstall.exe
Patch Darluok-->"C:\Windows\Patch Darluok\uninstall.exe" "/U:C:\Users\Maxime\install jeux\WorldOfWarcraft\Uninstall\uninstall.xml"
QuickTime-->MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}
Radio Fr Solo 1.5-->C:\Program Files\Radio Fr Solo\Uninstall.exe
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB973704)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {E626DC89-A787-4553-9BB3-DC2EC7E1593F}
Security Update for Microsoft Office Excel 2007 (KB973593)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7D6255E3-3423-4D8B-A328-F6F8D28DD5FE}
Security Update for Microsoft Office Outlook 2007 (KB972363)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {120BE9A0-9B09-4855-9E0C-7DEE45CB03C0}
Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
Security Update for Microsoft Office Publisher 2007 (KB969693)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7BE67088-1EB3-4569-8E75-DDAFBF61BC4E}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Skype™ 4.1-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
SweetIM for Messenger 2.6-->MsiExec.exe /X{A1E4213E-06AD-4C58-8315-92F11531D960}
SweetIM Toolbar for Internet Explorer 3.3-->MsiExec.exe /X{266C7330-C0F4-49E5-8F20-A56F9F822875}
TeamSpeak 2 RC2-->"C:\Program Files\Teamspeak2_RC2\unins000.exe"
TeamSpeak 3 Client-->"C:\Program Files\TeamSpeak 3 Client\uninstall.exe"
TortoiseSVN 1.6.2.16344 (32 bit)-->MsiExec.exe /X{FCA37CD2-7BA4-4A5A-8979-B64EA712F4CB}
True Crime® New York City-->MsiExec.exe /I{C920EFB6-59DB-472D-B445-21821477AD17}
TuneUp Utilities 2008-->MsiExec.exe /I{5888428E-699C-4E71-BF71-94EE06B497DA}
TweakVI-->"C:\Windows\TweakVI\uninstall.exe" "/U:C:\Program Files\TweakVI\Uninstall\uninstall.xml"
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft Office InfoPath 2007 (KB976416)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {432C5EE4-8096-4FF1-95E1-65219365DFF7}
Update for Microsoft Office Word 2007 (KB974561)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {0CDDBAA2-2111-4A0E-A1B0-76C40C635331}
Update for Outlook 2007 Junk Email Filter (kb977839)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C568005C-5FC6-4C81-A664-BD136610A931}
VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Windows Live Call-->MsiExec.exe /I{F6BD194C-4190-4D73-B1B1-C48C99921BFE}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}
Windows Live Messenger-->MsiExec.exe /X{A85FD55B-891B-4314-97A5-EA96C0BD80B5}
Windows Live Sign-in Assistant-->MsiExec.exe /I{45338B07-A236-4270-9A77-EBB4115517B5}
Windows Live Writer-->MsiExec.exe /X{178832DE-9DE0-4C87-9F82-9315A9B03985}
World of Warcraft-->C:\Program Files\Common Files\Blizzard Entertainment\Wrath of the Lich King\Uninstall.exe
Wow Cartographe 1.08b-->C:\Program Files\WowCartographe\uninst.exe

======Hosts File======

127.0.0.1 localhost
::1 localhost

======Security center information======

AS: Windows Defender

======System event log======

Computer Name: PC-de-Maxime
Event Code: 15021
Message: Une erreur s’est produite avec l’utilisation de la configuration SSL pour l’adresse de socket 192.168.1.8:63331. Le code du statut de l’erreur est renvoyé avec les données.
Record Number: 276021
Source Name: Microsoft-Windows-HttpEvent
Time Written: 20100207075132.038629-000
Event Type: Erreur
User:

Computer Name: PC-de-Maxime
Event Code: 15021
Message: Une erreur s’est produite avec l’utilisation de la configuration SSL pour l’adresse de socket 192.168.1.9:63331. Le code du statut de l’erreur est renvoyé avec les données.
Record Number: 276022
Source Name: Microsoft-Windows-HttpEvent
Time Written: 20100207075132.038629-000
Event Type: Erreur
User:

Computer Name: PC-de-Maxime
Event Code: 15021
Message: Une erreur s’est produite avec l’utilisation de la configuration SSL pour l’adresse de socket 5.0.0.17:63331. Le code du statut de l’erreur est renvoyé avec les données.
Record Number: 276023
Source Name: Microsoft-Windows-HttpEvent
Time Written: 20100207075132.038629-000
Event Type: Erreur
User:

Computer Name: PC-de-Maxime
Event Code: 15021
Message: Une erreur s’est produite avec l’utilisation de la configuration SSL pour l’adresse de socket 5.114.137.30:63331. Le code du statut de l’erreur est renvoyé avec les données.
Record Number: 276024
Source Name: Microsoft-Windows-HttpEvent
Time Written: 20100207075132.038629-000
Event Type: Erreur
User:

Computer Name: PC-de-Maxime
Event Code: 15016
Message: Impossible d’initialiser le package de sécurité Kerberos pour l’authentification côté serveur. Le champ de données contient le numéro de l’erreur.
Record Number: 276025
Source Name: Microsoft-Windows-HttpEvent
Time Written: 20100207075132.038629-000
Event Type: Erreur
User:

=====Application event log=====

Computer Name: PC-de-Maxime
Event Code: 1000
Message: Application défaillante chrome.exe, version 0.0.0.0, horodatage 0x4b57e078, module défaillant unknown, version 0.0.0.0, horodatage 0x00000000, code d’exception 0xc0000005, décalage d’erreur 0x00000000, ID du processus 0xf30, heure de début de l’application 0x01caa7c99f26e681.
Record Number: 34017
Source Name: Application Error
Time Written: 20100207074651.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Maxime
Event Code: 10
Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
Record Number: 34042
Source Name: Microsoft-Windows-WMI
Time Written: 20100207075238.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Maxime
Event Code: 1000
Message: Application défaillante chrome.exe, version 0.0.0.0, horodatage 0x4b57e078, module défaillant unknown, version 0.0.0.0, horodatage 0x00000000, code d’exception 0xc0000005, décalage d’erreur 0x00000000, ID du processus 0x1684, heure de début de l’application 0x01caa7ce29292cb5.
Record Number: 34045
Source Name: Application Error
Time Written: 20100207082028.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Maxime
Event Code: 1000
Message: Application défaillante chrome.exe, version 0.0.0.0, horodatage 0x4b57e078, module défaillant unknown, version 0.0.0.0, horodatage 0x00000000, code d’exception 0xc0000005, décalage d’erreur 0x00000000, ID du processus 0x500, heure de début de l’application 0x01caa7cebfc3dcb5.
Record Number: 34047
Source Name: Application Error
Time Written: 20100207083005.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Maxime
Event Code: 1000
Message: Application défaillante rundll32.exe, version 6.0.6000.16386, horodatage 0x4549b0e1, module défaillant USER32.dll, version 6.0.6001.18000, horodatage 0x4791a7a6, code d’exception 0xc0000142, décalage d’erreur 0x00009cac, ID du processus 0x16e4, heure de début de l’application 0x01caa7cfc184d125.
Record Number: 34048
Source Name: Application Error
Time Written: 20100207083008.000000-000
Event Type: Erreur
User:

=====Security event log=====

Computer Name: PC-de-Maxime
Event Code: 4634
Message: Fermeture de session d’un compte.

Sujet :
ID de sécurité : S-1-5-7
Nom du compte : ANONYMOUS LOGON
Domaine du compte : AUTORITE NT
ID du compte : 0xe71024

Type d’ouverture de session : 3

Cet événement est généré lorsqu’une session ouverte est supprimée. Il peut être associé à un événement d’ouverture de session en utilisant la valeur ID d’ouverture de session. Les ID d’ouverture de session ne sont uniques qu’entre les redémarrages sur un même ordinateur.
Record Number: 164710
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091025133057.174950-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Maxime
Event Code: 4634
Message: Fermeture de session d’un compte.

Sujet :
ID de sécurité : S-1-5-7
Nom du compte : ANONYMOUS LOGON
Domaine du compte : AUTORITE NT
ID du compte : 0xe71032

Type d’ouverture de session : 3

Cet événement est généré lorsqu’une session ouverte est supprimée. Il peut être associé à un événement d’ouverture de session en utilisant la valeur ID d’ouverture de session. Les ID d’ouverture de session ne sont uniques qu’entre les redémarrages sur un même ordinateur.
Record Number: 164711
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091025133057.180950-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Maxime
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-0-0
Nom du compte : -
Domaine du compte : -
ID d’ouverture de session : 0x0

Type d’ouverture de session : 3

Nouvelle ouverture de session :
ID de sécurité : S-1-5-7
Nom du compte : ANONYMOUS LOGON
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0xe8044e
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x0
Nom du processus : -

Informations sur le réseau :
Nom de la station de travail : PC-DE-CALIMÉRO
Adresse du réseau source : 192.168.1.10
Port source : 49548

Informations détaillées sur l’authentification :
Processus d’ouverture de session : NtLmSsp
Package d’authentification : NTLM
Services en transit : -
Nom du package (NTLM uniquement) : NTLM V1
Longueur de la clé : 128

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 164712
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091025133235.199950-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Maxime
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-0-0
Nom du compte : -
Domaine du compte : -
ID d’ouverture de session : 0x0

Type d’ouverture de session : 3

Nouvelle ouverture de session :
ID de sécurité : S-1-5-7
Nom du compte : ANONYMOUS LOGON
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0xe80465
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x0
Nom du processus : -

Informations sur le réseau :
Nom de la station de travail : PC-DE-CALIMÉRO
Adresse du réseau source : 192.168.1.10
Port source : 49549

Informations détaillées sur l’authentification :
Processus d’ouverture de session : NtLmSsp
Package d’authentification : NTLM
Services en transit : -
Nom du package (NTLM uniquement) : NTLM V1
Longueur de la clé : 128

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 164713
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091025133235.226950-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Maxime
Event Code: 4634
Message: Fermeture de session d’un compte.

Sujet :
ID de sécurité : S-1-5-7
Nom du compte : ANONYMOUS LOGON
Domaine du compte : AUTORITE NT
ID du compte : 0xe8044e

Type d’ouverture de session : 3

Cet événement est généré lorsqu’une session ouverte est supprimée. Il peut être associé à un événement d’ouverture de session en utilisant la valeur ID d’ouverture de session. Les ID d’ouverture de session ne sont uniques qu’entre les redémarrages sur un même ordinateur.
Record Number: 164714
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091025133245.653950-000
Event Type: Succès de l'audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\TortoiseSVN\bin;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 6 Stepping 5, GenuineIntel
"PROCESSOR_REVISION"=0605
"NUMBER_OF_PROCESSORS"=2
"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
"DFSTRACINGON"=FALSE
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip

-----------------EOF-----------------
info.txt logfile of random's system information tool 1.06 2010-02-07 09:30:45

======Uninstall list======

-->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\Windows\UNNeroBackItUp.exe /UNINSTALL
-->C:\Windows\UNNeroMediaHome.exe /UNINSTALL
-->C:\Windows\UNNeroShowTime.exe /UNINSTALL
-->C:\Windows\UNNeroVision.exe /UNINSTALL
-->C:\Windows\UNRecode.exe /UNINSTALL
-->MsiExec /X{E4D15328-8C89-484B-B9AA-F5BE9EA6D01C}
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
AMARICAM 8000-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7C74D65E-926A-4774-8517-04359E42BC81}\Setup.exe" -l0x40c
Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
Apple Mobile Device Support-->MsiExec.exe /I{AFA20D47-69C3-4030-8DF8-D37466E70F13}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
EasyBCD 1.7.2-->C:\Program Files\NeoSmart Technologies\EasyBCD\uninstall.exe
Florensia-->C:\Program Files\InstallShield Installation Information\{0C053AE9-9DB6-42EE-B991-B6C57BB5F63F}\setup.exe -runfromtemp -l0x0009 -removeonly
Gestionnaire pour appareils Windows Mobile-->MsiExec.exe /X{904CCF62-818D-4675-BC76-D37EB399F917}
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_0E996B068B56FCA2.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hamachi 1.0.3.0-->C:\Program Files\Hamachi\uninstall.exe
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
iTunes-->MsiExec.exe /I{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Lexmark 6300 Series-->C:\Program Files\Lexmark 6300 Series\Install\x86\Uninst.exe
LG PC Suite II-->C:\Program Files\InstallShield Installation Information\{14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}\setup.exe -runfromtemp -l0x040c -removeonly
LG USB Modem driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C3ABE126-2BB2-4246-BFE1-6797679B3579}\setup.exe" -l0x40c LG -removeonly
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{A1C962E2-2426-49C6-A38B-9A07E40D607C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Micro

Autres pages sur : probleme control center

a c 296 8 Sécurité
7 Février 2010 12:07:06

Bonjour,

Je vois plusieurs infections.

  • Désinstalle SweetIM.

  • Désactive l'UAC le temps de la désinfection.
  • Télécharge Lop S&D (par Eric_71) sur ton Bureau.
  • Puis double-clique sur Lop S&D présent sur ton Bureau.
    (Sous Vista, il faut cliquer droit sur Lop S&D et choisir Exécuter en tant qu'administrateur)
  • Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche).
  • Patiente jusqu'à la fin du scan.
  • Poste le rapport généré (C:\lopR.txt).
    12 Février 2010 14:30:45

    bonjour,
    merci pour ta reponse voila le rapport généré par Lop S&D:

    --------------------\\ Lop S&D 4.2.5-0 XP/Vista

    Microsoft® Windows Vista™ Édition Intégrale ( v6.0.6001 ) Service Pack 1
    X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) D CPU 3.00GHz )
    BIOS : Default System BIOS
    USER : Maxime ( Administrator )
    BOOT : Normal boot
    C:\ (Local Disk) - NTFS - Total:232 Go (Free:96 Go)
    D:\ (CD or DVD)
    E:\ (CD or DVD)

    "C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
    Option : [1] ( 12/02/2010|14:13 )

    [ UAC => 0 ]

    --------------------\\ Listing des dossiers dans Local

    [21/01/2009|11:47] C:\Users\Maxime\AppData\Local\Adobe
    [04/10/2008|11:13] C:\Users\Maxime\AppData\Local\Ahead
    [31/01/2009|18:32] C:\Users\Maxime\AppData\Local\Apple
    [31/01/2009|18:35] C:\Users\Maxime\AppData\Local\Apple Computer
    [23/09/2008|15:56] C:\Users\Maxime\AppData\Local\Application Data
    [16/09/2009|09:35] C:\Users\Maxime\AppData\Local\Apps
    [29/01/2010|16:21] C:\Users\Maxime\AppData\Local\Blizzard Entertainment
    [23/09/2008|16:01] C:\Users\Maxime\AppData\Local\d3d9caps.dat
    [05/12/2009|20:42] C:\Users\Maxime\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [16/09/2009|09:35] C:\Users\Maxime\AppData\Local\Deployment
    [05/10/2008|16:16] C:\Users\Maxime\AppData\Local\DNA
    [21/12/2008|14:20] C:\Users\Maxime\AppData\Local\Downloaded Installations
    [08/11/2009|08:03] C:\Users\Maxime\AppData\Local\GDIPFONTCACHEV1.DAT
    [11/12/2009|17:01] C:\Users\Maxime\AppData\Local\Google
    [23/09/2008|15:56] C:\Users\Maxime\AppData\Local\Historique
    [12/02/2010|14:04] C:\Users\Maxime\AppData\Local\IconCache.db
    [06/02/2010|16:44] C:\Users\Maxime\AppData\Local\Microsoft
    [21/04/2009|19:42] C:\Users\Maxime\AppData\Local\Microsoft Game Studios
    [07/12/2008|17:44] C:\Users\Maxime\AppData\Local\Microsoft Games
    [23/09/2008|17:02] C:\Users\Maxime\AppData\Local\Microsoft Help
    [26/04/2009|21:15] C:\Users\Maxime\AppData\Local\Mozilla
    [05/10/2008|18:36] C:\Users\Maxime\AppData\Local\Oblivion
    [27/09/2008|17:37] C:\Users\Maxime\AppData\Local\PunkBuster
    [12/02/2010|14:12] C:\Users\Maxime\AppData\Local\Temp
    [23/09/2008|15:56] C:\Users\Maxime\AppData\Local\Temporary Internet Files
    [12/02/2010|14:06] C:\Users\Maxime\AppData\Local\TSVNCache
    [07/02/2010|14:05] C:\Users\Maxime\AppData\Local\VirtualStore

    --------------------\\ Tâches planifiées dans C:\Windows\tasks

    [12/02/2010 14:06][--ah-----] C:\Windows\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
    [07/02/2010 23:45][--a------] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1463078487-2333592742-3352730541-1000UA.job
    [07/02/2010 18:45][--a------] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1463078487-2333592742-3352730541-1000Core.job
    [25/09/2008 17:52][--a------] C:\Windows\tasks\Maintenance en 1 clic.job
    [12/02/2010 14:06][--ah-----] C:\Windows\tasks\SA.DAT
    [12/02/2010 14:05][--a------] C:\Windows\tasks\SCHEDLGU.TXT

    --------------------\\ Listing des dossiers dans C:\ProgramData

    [11/04/2009|19:41] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
    [21/01/2009|11:46] C:\ProgramData\Adobe
    [06/02/2010|12:58] C:\ProgramData\Alwil Software
    [11/04/2009|19:37] C:\ProgramData\Apple
    [11/04/2009|19:39] C:\ProgramData\Apple Computer
    [02/11/2006|14:00] C:\ProgramData\Application Data
    [27/02/2009|19:30] C:\ProgramData\Blizzard
    [23/09/2008|15:53] C:\ProgramData\Bureau
    [23/09/2008|17:23] C:\ProgramData\DAEMON Tools Pro
    [02/11/2006|14:00] C:\ProgramData\Desktop
    [02/11/2006|14:00] C:\ProgramData\Documents
    [20/10/2008|19:40] C:\ProgramData\Electronic Arts
    [23/09/2008|15:53] C:\ProgramData\Favoris
    [02/11/2006|14:00] C:\ProgramData\Favorites
    [13/02/2009|22:55] C:\ProgramData\Google
    [16/12/2009|18:49] C:\ProgramData\gram pop blue.6ldhr
    [08/10/2008|19:23] C:\ProgramData\InstallShield
    [06/02/2010|17:01] C:\ProgramData\Malwarebytes
    [27/11/2008|18:32] C:\ProgramData\Media Center Programs
    [23/09/2008|15:53] C:\ProgramData\Menu D‚marrer
    [23/09/2008|19:48] C:\ProgramData\Messenger Plus!
    [06/02/2010|16:44] C:\ProgramData\Microsoft
    [16/01/2010|01:37] C:\ProgramData\Microsoft Help
    [23/09/2008|15:53] C:\ProgramData\ModŠles
    [04/10/2008|11:07] C:\ProgramData\Nero
    [07/02/2010|08:33] C:\ProgramData\ntuser.pol
    [23/09/2008|16:05] C:\ProgramData\NVIDIA
    [06/02/2010|13:00] C:\ProgramData\playwindowpart
    [14/11/2009|15:36] C:\ProgramData\show default default.00a9v
    [21/11/2009|22:50] C:\ProgramData\show default default.00h7a
    [20/09/2009|18:41] C:\ProgramData\show default default.0210p7u
    [31/10/2009|18:08] C:\ProgramData\show default default.02th6
    [25/10/2009|17:39] C:\ProgramData\show default default.033st
    [17/01/2010|15:10] C:\ProgramData\show default default.03bw9
    [10/10/2009|17:32] C:\ProgramData\show default default.03cz1
    [26/11/2009|19:13] C:\ProgramData\show default default.03qp6t0
    [18/10/2009|19:52] C:\ProgramData\show default default.03s23pu
    [16/09/2009|17:54] C:\ProgramData\show default default.0449j
    [18/12/2009|22:06] C:\ProgramData\show default default.04k0h
    [05/12/2009|11:16] C:\ProgramData\show default default.04ve2
    [29/11/2009|14:38] C:\ProgramData\show default default.053qzy
    [05/02/2010|16:52] C:\ProgramData\show default default.053u1zq
    [15/09/2009|19:35] C:\ProgramData\show default default.05eichu
    [28/01/2010|17:55] C:\ProgramData\show default default.05h3nx
    [02/02/2010|20:39] C:\ProgramData\show default default.06vk2
    [25/10/2009|19:06] C:\ProgramData\show default default.074t5yj
    [17/01/2010|10:05] C:\ProgramData\show default default.094bel9
    [04/12/2009|23:15] C:\ProgramData\show default default.097tbbh
    [26/09/2009|13:35] C:\ProgramData\show default default.09gz5ui
    [04/09/2009|13:30] C:\ProgramData\show default default.0azqnk
    [26/09/2009|20:08] C:\ProgramData\show default default.0c97dbj
    [31/10/2009|14:29] C:\ProgramData\show default default.0cpev1j
    [05/02/2010|16:30] C:\ProgramData\show default default.0ea7v
    [22/11/2009|09:31] C:\ProgramData\show default default.0educhf
    [16/10/2009|15:01] C:\ProgramData\show default default.0efo4
    [11/09/2009|18:07] C:\ProgramData\show default default.0f4kk1
    [20/09/2009|15:02] C:\ProgramData\show default default.0fbec4v
    [22/11/2009|13:09] C:\ProgramData\show default default.0giq38
    [15/01/2010|20:54] C:\ProgramData\show default default.0gl92
    [02/02/2010|16:39] C:\ProgramData\show default default.0gzk0
    [28/11/2009|11:32] C:\ProgramData\show default default.0hjzj
    [30/12/2009|19:38] C:\ProgramData\show default default.0j09rn
    [04/02/2010|18:01] C:\ProgramData\show default default.0j8ji0
    [19/10/2009|16:37] C:\ProgramData\show default default.0k2wf8
    [22/09/2009|19:02] C:\ProgramData\show default default.0kh7h
    [29/11/2009|18:16] C:\ProgramData\show default default.0kr7n90
    [01/02/2010|19:59] C:\ProgramData\show default default.0lf30m
    [18/01/2010|22:27] C:\ProgramData\show default default.0moocl
    [01/01/2010|23:36] C:\ProgramData\show default default.0mouaj
    [12/09/2009|12:56] C:\ProgramData\show default default.0mq6w3
    [14/11/2009|14:52] C:\ProgramData\show default default.0n67a0h
    [16/10/2009|16:28] C:\ProgramData\show default default.0nfpw
    [06/09/2009|10:21] C:\ProgramData\show default default.0nvqg
    [24/10/2009|17:03] C:\ProgramData\show default default.0nvv2
    [04/02/2010|18:45] C:\ProgramData\show default default.0o6ubq7
    [04/10/2009|20:23] C:\ProgramData\show default default.0oc41te
    [06/11/2009|14:26] C:\ProgramData\show default default.0odnlj
    [06/12/2009|09:40] C:\ProgramData\show default default.0oecb
    [08/01/2010|22:10] C:\ProgramData\show default default.0omjw8y
    [19/09/2009|17:44] C:\ProgramData\show default default.0p5le
    [25/10/2009|11:28] C:\ProgramData\show default default.0pg9v6u
    [16/09/2009|12:26] C:\ProgramData\show default default.0qb2j
    [20/11/2009|21:18] C:\ProgramData\show default default.0qe1iu
    [23/10/2009|17:55] C:\ProgramData\show default default.0qmwbzy
    [24/10/2009|23:15] C:\ProgramData\show default default.0r0iya
    [19/09/2009|19:11] C:\ProgramData\show default default.0r6oq9t
    [16/10/2009|17:12] C:\ProgramData\show default default.0sptlmy
    [18/09/2009|18:57] C:\ProgramData\show default default.0t24a
    [29/01/2010|14:19] C:\ProgramData\show default default.0ucklv
    [05/12/2009|21:49] C:\ProgramData\show default default.0ufu7zm
    [16/01/2010|22:19] C:\ProgramData\show default default.0v82xag
    [19/10/2009|18:48] C:\ProgramData\show default default.0v9oxs
    [17/09/2009|19:31] C:\ProgramData\show default default.0vktiev
    [16/01/2010|17:35] C:\ProgramData\show default default.0vt430d
    [25/10/2009|16:11] C:\ProgramData\show default default.0wimhvb
    [22/01/2010|22:22] C:\ProgramData\show default default.0xdxm00
    [30/12/2009|16:21] C:\ProgramData\show default default.0xx3t16
    [30/01/2010|18:43] C:\ProgramData\show default default.0yawzd
    [03/09/2009|16:57] C:\ProgramData\show default default.0z1jspa
    [10/11/2009|23:45] C:\ProgramData\show default default.10e1xm
    [29/11/2009|20:49] C:\ProgramData\show default default.10fhl
    [13/12/2009|14:59] C:\ProgramData\show default default.10j25f
    [05/09/2009|22:45] C:\ProgramData\show default default.10w1e
    [06/12/2009|15:30] C:\ProgramData\show default default.124bqo
    [06/02/2010|12:19] C:\ProgramData\show default default.134nuaq
    [17/01/2010|09:43] C:\ProgramData\show default default.13dua6
    [13/12/2009|10:15] C:\ProgramData\show default default.13gw8
    [18/10/2009|11:08] C:\ProgramData\show default default.14d34xr
    [08/01/2010|18:53] C:\ProgramData\show default default.14v1xp
    [31/10/2009|18:51] C:\ProgramData\show default default.16imk
    [14/12/2009|19:58] C:\ProgramData\show default default.16or13
    [10/01/2010|11:27] C:\ProgramData\show default default.16ypv
    [10/10/2009|12:48] C:\ProgramData\show default default.173dck
    [03/10/2009|14:27] C:\ProgramData\show default default.17x55
    [20/09/2009|20:08] C:\ProgramData\show default default.17xq8q
    [20/10/2009|20:05] C:\ProgramData\show default default.18195ad
    [02/09/2009|22:09] C:\ProgramData\show default default.18dj48e
    [03/01/2010|19:15] C:\ProgramData\show default default.18g62di
    [25/01/2010|19:57] C:\ProgramData\show default default.18rcm2m
    [13/12/2009|02:28] C:\ProgramData\show default default.19po3s
    [16/09/2009|21:11] C:\ProgramData\show default default.19qn2
    [01/02/2010|22:54] C:\ProgramData\show default default.19usj
    [27/09/2009|19:16] C:\ProgramData\show default default.1adxt1z
    [24/11/2009|19:27] C:\ProgramData\show default default.1ah8n2
    [25/11/2009|21:44] C:\ProgramData\show default default.1akgq
    [11/09/2009|18:51] C:\ProgramData\show default default.1akw0
    [06/12/2009|11:08] C:\ProgramData\show default default.1auyg
    [29/10/2009|20:29] C:\ProgramData\show default default.1b0fwd9
    [05/09/2009|17:07] C:\ProgramData\show default default.1bdrjgf
    [06/09/2009|18:21] C:\ProgramData\show default default.1bes54l
    [10/10/2009|18:59] C:\ProgramData\show default default.1bjbkr
    [16/09/2009|09:53] C:\ProgramData\show default default.1bvb0
    [02/02/2010|21:01] C:\ProgramData\show default default.1deg0
    [12/11/2009|19:25] C:\ProgramData\show default default.1ds7xc7
    [20/09/2009|09:56] C:\ProgramData\show default default.1dugdf
    [30/09/2009|18:31] C:\ProgramData\show default default.1e3nfnq
    [27/12/2009|21:42] C:\ProgramData\show default default.1e5ng
    [03/09/2009|17:19] C:\ProgramData\show default default.1e9lul
    [09/01/2010|10:42] C:\ProgramData\show default default.1eaxk
    [25/09/2009|20:43] C:\ProgramData\show default default.1egoea
    [16/09/2009|16:27] C:\ProgramData\show default default.1ekemqe
    [14/11/2009|18:08] C:\ProgramData\show default default.1g1ceb1
    [25/10/2009|20:34] C:\ProgramData\show default default.1gv0y
    [30/01/2010|12:32] C:\ProgramData\show default default.1h78s
    [06/11/2009|17:42] C:\ProgramData\show default default.1ju1fo
    [27/12/2009|17:20] C:\ProgramData\show default default.1k6gt
    [04/12/2009|15:36] C:\ProgramData\show default default.1kgbja1
    [31/01/2010|15:11] C:\ProgramData\show default default.1l8kr
    [29/01/2010|17:39] C:\ProgramData\show default default.1ledlq2
    [30/12/2009|13:27] C:\ProgramData\show default default.1lnhsny
    [24/01/2010|21:23] C:\ProgramData\show default default.1loeye
    [29/01/2010|22:37] C:\ProgramData\show default default.1lpa0y
    [13/09/2009|21:38] C:\ProgramData\show default default.1lrl6bd
    [28/10/2009|22:18] C:\ProgramData\show default default.1ltvykb
    [28/10/2009|23:02] C:\ProgramData\show default default.1mfg7
    [15/11/2009|19:36] C:\ProgramData\show default default.1n595w
    [26/09/2009|13:56] C:\ProgramData\show default default.1n6p5ig
    [19/09/2009|09:00] C:\ProgramData\show default default.1nb9k
    [22/09/2009|19:24] C:\ProgramData\show default default.1ne547f
    [03/02/2010|19:07] C:\ProgramData\show default default.1nhas
    [07/11/2009|20:54] C:\ProgramData\show default default.1nofth
    [24/10/2009|19:14] C:\ProgramData\show default default.1o4qd
    [07/11/2009|18:21] C:\ProgramData\show default default.1o4ubbc
    [24/11/2009|21:38] C:\ProgramData\show default default.1ofk8u
    [08/11/2009|14:36] C:\ProgramData\show default default.1ozrx
    [10/10/2009|20:27] C:\ProgramData\show default default.1ph7f
    [05/12/2009|08:43] C:\ProgramData\show default default.1pph0j4
    [31/10/2009|08:33] C:\ProgramData\show default default.1qhea
    [17/10/2009|11:28] C:\ProgramData\show default default.1qrnim
    [15/09/2009|19:57] C:\ProgramData\show default default.1rkv4u1
    [03/11/2009|19:24] C:\ProgramData\show default default.1rsaqe
    [28/11/2009|18:27] C:\ProgramData\show default default.1s17k
    [19/11/2009|22:23] C:\ProgramData\show default default.1s68e
    [06/09/2009|12:32] C:\ProgramData\show default default.1soa2
    [23/01/2010|20:38] C:\ProgramData\show default default.1t6ybi9
    [04/02/2010|21:40] C:\ProgramData\show default default.1tcrm9q
    [18/10/2009|12:57] C:\ProgramData\show default default.1twl7
    [29/01/2010|00:28] C:\ProgramData\show default default.1v0orh6
    [06/09/2009|20:11] C:\ProgramData\show default default.1vjxx
    [05/01/2010|20:58] C:\ProgramData\show default default.1wz87n9
    [13/11/2009|23:56] C:\ProgramData\show default default.1xzf39
    [14/11/2009|19:58] C:\ProgramData\show default default.1y0ft56
    [13/11/2009|23:34] C:\ProgramData\show default default.1yfdgw
    [15/12/2009|21:25] C:\ProgramData\show default default.1ymk07
    [01/02/2010|20:43] C:\ProgramData\show default default.1ywh92n
    [29/10/2009|20:51] C:\ProgramData\show default default.1z0fxba
    [07/01/2010|21:38] C:\ProgramData\show default default.1z3q8f
    [10/01/2010|11:05] C:\ProgramData\show default default.1zdzv
    [04/09/2009|16:53] C:\ProgramData\show default default.1zoc8
    [27/11/2009|22:58] C:\ProgramData\show default default.1zwdvn
    [05/01/2010|17:42] C:\ProgramData\show default default.20k8cr
    [26/09/2009|15:24] C:\ProgramData\show default default.2167u
    [15/11/2009|15:20] C:\ProgramData\show default default.217bezj
    [04/09/2009|16:10] C:\ProgramData\show default default.21jfv74
    [31/01/2010|16:39] C:\ProgramData\show default default.21xz89
    [12/12/2009|16:17] C:\ProgramData\show default default.23095vw
    [05/12/2009|17:49] C:\ProgramData\show default default.23cvlec
    [28/12/2009|22:54] C:\ProgramData\show default default.25ksr16
    [02/01/2010|20:08] C:\ProgramData\show default default.25r6k2
    [30/10/2009|21:49] C:\ProgramData\show default default.26jj5w
    [02/09/2009|19:57] C:\ProgramData\show default default.26l1p1j
    [09/01/2010|21:15] C:\ProgramData\show default default.26l8tuj
    [25/10/2009|21:39] C:\ProgramData\show default default.27ebtf
    [02/10/2009|22:19] C:\ProgramData\show default default.27imm
    [03/10/2009|19:54] C:\ProgramData\show default default.27rxg
    [20/09/2009|15:24] C:\ProgramData\show default default.27yfo
    [04/09/2009|12:24] C:\ProgramData\show default default.28l1m
    [08/11/2009|12:03] C:\ProgramData\show default default.28mem
    [16/09/2009|13:54] C:\ProgramData\show default default.29300rp
    [25/11/2009|21:00] C:\ProgramData\show default default.29dbyw
    [24/01/2010|17:22] C:\ProgramData\show default default.29ebw5
    [30/01/2010|16:32] C:\ProgramData\show default default.29os5
    [03/09/2009|10:02] C:\ProgramData\show default default.29yi4
    [21/11/2009|20:39] C:\ProgramData\show default default.2ak9j
    [12/12/2009|18:34] C:\ProgramData\show default default.2b1ty3
    [06/09/2009|20:54] C:\ProgramData\show default default.2bbhfrt
    [29/12/2009|20:57] C:\ProgramData\show default default.2bem4zk
    [20/09/2009|16:29] C:\ProgramData\show default default.2bz95s
    [13/12/2009|17:10] C:\ProgramData\show default default.2c5k5z
    [15/11/2009|18:08] C:\ProgramData\show default default.2d06vn
    [19/10/2009|16:58] C:\ProgramData\show default default.2da9r
    [27/01/2010|21:56] C:\ProgramData\show default default.2dtpu
    [18/01/2010|11:10] C:\ProgramData\show default default.2e92p11
    [29/11/2009|15:44] C:\ProgramData\show default default.2ea3az
    [25/10/2009|14:44] C:\ProgramData\show default default.2elz1
    [13/11/2009|22:51] C:\ProgramData\show default default.2ew1z
    [22/10/2009|20:02] C:\ProgramData\show default default.2f5w7
    [10/10/2009|14:59] C:\ProgramData\show default default.2f8dh
    [03/01/2010|14:31] C:\ProgramData\show default default.2fdm8
    [18/01/2010|11:32] C:\ProgramData\show default default.2h87k21
    [28/11/2009|23:11] C:\ProgramData\show default default.2h9ixuk
    [18/10/2009|21:19] C:\ProgramData\show default default.2hmyk
    [16/10/2009|18:39] C:\ProgramData\show default default.2hnxai
    [31/12/2009|12:52] C:\ProgramData\show default default.2hqfkwz
    [27/09/2009|18:32] C:\ProgramData\show default default.2hrg8
    [10/10/2009|09:53] C:\ProgramData\show default default.2htbr3
    [30/10/2009|18:45] C:\ProgramData\show default default.2j2j3k2
    [18/01/2010|12:15] C:\ProgramData\show default default.2jkuv5
    [20/09/2009|10:18] C:\ProgramData\show default default.2l38m
    [17/01/2010|16:38] C:\ProgramData\show default default.2mbz9
    [04/12/2009|11:57] C:\ProgramData\show default default.2mk3kmg
    [02/09/2009|13:24] C:\ProgramData\show default default.2ng0e
    [06/02/2010|10:29] C:\ProgramData\show default default.2o35grd
    [22/10/2009|19:40] C:\ProgramData\show default default.2ogs2ug
    [03/09/2009|10:46] C:\ProgramData\show default default.2p0o3y1
    [06/01/2010|18:56] C:\ProgramData\show default default.2p6oln
    [14/11/2009|22:31] C:\ProgramData\show default default.2pcyr6b
    [05/02/2010|18:42] C:\ProgramData\show default default.2pjghp
    [23/11/2009|18:44] C:\ProgramData\show default default.2q19y5
    [21/11/2009|00:13] C:\ProgramData\show default default.2q3tm
    [03/09/2009|13:40] C:\ProgramData\show default default.2q46cq
    [29/01/2010|22:59] C:\ProgramData\show default default.2q6ne
    [01/02/2010|20:21] C:\ProgramData\show default default.2qaoaz
    [11/11/2009|15:29] C:\ProgramData\show default default.2qu6c
    [24/10/2009|07:35] C:\ProgramData\show default default.2qvos8y
    [22/11/2009|22:09] C:\ProgramData\show default default.2qvtrl
    [14/11/2009|11:57] C:\ProgramData\show default default.2rlwes
    [11/10/2009|10:16] C:\ProgramData\show default default.2rmjnz
    [12/09/2009|00:19] C:\ProgramData\show default default.2sp1d5l
    [26/09/2009|15:02] C:\ProgramData\show default default.2ss1b
    [06/09/2009|17:38] C:\ProgramData\show default default.2ssdut
    [17/11/2009|21:57] C:\ProgramData\show default default.2sy8b
    [22/11/2009|16:48] C:\ProgramData\show default default.2tca6
    [28/10/2009|21:35] C:\ProgramData\show default default.2tdnd3
    [28/11/2009|09:43] C:\ProgramData\show default default.2ug2i
    [16/12/2009|22:27] C:\ProgramData\show default default.2uvw1
    [18/12/2009|19:33] C:\ProgramData\show default default.2v4mo
    [22/01/2010|16:11] C:\ProgramData\show default default.2v9rird
    [29/11/2009|13:11] C:\ProgramData\show default default.2vmptqp
    [31/01/2010|19:12] C:\ProgramData\show default default.2vv7hgf
    [19/10/2009|20:59] C:\ProgramData\show default default.2x7hw
    [09/01/2010|19:26] C:\ProgramData\show default default.2xi1k
    [09/01/2010|16:53] C:\ProgramData\show default default.2xslx6
    [04/10/2009|07:32] C:\ProgramData\show default default.2xyzcts
    [24/09/2009|18:34] C:\ProgramData\show default default.2y9whbt
    [21/11/2009|21:01] C:\ProgramData\show default default.2yf57p
    [30/12/2009|17:49] C:\ProgramData\show default default.2zc3h
    [02/09/2009|18:08] C:\ProgramData\show default default.2zjhr
    [13/12/2009|11:42] C:\ProgramData\show default default.309x4
    [16/01/2010|13:13] C:\ProgramData\show default default.30e21g2
    [22/11/2009|16:26] C:\ProgramData\show default default.30lnb
    [31/12/2009|14:41] C:\ProgramData\show default default.30t1961
    [05/09/2009|17:40] C:\ProgramData\show default default.31nx52
    [18/09/2009|20:03] C:\ProgramData\show default default.32cr6zo
    [06/12/2009|10:46] C:\ProgramData\show default default.32garaa
    [10/11/2009|18:17] C:\ProgramData\show default default.32h2s
    [31/01/2010|09:44] C:\ProgramData\show default default.331f7
    [23/01/2010|11:54] C:\ProgramData\show default default.33kmww
    [16/09/2009|10:59] C:\ProgramData\show default default.33lksyg
    [21/09/2009|17:56] C:\ProgramData\show default default.33n9p85
    [22/01/2010|23:06] C:\ProgramData\show default default.33tfdc
    [12/11/2009|19:47] C:\ProgramData\show default default.34ama
    [23/09/2009|19:47] C:\ProgramData\show default default.34naqo
    [23/11/2009|22:22] C:\ProgramData\show default default.35ky4
    [02/09/2009|17:25] C:\ProgramData\show default default.36iq1
    [05/01/2010|19:09] C:\ProgramData\show default default.3792kz
    [23/10/2009|19:00] C:\ProgramData\show default default.37ft1q
    [03/10/2009|15:10] C:\ProgramData\show default default.38wx5tr
    [03/02/2010|00:18] C:\ProgramData\show default default.39k384k
    [11/10/2009|15:43] C:\ProgramData\show default default.39kv5
    [04/12/2009|10:52] C:\ProgramData\show default default.3agcx
    [07/01/2010|19:27] C:\ProgramData\show default default.3ajm5g
    [19/12/2009|11:06] C:\ProgramData\show default default.3astf
    [05/01/2010|20:15] C:\ProgramData\show default default.3bejnp
    [08/01/2010|19:37] C:\ProgramData\show default default.3blncz
    [13/11/2009|22:29] C:\ProgramData\show default default.3cber
    [04/10/2009|21:28] C:\ProgramData\show default default.3cisa2o
    [24/01/2010|17:44] C:\ProgramData\show default default.3ckbc
    [01/02/2010|22:32] C:\ProgramData\show default default.3d05uc
    [03/09/2009|15:30] C:\ProgramData\show default default.3e6em6r
    [20/11/2009|18:23] C:\ProgramData\show default default.3egkg
    [29/09/2009|18:59] C:\ProgramData\show default default.3ehw4s4
    [02/01/2010|21:36] C:\ProgramData\show default default.3fiu7k
    [16/09/2009|20:05] C:\ProgramData\show default default.3gtzedz
    [04/01/2010|20:22] C:\ProgramData\show default default.3h1wffi
    [05/12/2009|14:32] C:\ProgramData\show default default.3i5s75
    [24/01/2010|21:01] C:\ProgramData\show default default.3ihyi
    [26/09/2009|19:02] C:\ProgramData\show default default.3ilsw
    [04/09/2009|21:58] C:\ProgramData\show default default.3j7eto
    [19/10/2009|17:20] C:\ProgramData\show default default.3jletnk
    [30/01/2010|14:21] C:\ProgramData\show default default.3lzons
    [31/01/2010|18:28] C:\ProgramData\show default default.3me3y9
    [01/11/2009|17:42] C:\ProgramData\show default default.3mfyg
    [13/12/2009|00:17] C:\ProgramData\show default default.3mi9ztf
    [05/01/2010|19:31] C:\ProgramData\show default default.3mri75
    [03/11/2009|19:46] C:\ProgramData\show default default.3mtchg
    [16/01/2010|00:54] C:\ProgramData\show default default.3mxq42d
    [06/01/2010|23:11] C:\ProgramData\show default default.3n6xktb
    [26/10/2009|19:44] C:\ProgramData\show default default.3ni8e2
    [03/09/2009|16:35] C:\ProgramData\show default default.3nkpg
    [09/10/2009|21:06] C:\ProgramData\show default default.3om5azg
    [10/10/2009|11:21] C:\ProgramData\show default default.3psjmy
    [03/02/2010|17:40] C:\ProgramData\show default default.3pv3ajb
    [14/11/2009|16:19] C:\ProgramData\show default default.3pxksa6
    [04/12/2009|20:20] C:\ProgramData\show default default.3q3q6
    [17/10/2009|15:28] C:\ProgramData\show default default.3qhbs
    [22/11/2009|13:31] C:\ProgramData\show default default.3qsqfu
    [16/01/2010|15:24] C:\ProgramData\show default default.3qt64
    [31/01/2010|15:55] C:\ProgramData\show default default.3rioij
    [21/11/2009|15:12] C:\ProgramData\show default default.3s7m7
    [26/10/2009|21:33] C:\ProgramData\show default default.3safa
    [15/09/2009|23:14] C:\ProgramData\show default default.3sll04m
    [19/11/2009|21:39] C:\ProgramData\show default default.3sy3cip
    [24/10/2009|09:25] C:\ProgramData\show default default.3tb0v
    [18/09/2009|09:51] C:\ProgramData\show default default.3tqdli
    [22/01/2010|19:49] C:\ProgramData\show default default.3u0lv0
    [18/01/2010|17:43] C:\ProgramData\show default default.3u5hh
    [30/01/2010|22:00] C:\ProgramData\show default default.3uzc1jg
    [04/09/2009|13:08] C:\ProgramData\show default default.3va6n
    [16/09/2009|21:54] C:\ProgramData\show default default.3vflir2
    [15/11/2009|20:41] C:\ProgramData\show default default.3vg89
    [24/10/2009|09:46] C:\ProgramData\show default default.3x1jw
    [17/01/2010|12:59] C:\ProgramData\show default default.3x1s0ew
    [12/09/2009|22:54] C:\ProgramData\show default default.3xibs
    [31/12/2009|23:03] C:\ProgramData\show default default.3y15wpu
    [10/10/2009|15:21] C:\ProgramData\show default default.3y5rd
    [24/10/2009|21:47] C:\ProgramData\show default default.3zdfz
    [04/01/2010|23:17] C:\ProgramData\show default default.3zp8j
    [23/10/2009|20:28] C:\ProgramData\show default default.3zvgbbp
    [27/10/2009|20:26] C:\ProgramData\show default default.405w1kg
    [03/09/2009|13:19] C:\ProgramData\show default default.408dd30
    [03/01/2010|10:30] C:\ProgramData\show default default.40c7cco
    [27/01/2010|19:02] C:\ProgramData\show default default.40k4rd
    [30/09/2009|18:53] C:\ProgramData\show default default.414l77
    [19/10/2009|18:04] C:\ProgramData\show default default.41itpz
    [31/10/2009|11:56] C:\ProgramData\show default default.41l5t
    [19/09/2009|09:21] C:\ProgramData\show default default.41mtbs
    [02/02/2010|20:17] C:\ProgramData\show default default.41u13fd
    [16/12/2009|19:54] C:\ProgramData\show default default.426pvo
    [18/09/2009|22:36] C:\ProgramData\show default default.42hbrhy
    [17/10/2009|20:12] C:\ProgramData\show default default.42o7uyo
    [15/01/2010|21:15] C:\ProgramData\show default default.43fwf
    [15/01/2010|19:04] C:\ProgramData\show default default.43fxvqn
    [17/09/2009|20:15] C:\ProgramData\show default default.43lycnx
    [26/09/2009|15:46] C:\ProgramData\show default default.447ys
    [01/01/2010|10:07] C:\ProgramData\show default default.44d8k1
    [15/11/2009|13:08] C:\ProgramData\show default default.44m5hfi
    [16/10/2009|18:18] C:\ProgramData\show default default.44mzsj
    [06/12/2009|09:18] C:\ProgramData\show default default.44z5y
    [27/09/2009|17:48] C:\ProgramData\show default default.45pm1dt
    [18/10/2009|20:14] C:\ProgramData\show default default.46hsxyj
    [22/01/2010|15:05] C:\ProgramData\show default default.46o6r1u
    [29/11/2009|22:17] C:\ProgramData\show default default.47art
    [13/09/2009|16:10] C:\ProgramData\show default default.47j0k
    [06/01/2010|18:12] C:\ProgramData\show default default.47m8n91
    [31/12/2009|18:41] C:\ProgramData\show default default.47pu8r
    [30/12/2009|23:38] C:\ProgramData\show default default.4815mkv
    [29/11/2009|09:10] C:\ProgramData\show default default.49osh6
    [31/10/2009|16:40] C:\ProgramData\show default default.4a1588
    [03/09/2009|12:35] C:\ProgramData\show default default.4a3r4p
    [04/12/2009|21:47] C:\ProgramData\show default default.4atpit
    [13/09/2009|17:37] C:\ProgramData\show default default.4aued
    [12/12/2009|20:01] C:\ProgramData\show default default.4b46q
    [17/01/2010|20:16] C:\ProgramData\show default default.4base2u
    [06/01/2010|19:18] C:\ProgramData\show default default.4bd7i
    [19/09/2009|18:06] C:\ProgramData\show default default.4bpxn
    [13/12/2009|01:01] C:\ProgramData\show default default.4bth8k
    [05/12/2009|20:22] C:\ProgramData\show default default.4c2it
    [31/12/2009|19:47] C:\ProgramData\show default default.4crq38d
    [20/09/2009|11:02] C:\ProgramData\show default default.4d7yklb
    [11/12/2009|21:31] C:\ProgramData\show default default.4dga3
    [03/11/2009|20:08] C:\ProgramData\show default default.4dj2t2
    [12/12/2009|23:55] C:\ProgramData\show default default.4e96cmp
    [30/12/2009|16:43] C:\ProgramData\show default default.4eb0r4e
    [04/09/2009|19:05] C:\ProgramData\show default default.4em392
    [24/11/2009|17:59] C:\ProgramData\show default default.4evry
    [24/10/2009|10:08] C:\ProgramData\show default default.4ew6qb
    [27/12/2009|20:37] C:\ProgramData\show default default.4friz
    [28/11/2009|18:49] C:\ProgramData\show default default.4g63x
    [29/11/2009|15:22] C:\ProgramData\show default default.4g91rm
    [02/02/2010|17:23] C:\ProgramData\show default default.4gleqmj
    [18/12/2009|21:00] C:\ProgramData\show default default.4goihca
    [09/10/2009|20:23] C:\ProgramData\show default default.4hdcw
    [24/01/2010|15:55] C:\ProgramData\show default default.4i2eh
    [29/11/2009|15:00] C:\ProgramData\show default default.4ih3kg6
    [19/11/2009|20:56] C:\ProgramData\show default default.4iuju
    [17/01/2010|17:21] C:\ProgramData\show default default.4jcvc
    [03/01/2010|13:25] C:\ProgramData\show default default.4jk12et
    [29/11/2009|20:28] C:\ProgramData\show default default.4jyrb8m
    [04/10/2009|11:32] C:\ProgramData\show default default.4ku2f
    [30/01/2010|19:49] C:\ProgramData\show default default.4kumsg6
    [23/10/2009|20:06] C:\ProgramData\show default default.4kyfgrz
    [05/02/2010|19:03] C:\ProgramData\show default default.4llh2fj
    [18/09/2009|21:52] C:\ProgramData\show default default.4lw634f
    [11/10/2009|11:43] C:\ProgramData\show default default.4mgwl
    [05/09/2009|00:53] C:\ProgramData\show default default.4mhbgvr
    [17/09/2009|13:18] C:\ProgramData\show default default.4miqyt
    [28/01/2010|21:56] C:\ProgramData\show default default.4n2fqku
    [12/12/2009|17:50] C:\ProgramData\show default default.4ny0n1x
    [01/01/2010|17:46] C:\ProgramData\show default default.4oimws6
    [09/10/2009|13:28] C:\ProgramData\show default default.4on86mn
    [18/09/2009|10:57] C:\ProgramData\show default default.4p8z7
    [29/01/2010|21:54] C:\ProgramData\show default default.4plvyv4
    [08/11/2009|20:13] C:\ProgramData\show default default.4puua
    [29/01/2010|12:52] C:\ProgramData\show default default.4pzw5e0
    [03/09/2009|14:02] C:\ProgramData\show default default.4qjwxaa
    [06/12/2009|16:13] C:\ProgramData\show default default.4qoonru
    [28/12/2009|18:32] C:\ProgramData\show default default.4s2v7
    [26/10/2009|21:55] C:\ProgramData\show default default.4s5hktg
    [01/01/2010|18:30] C:\ProgramData\show default default.4s8qe2
    [04/01/2010|19:39] C:\ProgramData\show default default.4sc048
    [22/11/2009|15:20] C:\ProgramData\show default default.4sl15
    [25/11/2009|22:06] C:\ProgramData\show default default.4t98gdg
    [17/01/2010|19:54] C:\ProgramData\show default default.4twpokm
    [12/12/2009|21:50] C:\ProgramData\show default default.4u0nu5
    [10/10/2009|19:43] C:\ProgramData\show default default.4uaja7
    [06/12/2009|18:24] C:\ProgramData\show default default.4uhu9
    [11/12/2009|18:15] C:\ProgramData\show default default.4uz9tt
    [23/11/2009|09:37] C:\ProgramData\show default default.4vik4
    [19/09/2009|17:00] C:\ProgramData\show default default.4xukg6
    [16/10/2009|19:45] C:\ProgramData\show default default.4y02ei
    [02/09/2009|20:19] C:\ProgramData\show default default.4ygem83
    [04/02/2010|16:56] C:\ProgramData\show default default.4z7e3
    [01/01/2010|10:51] C:\ProgramData\show default default.4zj34n
    [19/11/2009|19:28] C:\ProgramData\show default default.50jl1c
    [02/01/2010|11:02] C:\ProgramData\show default default.51aoh0c
    [17/01/2010|00:08] C:\ProgramData\show default default.51fa4n
    [25/10/2009|15:28] C:\ProgramData\show default default.51j33
    [29/01/2010|12:08] C:\ProgramData\show default default.51uzi
    [26/01/2010|20:35] C:\ProgramData\show default default.52bav
    [29/11/2009|01:01] C:\ProgramData\show default default.52jia
    [12/11/2009|19:03] C:\ProgramData\show default default.52zuonq
    [13/09/2009|18:43] C:\ProgramData\show default default.539yay
    [19/09/2009|14:49] C:\ProgramData\show default default.53bxp5
    [18/01/2010|14:48] C:\ProgramData\show default default.53tka
    [17/10/2009|12:34] C:\ProgramData\show default default.53tulw
    [01/11/2009|16:58] C:\ProgramData\show default default.540wm
    [25/10/2009|12:33] C:\ProgramData\show default default.5463exq
    [23/11/2009|17:38] C:\ProgramData\show default default.54chipe
    [04/09/2009|14:13] C:\ProgramData\show default default.54d1tja
    [09/01/2010|16:31] C:\ProgramData\show default default.553s8q8
    [04/10/2009|19:33] C:\ProgramData\show default default.55e43p
    [04/02/2010|19:29] C:\ProgramData\show default default.56dggmt
    [29/11/2009|11:00] C:\ProgramData\show default default.56zg1
    [09/01/2010|11:25] C:\ProgramData\show default default.57fkur
    [19/09/2009|21:22] C:\ProgramData\show default default.57phbc
    [06/02/2010|12:41] C:\ProgramData\show default default.57tbq1q
    [12/12/2009|15:33] C:\ProgramData\show default default.57yzxy
    [06/12/2009|21:41] C:\ProgramData\show default default.595bmux
    [23/11/2009|14:21] C:\ProgramData\show default default.59t7vp
    [30/01/2010|16:10] C:\ProgramData\show default default.5afuj
    [10/10/2009|18:37] C:\ProgramData\show default default.5aipk
    [14/11/2009|10:36] C:\ProgramData\show default default.5an94pr
    [03/01/2010|15:58] C:\ProgramData\show default default.5aykq
    [04/12/2009|22:09] C:\ProgramData\show default default.5c496
    [11/09/2009|23:57] C:\ProgramData\show default default.5c9lw
    [12/09/2009|11:07] C:\ProgramData\show default default.5crd4s
    [05/09/2009|14:13] C:\ProgramData\show default default.5dhh2r
    [23/11/2009|10:43] C:\ProgramData\show default default.5e6w8bu
    [02/09/2009|15:13] C:\ProgramData\show default default.5eere2u
    [29/11/2009|16:05] C:\ProgramData\show default default.5fs5ra6
    [02/02/2010|22:07] C:\ProgramData\show default default.5gl8q0
    [07/11/2009|10:43] C:\ProgramData\show default default.5gwh9e5
    [26/09/2009|17:35] C:\ProgramData\show default default.5h5whvc
    [18/01/2010|19:10] C:\ProgramData\show default default.5hmsol
    [23/11/2009|09:16] C:\ProgramData\show default default.5hnp35
    [28/11/2009|12:38] C:\ProgramData\show default default.5is97
    [20/10/2009|18:38] C:\ProgramData\show default default.5jn089m
    [24/01/2010|09:21] C:\ProgramData\show default default.5jpgf
    [07/11/2009|19:49] C:\ProgramData\show default default.5k0d4u
    [28/11/2009|15:33] C:\ProgramData\show default default.5k2sc
    [25/10/2009|12:11] C:\ProgramData\show default default.5k7hpq1
    [01/01/2010|20:19] C:\ProgramData\show default default.5kc29
    [12/12/2009|18:56] C:\ProgramData\show default default.5kccjg
    [11/11/2009|13:18] C:\ProgramData\show default default.5kqxu
    [05/12/2009|21:28] C:\ProgramData\show default default.5kwe9
    [23/09/2009|18:20] C:\ProgramData\show default default.5ky17l
    [17/10/2009|13:17] C:\ProgramData\show default default.5lj8fj
    [21/09/2009|18:39] C:\ProgramData\show default default.5lpt9
    [15/01/2010|17:15] C:\ProgramData\show default default.5lviub
    [15/01/2010|18:42] C:\ProgramData\show default default.5mknmz7
    [03/02/2010|23:29] C:\ProgramData\show default default.5muji23
    [23/11/2009|11:05] C:\ProgramData\show default default.5n9w7xz
    [16/09/2009|16:05] C:\ProgramData\show default default.5oskd85
    [05/09/2009|22:02] C:\ProgramData\show default default.5oxjch
    [26/10/2009|19:00] C:\ProgramData\show default default.5p18in
    [15/09/2009|19:13] C:\ProgramData\show default default.5phx9mw
    [13/09/2009|11:46] C:\ProgramData\show default default.5q9brc
    [20/09/2009|13:57] C:\ProgramData\show default default.5qaq97
    [27/09/2009|12:43] C:\ProgramData\show default default.5qtp49p
    [14/11/2009|19:36] C:\ProgramData\show default default.5rfjp6g
    [22/01/2010|21:39] C:\ProgramData\show default default.5ro48
    [29/01/2010|07:45] C:\ProgramData\show default default.5rzxw7u
    [27/12/2009|20:15] C:\ProgramData\show default default.5sftcd7
    [04/09/2009|21:15] C:\ProgramData\show default default.5sgp9se
    [18/01/2010|19:54] C:\ProgramData\show default default.5sqqb
    [10/10/2009|09:31] C:\ProgramData\show default default.5ssgca
    [26/09/2009|19:24] C:\ProgramData\show default default.5sts5t
    [06/11/2009|22:48] C:\ProgramData\show default default.5sv5cz5
    [22/11/2009|20:20] C:\ProgramData\show default default.5szbc
    [27/10/2009|22:37] C:\ProgramData\show default default.5szkf
    [30/01/2010|13:16] C:\ProgramData\show default default.5tpb44
    [24/01/2010|15:33] C:\ProgramData\show default default.5tuov3i
    [31/01/2010|22:50] C:\ProgramData\show default default.5u990js
    [18/11/2009|22:08] C:\ProgramData\show default default.5uwce
    [31/12/2009|16:52] C:\ProgramData\show default default.5vxbq
    [24/11/2009|20:10] C:\ProgramData\show default default.5vxht
    [23/11/2009|13:16] C:\ProgramData\show default default.5wi9h
    [24/01/2010|18:27] C:\ProgramData\show default default.5wj5k
    [26/01/2010|21:19] C:\ProgramData\show default default.5x3n0n
    [06/01/2010|18:34] C:\ProgramData\show default default.5xfgp88
    [24/10/2009|10:30] C:\ProgramData\show default default.5xjzz
    [08/11/2009|09:52] C:\ProgramData\show default default.5xs17
    [31/12/2009|12:30] C:\ProgramData\show default default.5y30vz
    [14/11/2009|00:18] C:\ProgramData\show default default.5y39z8
    [18/09/2009|17:30] C:\ProgramData\show default default.5y91eq8
    [04/01/2010|22:55] C:\ProgramData\show default default.5ytb75
    [19/09/2009|22:50] C:\ProgramData\show default default.5yz0c
    [25/10/2009|14:22] C:\ProgramData\show default default.5z0k8p
    [31/12/2009|21:58] C:\ProgramData\show default default.5z6kf
    [25/09/2009|21:05] C:\ProgramData\show default default.5z6wo
    [05/12/2009|22:11] C:\ProgramData\show default default.5zibm
    [16/09/2009|17:10] C:\ProgramData\show default default.60i0y1
    [15/01/2010|16:10] C:\ProgramData\show default default.60u1i4s
    [17/10/2009|12:12] C:\ProgramData\show default default.611ib6
    [12/09/2009|19:32] C:\ProgramData\show default default.61mfxl
    [18/12/2009|22:49] C:\ProgramData\show default default.62cbz
    [04/09/2009|23:47] C:\ProgramData\show default default.62qb0w8
    [26/09/2009|18:18] C:\ProgramData\show default default.62s6ju
    [05/09/2009|12:02] C:\ProgramData\show default default.634zd
    [14/12/2009|21:47] C:\ProgramData\show default default.63ehjkm
    [17/09/2009|10:23] C:\ProgramData\show default default.63tkx
    [26/11/2009|18:51] C:\ProgramData\show default default.64515
    [06/09/2009|21:16] C:\ProgramData\show default default.64bzuz
    [11/11/2009|19:51] C:\ProgramData\show default default.64h033
    [30/09/2009|20:04] C:\ProgramData\show default default.67jypa
    [17/12/2009|19:33] C:\ProgramData\show default default.68g2mr
    [08/11/2009|13:52] C:\ProgramData\show default default.693z9s
    [28/12/2009|21:05] C:\ProgramData\show default default.694v9
    [13/09/2009|20:10] C:\ProgramData\show default default.69p1u
    [07/11/2009|11:48] C:\ProgramData\show default default.6a50omk
    [11/10/2009|09:54] C:\ProgramData\show default default.6a6c5
    [13/09/2009|20:54] C:\ProgramData\show default default.6ah3s3
    [20/10/2009|06:48] C:\ProgramData\show default default.6b1b4
    [05/09/2009|13:51] C:\ProgramData\show default default.6b88yl
    [06/12/2009|14:02] C:\ProgramData\show default default.6bahpv
    [14/12/2009|21:25] C:\ProgramData\show default default.6bxrv5
    [10/01/2010|16:33] C:\ProgramData\show default default.6cnis
    [01/01/2010|21:25] C:\ProgramData\show default default.6cr64s
    [28/11/2009|19:33] C:\ProgramData\show default default.6cr8m
    [15/11/2009|22:52] C:\ProgramData\show default default.6d728
    [01/01/2010|13:24] C:\ProgramData\show default default.6dhs33
    [13/12/2009|00:39] C:\ProgramData\show default default.6e1pqo
    [29/01/2010|11:46] C:\ProgramData\show default default.6e8i0gk
    [05/09/2009|10:56] C:\ProgramData\show default default.6egjkqt
    [18/09/2009|09:20] C:\ProgramData\show default default.6ejy522
    [03/10/2009|08:37] C:\ProgramData\show default default.6eno8r
    [15/12/2009|22:09] C:\ProgramData\show default default.6esvj
    [29/09/2009|19:21] C:\ProgramData\show default default.6f2gzfo
    [23/09/2009|19:25] C:\ProgramData\show default default.6g85x
    [27/11/2009|18:57] C:\ProgramData\show default default.6gb2p
    [13/09/2009|13:59] C:\ProgramData\show default default.6gl3dw
    [01/02/2010|21:48] C:\ProgramData\show default default.6gpcw
    [16/12/2009|20:16] C:\ProgramData\show default default.6gq1lf9
    [18/01/2010|15:54] C:\ProgramData\show default default.6gqkkx
    [27/11/2009|18:35] C:\ProgramData\show default default.6har4x3
    [09/01/2010|20:10] C:\ProgramData\show default default.6hjs55
    [30/01/2010|20:11] C:\ProgramData\show default default.6hpxrp
    [02/01/2010|14:41] C:\ProgramData\show default default.6i85m57
    [27/12/2009|18:26] C:\ProgramData\show default default.6jtmuo
    [30/01/2010|18:22] C:\ProgramData\show default default.6kmim85
    [27/01/2010|17:34] C:\ProgramData\show default default.6lfql4
    [06/11/2009|14:48] C:\ProgramData\show default default.6mms0b
    [26/01/2010|21:40] C:\ProgramData\show default default.6mv7b3
    [15/01/2010|21:37] C:\ProgramData\show default default.6n5pj
    [23/11/2009|16:54] C:\ProgramData\show default default.6n7jg2
    [12/12/2009|09:21] C:\ProgramData\show default default.6nj7q2w
    [19/09/2009|20:39] C:\ProgramData\show default default.6nqcr2j
    [22/01/2010|17:16] C:\ProgramData\show default default.6o9oj
    [24/10/2009|18:31] C:\ProgramData\show default default.6of9m5
    [04/02/2010|20:56] C:\ProgramData\show default default.6pj90pk
    [21/11/2009|14:06] C:\ProgramData\show default default.6pznu3
    [30/01/2010|13:38] C:\ProgramData\show default default.6q6977i
    [27/11/2009|18:13] C:\ProgramData\show default default.6qdmz9
    [02/10/2009|18:19] C:\ProgramData\show default default.6r892
    [04/09/2009|10:57] C:\ProgramData\show default default.6roqnl9
    [19/09/2009|15:11] C:\ProgramData\show default default.6s19b0
    [25/11/2009|18:27] C:\ProgramData\show default default.6sbptsi
    [09/01/2010|10:20] C:\ProgramData\show default default.6sjfk
    [08/11/2009|12:47] C:\ProgramData\show default default.6t1t2
    [31/10/2009|11:34] C:\ProgramData\show default default.6udk5
    [05/02/2010|15:03] C:\ProgramData\show default default.6uz2o
    [05/12/2009|21:06] C:\ProgramData\show default default.6v28pyx
    [05/01/2010|21:20] C:\ProgramData\show default default.6vco7z
    [14/12/2009|20:19] C:\ProgramData\show default default.6w7bi9
    [12/12/2009|12:38] C:\ProgramData\show default default.6ww97v
    [11/12/2009|22:59] C:\ProgramData\show default default.6wwn3er
    [04/01/2010|19:17] C:\ProgramData\show default default.6xexs6p
    [04/10/2009|09:43] C:\ProgramData\show default default.6ynf1ac
    [05/09/2009|19:29] C:\ProgramData\show default default.6you2x
    [29/01/2010|02:18] C:\ProgramData\show default default.6ypmai
    [22/11/2009|10:36] C:\ProgramData\show default default.6zamm3
    [15/12/2009|19:14] C:\ProgramData\show default default.6zf2zme
    [16/11/2009|20:28] C:\ProgramData\show default default.705he
    [01/11/2009|11:53] C:\ProgramData\show default default.709yom2
    [14/11/2009|17:47] C:\ProgramData\show default default.70jj6fg
    [11/12/2009|18:37] C:\ProgramData\show default default.70lwf
    [04/10/2009|10:49] C:\ProgramData\show default default.70ms39
    [03/10/2009|12:59] C:\ProgramData\show default default.71ssych
    [10/10/2009|12:04] C:\ProgramData\show default default.71xg70l
    [03/09/2009|20:05] C:\ProgramData\show default default.72sc7
    [11/10/2009|17:33] C:\ProgramData\show default default.72xxbg
    [01/11/2009|21:20] C:\ProgramData\show default default.73mh0
    [16/01/2010|23:47] C:\ProgramData\show default default.73v2zsu
    [17/12/2009|21:44] C:\ProgramData\show default default.73v8v
    [17/12/2009|20:17] C:\ProgramData\show default default.7457hnu
    [03/11/2009|22:19] C:\ProgramData\show default default.745pofv
    [12/09/2009|11:51] C:\ProgramData\show default default.74je8
    [25/10/2009|19:28] C:\ProgramData\show default default.752ncn
    [02/10/2009|17:57] C:\ProgramData\show default default.76bs65n
    [17/12/2009|19:11] C:\ProgramData\show default default.76js8
    [20/09/2009|17:35] C:\ProgramData\show default default.76xmkn
    [12/09/2009|20:59] C:\ProgramData\show default default.77fiok
    [18/09/2009|13:08] C:\ProgramData\show default default.787dhz3
    [23/11/2009|14:00] C:\ProgramData\show default default.78f7ix
    [12/12/2009|20:23] C:\ProgramData\show default default.78isxob
    [30/12/2009|23:16] C:\ProgramData\show default default.78n85o
    [14/11/2009|13:24] C:\ProgramData\show default default.798xy
    [02/01/2010|10:40] C:\ProgramData\show default default.79yskg
    [11/12/2009|20:26] C:\ProgramData\show default default.7a0w76
    [13/11/2009|23:13] C:\ProgramData\show default default.7bbg5cr
    [03/01/2010|00:30] C:\ProgramData\show default default.7bkkbhw
    [29/11/2009|14:16] C:\ProgramData\show default default.7bqxj
    [21/11/2009|09:00] C:\ProgramData\show default default.7bzvp
    [18/01/2010|17:21] C:\ProgramData\show default default.7c0fsj5
    [29/01/2010|15:47] C:\ProgramData\show default default.7d4n0
    [13/09/2009|11:24] C:\ProgramData\show default default.7d93mtm
    [14/11/2009|11:35] C:\ProgramData\show default default.7dayjn
    [02/01/2010|23:25] C:\ProgramData\show default default.7e0qajq
    [22/01/2010|20:55] C:\ProgramData\show default default.7ec5i
    [04/11/2009|20:15] C:\ProgramData\show default default.7ee4o
    [20/11/2009|22:24] C:\ProgramData\show default default.7fvdrf
    [13/12/2009|10:37] C:\ProgramData\show default default.7gb35b
    [24/11/2009|19:05] C:\ProgramData\show default default.7hh6zw
    [25/01/2010|21:03] C:\ProgramData\show default default.7i6l2h8
    [03/10/2009|09:21] C:\ProgramData\show default default.7ixss1
    [12/12/2009|13:44] C:\ProgramData\show default default.7k10s
    [15/11/2009|19:14] C:\ProgramData\show default default.7kb9k
    [18/09/2009|21:30] C:\ProgramData\show default default.7kqhmj6
    [24/01/2010|16:38] C:\ProgramData\show default default.7kxfdt
    [10/10/2009|09:10] C:\ProgramData\show default default.7lhy6
    [05/09/2009|16:02] C:\ProgramData\show default default.7ltf5
    [24/09/2009|18:56] C:\ProgramData\show default default.7m5wx
    [05/02/2010|23:25] C:\ProgramData\show default default.7m9dyj
    [16/01/2010|19:24] C:\ProgramData\show default default.7n87t
    [28/10/2009|22:40] C:\ProgramData\show default default.7nhqoor
    [02/09/2009|16:41] C:\ProgramData\show default default.7nor2
    [06/09/2009|16:32] C:\ProgramData\show default default.7nulx
    [06/09/2009|16:54] C:\ProgramData\show default default.7o0fj1j
    [07/11/2009|23:05] C:\ProgramData\show default default.7o22eb
    [28/11/2009|08:59] C:\ProgramData\show default default.7o6kx
    [06/12/2009|12:57] C:\ProgramData\show default default.7phigge
    [01/11/2009|19:31] C:\ProgramData\show default default.7plxumk
    [14/11/2009|13:03] C:\ProgramData\show default default.7ppon
    [13/09/2009|16:32] C:\ProgramData\show default default.7qr2vf
    [28/11/2009|14:05] C:\ProgramData\show default default.7r0mmmc
    [09/10/2009|13:49] C:\ProgramData\show default default.7rjpla8
    [29/01/2010|09:57] C:\ProgramData\show default default.7svwsdt
    [05/09/2009|18:45] C:\ProgramData\show default default.7t6wblm
    [18/09/2009|16:03] C:\ProgramData\show default default.7ta1x
    [06/01/2010|17:51] C:\ProgramData\show default default.7thm0n5
    [01/10/2009|18:46] C:\ProgramData\show default default.7to8a
    [20/09/2009|19:24] C:\ProgramData\show default default.7tvba
    [25/10/2009|09:16] C:\ProgramData\show default default.7tz93
    [13/12/2009|17:32] C:\ProgramData\show default default.7vgpfi
    [16/11/2009|20:49] C:\ProgramData\show default default.7vknj
    [12/09/2009|20:37] C:\ProgramData\show default default.7w2rg
    [09/01/2010|19:04] C:\ProgramData\show default default.7wnrvc
    [06/09/2009|17:59] C:\ProgramData\show default default.7wzzft
    [23/11/2009|11:27] C:\ProgramData\show default default.7x80yb
    [05/12/2009|10:54] C:\ProgramData\show default default.7xpwu99
    [02/01/2010|12:30] C:\ProgramData\show default default.7xxwi
    [26/09/2009|08:51] C:\ProgramData\show default default.7yeq49
    [06/09/2009|12:54] C:\ProgramData\show default default.7z1s70
    [01/10/2009|19:52] C:\ProgramData\show default default.7zebr
    [13/09/2009|12:07] C:\ProgramData\show default default.7zgup
    [21/11/2009|23:56] C:\ProgramData\show default default.7ztvl
    [24/01/2010|22:50] C:\ProgramData\show default default.80yzz
    [11/10/2009|17:55] C:\ProgramData\show default default.81p2qd
    [29/11/2009|19:44] C:\ProgramData\show default default.81p3v
    [11/10/2009|11:21] C:\ProgramData\show default default.826d23
    [16/10/2009|15:23] C:\ProgramData\show default default.828z7l
    [15/01/2010|23:26] C:\ProgramData\show default default.82eh0
    [05/01/2010|20:37] C:\ProgramData\show default default.82sv66l
    [03/01/2010|18:32] C:\ProgramData\show default default.839jd
    [08/11/2009|18:02] C:\ProgramData\show default default.83kfzn
    [25/01/2010|21:24] C:\ProgramData\show default default.83nhde
    [06/12/2009|00:22] C:\ProgramData\show default default.83tlgz
    [06/09/2009|15:27] C:\ProgramData\show default default.8683fg
    [27/09/2009|14:32] C:\ProgramData\show default default.87ti9xl
    [05/12/2009|12:21] C:\ProgramData\show default default.8839i09
    [06/11/2009|19:32] C:\ProgramData\show default default.88f3x
    [29/01/2010|04:51] C:\ProgramData\show default default.88mjs
    [01/11/2009|12:14] C:\ProgramData\show default default.896id
    [29/12/2009|20:13] C:\ProgramData\show default default.8agbk2
    [15/11/2009|02:09] C:\ProgramData\show default default.8b2k7
    [06/12/2009|21:19] C:\ProgramData\show default default.8c6xpe9
    [29/11/2009|21:55] C:\ProgramData\show default default.8d0tg
    [24/01/2010|16:16] C:\ProgramData\show default default.8dtze
    [26/09/2009|13:13] C:\ProgramData\show default default.8e2lbu
    [06/12/2009|20:57] C:\ProgramData\show default default.8el1p
    [04/11/2009|21:42] C:\ProgramData\show default default.8eosnym
    [04/09/2009|12:02] C:\ProgramData\show default default.8eppp4k
    [12/09/2009|21:21] C:\ProgramData\show default default.8f37oq
    [16/10/2009|19:23] C:\ProgramData\show default default.8fkyrt
    [22/01/2010|18:00] C:\ProgramData\show default default.8fnf0st
    [22/11/2009|19:14] C:\ProgramData\show default default.8gida6
    [27/01/2010|17:56] C:\ProgramData\show default default.8go01h
    [24/10/2009|21:25] C:\ProgramData\show default default.8gx3i
    [30/01/2010|21:16] C:\ProgramData\show default default.8hbbdo
    [23/01/2010|18:27] C:\ProgramData\show default default.8he3mq0
    [01/11/2009|12:58] C:\ProgramData\show default default.8j3v1oy
    [21/11/2009|15:34] C:\ProgramData\show default default.8j5rv
    [15/01/2010|23:48] C:\ProgramData\show default default.8jpp5
    [01/02/2010|18:10] C:\ProgramData\show default default.8k7oqs
    [10/10/2009|14:37] C:\ProgramData\show default default.8kutwo
    [17/10/2009|10:23] C:\ProgramData\show default default.8l0njfy
    [10/11/2009|22:40] C:\ProgramData\show default default.8lqovd
    [01/11/2009|08:58] C:\ProgramData\show default default.8mgb4ug
    [27/09/2009|14:54] C:\ProgramData\show default default.8mkq5
    [29/12/2009|18:46] C:\ProgramData\show default default.8mqbld
    [12/09/2009|13:18] C:\ProgramData\show default default.8nmysu
    [01/02/2010|19:15] C:\ProgramData\show default default.8nuls87
    [23/01/2010|20:16] C:\ProgramData\show default default.8ocp67x
    [13/12/2009|20:49] C:\ProgramData\show default default.8p09ia
    [08/11/2009|11:41] C:\ProgramData\show default default.8pv32
    [10/01/2010|15:06] C:\ProgramData\show default default.8pybvs
    [20/09/2009|09:34] C:\ProgramData\show default default.8q8ef
    [18/10/2009|07:51] C:\ProgramData\show default default.8qn26
    [16/10/2009|17:34] C:\ProgramData\show default default.8rc23b
    [17/01/2010|10:26] C:\ProgramData\show default default.8rdsl7v
    [16/09/2009|19:00] C:\ProgramData\show default default.8rqz6j
    [10/01/2010|12:11] C:\ProgramData\show default default.8rvhs
    [01/11/2009|09:41] C:\ProgramData\show default default.8s1ll
    [21/09/2009|18:18] C:\ProgramData\show default default.8t5l6
    [27/11/2009|22:14] C:\ProgramData\show default default.8trt6un
    [06/11/2009|14:04] C:\ProgramData\show default default.8tsi3r5
    [18/10/2009|14:24] C:\ProgramData\show default default.8ul08
    [14/11/2009|23:14] C:\ProgramData\show default default.8v9je
    [31/10/2009|14:51] C:\ProgramData\show default default.8vl0o67
    [16/09/2009|14:16] C:\ProgramData\show default default.8vrxbv6
    [13/12/2009|11:21] C:\ProgramData\show default default.8vsgzk
    [26/09/2009|09:56] C:\ProgramData\show default default.8vwvc
    [12/11/2009|22:20] C:\ProgramData\show default default.8vxk1o
    [28/11/2009|20:38] C:\ProgramData\show default default.8w180
    [29/10/2009|21:35] C:\ProgramData\show default default.8wc1p4
    [23/10/2009|22:17] C:\ProgramData\show default default.8wpywu
    [03/09/2009|14:46] C:\ProgramData\show default default.8xqy1n
    [07/11/2009|18:43] C:\ProgramData\show default default.8yaorn
    [05/12/2009|13:05] C:\ProgramData\show default default.8ywfbp
    [16/09/2009|18:38] C:\ProgramData\show default default.8z84d
    [15/01/2010|23:05] C:\ProgramData\show default default.905s2l
    [06/01/2010|22:06] C:\ProgramData\show default default.90agy
    [04/10/2009|17:00] C:\ProgramData\show default default.90nus5
    [31/12/2009|19:03] C:\ProgramData\show default default.90sxxa
    [23/01/2010|19:32] C:\ProgramData\show default default.9195wcm
    [15/09/2009|20:19] C:\ProgramData\show default default.91cmy5
    [31/10/2009|10:45] C:\ProgramData\show default default.91upc3
    [25/10/2009|09:38] C:\ProgramData\show default default.91z6vee
    [12/11/2009|21:58] C:\ProgramData\show default default.92lmlyd
    [26/11/2009|18:29] C:\ProgramData\show default default.933if
    [07/11/2009|09:39] C:\ProgramData\show default default.93czb2
    [17/12/2009|19:55] C:\ProgramData\show default default.93lyt9
    [14/11/2009|13:46] C:\ProgramData\show default default.9463230
    [02/09/2009|18:52] C:\ProgramData\show default default.948ooyb
    [30/01/2010|19:05] C:\ProgramData\show default default.94eq2
    [06/11/2009|20:59] C:\ProgramData\show default default.94fp9en
    [28/12/2009|21:49] C:\ProgramData\show default default.94jhcs
    [11/10/2009|18:39] C:\ProgramData\show default default.94px7m6
    [11/12/2009|18:59] C:\ProgramData\show default default.94qej
    [04/12/2009|16:41] C:\ProgramData\show default default.94yxll
    [26/09/2009|16:51] C:\ProgramData\show default default.950ug5z
    [22/11/2009|18:52] C:\ProgramData\show default default.951ge0
    [29/11/2009|20:06] C:\ProgramData\show default default.95fd8
    [29/01/2010|05:13] C:\ProgramData\show default default.95idf
    [24/10/2009|11:36] C:\ProgramData\show default default.96x11k0
    [17/10/2009|21:18] C:\ProgramData\show default default.97jsev
    [27/12/2009|20:58] C:\ProgramData\show default default.986hm
    [01/02/2010|21:27] C:\ProgramData\show default default.98dey
    [13/12/2009|21:10] C:\ProgramData\show default default.98yu3m
    [29/11/2009|16:27] C:\ProgramData\show default default.98z3az
    [30/12/2009|22:55] C:\ProgramData\show default default.98z94
    [30/12/2009|15:16] C:\ProgramData\show default default.99zmnhy
    [29/12/2009|18:02] C:\ProgramData\show default default.9a94wh
    [05/09/2009|23:07] C:\ProgramData\show default default.9a9gn
    [03/02/2010|19:29] C:\ProgramData\show default default.9an7fe
    [04/11/2009|20:59] C:\ProgramData\show default default.9aqar
    [01/02/2010|22:10] C:\ProgramData\show default default.9bxj7
    [22/01/2010|14:22] C:\ProgramData\show default default.9bypb6y
    [13/12/2009|18:37] C:\ProgramData\show default default.9cf8ww
    [05/02/2010|20:31] C:\ProgramData\show default default.9d0ak
    [25/10/2009|10:00] C:\ProgramData\show default default.9d88u
    [06/11/2009|22:04] C:\ProgramData\show default default.9dprcjc
    [18/11/2009|19:57] C:\ProgramData\show default default.9e5g3n
    [06/11/2009|13:42] C:\ProgramData\show default default.9eixu
    [24/10/2009|12:19] C:\ProgramData\show default default.9eonssh
    [28/11/2009|17:22] C:\ProgramData\show default default.9etziee
    [16/10/2009|16:50] C:\ProgramData\show default default.9eva3l
    [09/10/2009|20:44] C:\ProgramData\show default default.9fwi7
    [06/12/2009|18:03] C:\ProgramData\show default default.9g89avx
    [30/01/2010|17:16] C:\ProgramData\show default default.9galr
    [17/09/2009|11:07] C:\ProgramData\show default default.9gbyd
    [25/09/2009|17:26] C:\ProgramData\show default default.9gpenvt
    [04/02/2010|17:18] C:\ProgramData\show default default.9gzdrk
    [11/11/2009|13:40] C:\ProgramData\show default default.9hi1345
    [31/12/2009|13:13] C:\ProgramData\show default default.9hisx
    [01/11/2009|20:15] C:\ProgramData\show default default.9hna5h
    [01/01/2010|15:13] C:\ProgramData\show default default.9hqxfb7
    [07/01/2010|18:22] C:\ProgramData\show default default.9hu3de
    [20/09/2009|19:46] C:\ProgramData\show default default.9hyimve
    [21/09/2009|19:01] C:\ProgramData\show default default.9hz2hua
    [08/11/2009|13:30] C:\ProgramData\show default default.9jefp
    [03/10/2009|09:43] C:\ProgramData\show default default.9jl158v
    [04/09/2009|15:48] C:\ProgramData\show default default.9jmuw
    [17/10/2009|18:45] C:\ProgramData\show default default.9jx5s
    [03/01/2010|22:10] C:\ProgramData\show default default.9k6dq
    [23/11/2009|00:42] C:\ProgramData\show default default.9l5txff
    [03/02/2010|17:18] C:\ProgramData\show default default.9lfpl0
    [07/01/2010|22:00] C:\ProgramData\show default default.9lj0vh9
    [16/09/2009|14:37] C:\ProgramData\show default default.9lwfvav
    [27/11/2009|23:41] C:\ProgramData\show default default.9m03cxa
    [03/11/2009|21:57] C:\ProgramData\show default default.9mwr5
    [23/10/2009|21:11] C:\ProgramData\show default default.9n836t
    [17/10/2009|10:01] C:\ProgramData\show default default.9nlz3tb
    [06/12/2009|19:30] C:\ProgramData\show default default.9p4jg8
    [01/01/2010|22:52] C:\ProgramData\show default default.9q833g
    [31/12/2009|20:52] C:\ProgramData\show default default.9qb8fl
    [07/11/2009|16:10] C:\ProgramData\show default default.9rrbtym
    [03/09/2009|21:11] C:\ProgramData\show default default.9rsuy
    [17/01/2010|09:21] C:\ProgramData\show default default.9s1st
    [27/10/2009|18:58] C:\ProgramData\show default default.9sl74z5
    [27/09/2009|08:21] C:\ProgramData\show default default.9sqdu7u
    [03/09/2009|20:49] C:\ProgramData\show default default.9tmsd84
    [18/10/2009|13:19] C:\ProgramData\show default default.9umyc
    [28/12/2009|17:05] C:\ProgramData\show default default.9utxc
    [13/09/2009|12:51] C:\ProgramData\show default default.9uww451
    [03/02/2010|22:24] C:\ProgramData\show default default.9uy8fo6
    [04/02/2010|19:07] C:\ProgramData\show default default.9v2ha
    [05/12/2009|09:26] C:\ProgramData\show default default.9vq3f
    [27/01/2010|19:45] C:\ProgramData\show default default.9w4bti4
    [17/01/2010|19:32] C:\ProgramData\show default default.9whtri
    [11/10/2009|08:26] C:\ProgramData\show default default.9x6z9kg
    [08/11/2009|11:19] C:\ProgramData\show default default.9xbnrd1
    [16/01/2010|10:07] C:\ProgramData\show default default.9xsc5
    [30/12/2009|21:27] C:\ProgramData\show default default.9xx9zv
    [03/09/2009|15:08] C:\ProgramData\show default default.9y26ad
    [12/11/2009|22:41] C:\ProgramData\show default default.9zfm8
    [14/11/2009|15:57] C:\ProgramData\show default default.9zhds9v
    [29/11/2009|11:43] C:\ProgramData\show default default.a0hqv61
    [29/01/2010|03:23] C:\ProgramData\show default default.a294g0
    [15/11/2009|20:19] C:\ProgramData\show default default.a2cf59
    [10/11/2009|23:23] C:\ProgramData\show default default.a2tp6
    [15/01/2010|18:21] C:\ProgramData\show default default.a38i34f
    [05/12/2009|14:54] C:\ProgramData\show default default.a3pysq
    [20/10/2009|07:10] C:\ProgramData\show default default.a4ctexr
    [04/12/2009|14:08] C:\ProgramData\show default default.a4yws4e
    [03/11/2009|20:51] C:\ProgramData\show default default.a5juzs
    [12/09/2009|19:10] C:\ProgramData\show default default.a5ny6
    [10/01/2010|09:38] C:\ProgramData\show default default.a5rxy8c
    [14/11/2009|09:08] C:\ProgramData\show default default.a5uuu
    [19/09/2009|21:00] C:\ProgramData\show default default.a5v97w6
    [15/09/2009|22:52] C:\ProgramData\show default default.a5winqk
    [31/10/2009|15:13] C:\ProgramData\show default default.a61kl2x
    [05/02/2010|14:19] C:\ProgramData\show default default.a6zaf1
    [05/09/2009|18:01] C:\ProgramData\show default default.a8t41
    [22/01/2010|19:06] C:\ProgramData\show default default.a8w2xp0
    [05/09/2009|18:23] C:\ProgramData\show default default.a9oea7
    [27/09/2009|08:42] C:\ProgramData\show default default.aarar2
    [28/11/2009|20:17] C:\ProgramData\show default default.aarvimp
    [18/09/2009|10:13] C:\ProgramData\show default default.aax4z
    [18/01/2010|18:27] C:\ProgramData\show default default.aberyq9
    [11/09/2009|17:24] C:\ProgramData\show default default.abwg79m
    [10/01/2010|15:49] C:\ProgramData\show default default.abx802
    [23/01/2010|15:32] C:\ProgramData\show default default.acfyr1m
    [30/10/2009|22:54] C:\ProgramData\show default default.achuzwi
    [28/10/2009|21:13] C:\ProgramData\show default default.acj79
    [25/09/2009|19:15] C:\ProgramData\show default default.ad3zfx
    [16/01/2010|14:19] C:\ProgramData\show default default.adlr3
    [01/09/2009|18:08] C:\ProgramData\show default default.adpejy
    [14/11/2009|15:14] C:\ProgramData\show default default.adszw
    [15/11/2009|18:30] C:\ProgramData\show default default.aes5vli
    [02/01/2010|13:35] C:\ProgramData\show default default.af1pu
    [06/09/2009|20:32] C:\ProgramData\show default default.af68q
    [01/11/2009|22:48] C:\ProgramData\show default default.afewmd
    [18/09/2009|14:35] C:\ProgramData\show default default.afkbsot
    [03/10/2009|10:48] C:\ProgramData\show default default.ag1ree
    [25/01/2010|22:08] C:\ProgramData\show default default.aga99d9
    [26/09/2009|11:23] C:\ProgramData\show default default.agvp5s
    [02/01/2010|11:24] C:\ProgramData\show default default.ahr3r5
    [24/10/2009|19:58] C:\ProgramData\show default default.ahvvsr
    [24/01/2010|14:27] C:\ProgramData\show default default.ai3f1j9
    [05/01/2010|22:04] C:\ProgramData\show default default.ai5q8e
    [29/01/2010|04:07] C:\ProgramData\show default default.ajene0
    [04/10/2009|17:22] C:\ProgramData\show default default.ajoipv
    [05/12/2009|15:38] C:\ProgramData\show default default.ajpe1p
    [02/09/2009|21:25] C:\ProgramData\show default default.akg3ul
    [25/09/2009|17:48] C:\ProgramData\show default default.akxs7
    [16/01/2010|23:03] C:\ProgramData\show default default.amc7sj
    [16/01/2010|10:51] C:\ProgramData\show default default.amgca
    [27/01/2010|22:18] C:\ProgramData\show default default.an7c5k
    [09/10/2009|18:11] C:\ProgramData\show default default.anwa3yn
    [04/09/2009|11:18] C:\ProgramData\show default default.anzwh
    [16/01/2010|15:02] C:\ProgramData\show default default.aoib1
    [29/11/2009|19:00] C:\ProgramData\show default default.aorkw
    [06/02/2010|09:45] C:\ProgramData\show default default.aq862
    [05/12/2009|16:00] C:\ProgramData\show default default.aqpw28
    [28/11/2009|17:00] C:\ProgramData\show default default.ardc8z
    [10/01/2010|00:54] C:\ProgramData\show default default.ars4z
    [02/09/2009|19:14] C:\ProgramData\show default default.arwvb
    [10/01/2010|00:10] C:\ProgramData\show default default.as7ltul
    [08/11/2009|18:45] C:\ProgramData\show default default.as90e2
    [16/01/2010|18:41] C:\ProgramDat
    Contenus similaires
    a c 296 8 Sécurité
    12 Février 2010 14:45:28

    Le rapport est trop long pour être posté.

    Pour me transmettre les rapports :
  • Clique sur ce lien : http://www.cijoint.fr/
  • Clique sur Parcourir... et cherche le fichier du rapport que tu souhaites me transmettre.
  • Clique sur Ouvrir.
  • Clique sur Cliquez ici pour déposer le fichier.
  • Un lien de cette forme, hxxp://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt, est ajouté dans la page.
  • Copie-colle ce lien dans ta réponse.
    a c 296 8 Sécurité
    13 Février 2010 14:05:34

  • Relance Lop S&D.
    (Sous Vista/Win7, il faut cliquer droit sur Lop S&D et choisir Exécuter en tant qu'administrateur)
  • Choisis cette fois-ci l'option 2 (Suppression).
  • Ne ferme pas la fenêtre lors de la suppression !
  • Poste le rapport généré (C:\lopR.txt).

    (Si le Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
    a c 296 8 Sécurité
    13 Février 2010 16:44:30

    Bien, on continue.

  • Télécharge Ad-Remover (de C_XX) sur ton Bureau.

    /!\ Déconnecte-toi et ferme toutes applications en cours /!\

  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
    (Sous Vista/Win7, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
  • Choisis la langue F pour Français.
  • Au menu principal, choisis l'option L.

    /!\ Laisse travailler l'outil /!\

  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).

    (CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

    Note : "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Kaspersky, etc.) comme étant un RiskTool. Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus. Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
    13 Février 2010 17:16:18

    voila le rapport
    .
    ======= RAPPORT D'AD-REMOVER 1.1.4.6_J | UNIQUEMENT XP/VISTA/7 =======
    .
    Mis à jour par C_XX le 05.02.2010 à 17:34
    Contact: AdRemover.contact@gmail.com
    Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
    .
    Lancé à: 16:57:51, 13/02/2010 | Mode Normal | Option: CLEAN
    Exécuté de: C:\Ad-Remover\
    Système d'exploitation: Microsoft® Windows Vista™ Ultimate Service Pack 2 v6.0.6001
    Nom du PC: PC-DE-MAXIME | Utilisateur actuel: Maxime
    .
    ============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
    .

    C:\Program Files\AGI
    C:\Program Files\Iminent
    C:\ProgramData\Trymedia

    (!) -- Fichiers temporaires supprimés.

    .
    HKCU\software\Iminent
    HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\Registry\User\S-1-5-21-1463078487-2333592742-3352730541-1000\Software\Sweetim
    HKCU\software\microsoft\internet explorer\searchscopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
    HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
    HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
    HKCU\software\SweetIM
    HKLM\Software\Classes\CLSID\{0E896FCA-D07E-45FE-901F-6A26FCF59C02}
    HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E896FCA-D07E-45FE-901F-6A26FCF59C02}
    HKLM\software\SweetIM
    .
    ============== Scan additionnel ==============
    .
    .
    * Internet Explorer Version 7.0.6001.18000 *
    .
    [HKEY_CURRENT_USER\..\Internet Explorer\Main]
    .
    Do404Search: 01000000
    Local Page: C:\Windows\system32\blank.htm
    Show_ToolBar: yes
    Enable Browser Extensions: yes
    Start Page: hxxp://fr.msn.com/
    Use Search Asst:
    Search Bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
    SearchAssistant:
    Default_search_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Default_page_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
    .
    Start Page: hxxp://fr.msn.com/
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Delete_Temp_Files_On_Exit: yes
    Local Page: %SystemRoot%\system32\blank.htm
    Search bar: hxxp://search.msn.com/spbasic.htm
    .
    [HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
    .
    Tabs: res://ieframe.dll/tabswelcome.htm
    .
    ============== Suspect (Cracks, Serials, ...) ==============
    .
    C:\Users\Maxime\AppData\Roaming\BitTorrent\All Grand Theft Auto Cracks!.zip.torrent
    C:\Users\Maxime\AppData\Roaming\BitTorrent\Mirror's Edge no-cd Crack + KeyGen.torrent
    C:\Users\Maxime\Desktop\WorldOfWarcraft\WoW-3.2.0.10192-to-3.3.0.10958-frFR-patch.exe
    C:\Users\Maxime\Desktop\WorldOfWarcraft\WoW-3.3.0.10958-to-3.3.0.11159-frFR-patch.exe
    C:\Users\Maxime\Desktop\WorldOfWarcraft\WoW-3.3.0.11159-to-3.3.2.11403-frFR-patch.exe
    C:\Users\Maxime\Downloads\Mirror's Edge no-cd Crack + KeyGen\Mirror's Edge KeyGen.exe
    C:\Users\Maxime\jeux\world_of_warcraft_patch_v3.0.9.9551_francais_276064.exe
    .
    ===================================
    .
    3254 Octet(s) - C:\Ad-Report-CLEAN[1].log
    .
    56 Fichier(s) - C:\Users\Maxime\AppData\Local\Temp
    58 Fichier(s) - C:\Windows\Temp
    0 Fichier(s) - C:\Windows\Prefetch
    .
    18 Fichier(s) - C:\Ad-Remover\BACKUP
    3 Fichier(s) - C:\Ad-Remover\QUARANTINE
    .
    Fin à: 17:13:16 | 13/02/2010 - CLEAN[1]
    .
    ============== E.O.F ==============
    .
    a c 296 8 Sécurité
    13 Février 2010 17:40:17

  • Désinstalle Ad-Remover.

  • Refais un scan RSIT et poste le rapport log.
    13 Février 2010 17:50:59

    voila pour le rapport RSIT
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Maxime at 2010-02-13 17:49:33
    Microsoft® Windows Vista™ Édition Intégrale Service Pack 1
    System drive C: has 99 GB (41%) free of 238 GB
    Total RAM: 2047 MB (29% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 17:49:47, on 13/02/2010
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18385)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
    C:\Program Files\Microsoft IntelliType Pro\itype.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Microsoft IntelliPoint\ipoint.exe
    C:\Windows\VM_STI.EXE
    C:\Program Files\Alwil Software\Avast5\AvastUI.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
    C:\Program Files\DNA\btdna.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Windows\system32\wuauclt.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
    C:\Program Files\Teamspeak2_RC2\TeamSpeak.exe
    C:\Windows\system32\conime.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\Maxime\Documents\Downloads\RSIT (1).exe
    C:\Program Files\trend micro\Maxime.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
    O4 - HKLM\..\Run: [LXCDCATS] rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCDtime.dll,_RunDLLEntry@16
    O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
    O4 - HKLM\..\Run: [BigDogPath] C:\Windows\VM_STI.EXE AMARICAM 8000
    O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - HKCU\..\Run: [suuujiv] C:\Users\Maxime\suuujiv.exe
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [MsWerr] RUNDLL32.EXE C:\Users\Maxime\AppData\Local\Temp\xm1985.dll,w
    O4 - HKCU\..\Run: [LosAlamos] rundll32.exe C:\Windows\system32\sshnas21.dll,AttachConsoleA
    O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
    O4 - HKCU\..\Run: [Google Update] "C:\Users\Maxime\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [F5JMWNZTHI] C:\Users\Maxime\AppData\Local\Temp\Jwr.exe
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe"
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Global Startup: Assistant Smart Wizard NETGEAR pour WG311v3.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
    O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O13 - Gopher Prefix:
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD44/JSCDL/jdk/6u7/jinstal...
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: lxcd_device - - C:\Windows\system32\lxcdcoms.exe
    O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
    O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe

    --
    End of file - 9542 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1463078487-2333592742-3352730541-1000Core.job
    C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1463078487-2333592742-3352730541-1000UA.job
    C:\Windows\tasks\Maintenance en 1 clic.job
    C:\Windows\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-12-11 263280]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-26 764912]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-12-11 263280]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
    "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]
    "NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-05-16 92704]
    "NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-05-16 13535776]
    "NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-06-08 2221352]
    "LXCDCATS"=rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCDtime.dll,_RunDLLEntry@16 []
    "itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2008-06-10 1442888]
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-04-02 342312]
    "IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2008-06-10 1406024]
    "BigDogPath"=C:\Windows\VM_STI.EXE [2003-01-21 40960]
    "avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-01-28 2757512]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-02-21 39408]
    "suuujiv"=C:\Users\Maxime\suuujiv.exe []
    "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]
    "MsWerr"=C:\Users\Maxime\AppData\Local\Temp\xm1985.dll [2009-12-18 57344]
    "LosAlamos"=C:\Windows\system32\sshnas21.dll [2010-02-06 173056]
    "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-06-24 1840424]
    "Google Update"=C:\Users\Maxime\AppData\Local\Google\Update\GoogleUpdate.exe [2009-09-16 133104]
    "F5JMWNZTHI"=C:\Users\Maxime\AppData\Local\Temp\Jwr.exe []
    "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
    "DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTProAgent.exe [2007-09-06 136136]
    "BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-10-17 323392]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    Assistant Smart Wizard NETGEAR pour WG311v3.lnk - C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    NETGEAR WG111v3 Smart Wizard.lnk - C:\Program Files\NETGEAR\WG111v3\WG111v3.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
    Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2007-07-20 233888]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "EnableLUA"=0
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "FilterAdministratorToken"=1
    "EnableUIADesktopToggle"=0

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9c7d3ea7-fe03-11de-8103-00192148d0b0}]
    shell\Auto\command - F:\Start.exe
    shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.exe


    ======List of files/folders created in the last 1 months======

    2010-02-13 16:46:24 ----D---- C:\Ad-Remover
    2010-02-12 14:13:37 ----A---- C:\lopR.txt
    2010-02-12 14:12:38 ----D---- C:\Lop SD
    2010-02-12 13:23:50 ----A---- C:\Windows\system32\quartz.dll
    2010-02-12 13:23:50 ----A---- C:\Windows\system32\msvidc32.dll
    2010-02-12 13:23:49 ----A---- C:\Windows\system32\tsbyuv.dll
    2010-02-12 13:23:49 ----A---- C:\Windows\system32\msyuv.dll
    2010-02-12 13:23:49 ----A---- C:\Windows\system32\msrle32.dll
    2010-02-12 13:23:49 ----A---- C:\Windows\system32\iyuv_32.dll
    2010-02-12 13:23:48 ----A---- C:\Windows\system32\msvfw32.dll
    2010-02-12 13:23:48 ----A---- C:\Windows\system32\mciavi32.dll
    2010-02-12 13:23:48 ----A---- C:\Windows\system32\avifil32.dll
    2010-02-12 13:23:48 ----A---- C:\Windows\system32\avicap32.dll
    2010-02-07 09:30:03 ----D---- C:\Program Files\trend micro
    2010-02-07 09:30:02 ----D---- C:\rsit
    2010-02-06 19:56:28 ----RSH---- C:\Windows\system32\suuujiv.exe
    2010-02-06 17:01:44 ----D---- C:\ProgramData\Malwarebytes
    2010-02-06 16:29:24 ----D---- C:\Program Files\Enigma Software Group
    2010-02-06 16:03:52 ----D---- C:\Users\Maxime\AppData\Roaming\Malwarebytes
    2010-02-06 15:28:41 ----D---- C:\Windows\pss
    2010-02-06 13:33:42 ----A---- C:\Windows\ntbtlog.txt
    2010-02-06 12:58:07 ----A---- C:\Windows\system32\aswBoot.exe
    2010-02-06 12:58:03 ----D---- C:\ProgramData\Alwil Software
    2010-02-06 12:58:03 ----D---- C:\Program Files\Alwil Software
    2010-02-06 11:10:07 ----A---- C:\Windows\msa.exe
    2010-02-06 11:09:50 ----A---- C:\Windows\system32\sshnas21.dll
    2010-01-22 13:31:16 ----A---- C:\Windows\system32\mshtml.dll
    2010-01-22 13:31:15 ----A---- C:\Windows\system32\wininet.dll
    2010-01-22 13:31:15 ----A---- C:\Windows\system32\urlmon.dll
    2010-01-22 13:31:15 ----A---- C:\Windows\system32\occache.dll
    2010-01-22 13:31:13 ----A---- C:\Windows\system32\ieframe.dll
    2010-01-22 13:31:12 ----A---- C:\Windows\system32\iertutil.dll
    2010-01-22 13:31:12 ----A---- C:\Windows\system32\iedkcs32.dll
    2010-01-22 13:31:12 ----A---- C:\Windows\system32\ieapfltr.dll
    2010-01-22 13:31:11 ----A---- C:\Windows\system32\msfeeds.dll
    2010-01-22 13:31:11 ----A---- C:\Windows\system32\ieUnatt.exe
    2010-01-22 13:31:11 ----A---- C:\Windows\system32\iepeers.dll
    2010-01-22 13:31:11 ----A---- C:\Windows\system32\ieaksie.dll
    2010-01-22 13:31:10 ----A---- C:\Windows\system32\mstime.dll
    2010-01-22 13:31:10 ----A---- C:\Windows\system32\jsproxy.dll
    2010-01-22 13:31:10 ----A---- C:\Windows\system32\ieencode.dll
    2010-01-15 13:46:50 ----A---- C:\Windows\system32\t2embed.dll
    2010-01-15 13:46:50 ----A---- C:\Windows\system32\fontsub.dll

    ======List of files/folders modified in the last 1 months======

    2010-02-13 17:49:37 ----D---- C:\Windows\Temp
    2010-02-13 17:48:09 ----RD---- C:\Program Files
    2010-02-13 17:48:08 ----D---- C:\Windows\system32\drivers
    2010-02-13 17:43:42 ----D---- C:\Users\Maxime\AppData\Roaming\DNA
    2010-02-13 17:13:34 ----D---- C:\Program Files\DNA
    2010-02-13 17:11:41 ----D---- C:\Windows\Prefetch
    2010-02-13 17:10:59 ----HD---- C:\ProgramData
    2010-02-13 08:46:04 ----D---- C:\Windows\winsxs
    2010-02-13 08:35:52 ----D---- C:\Windows\system32\catroot
    2010-02-13 08:33:50 ----D---- C:\Program Files\Windows Mail
    2010-02-13 08:33:49 ----D---- C:\Windows\System32
    2010-02-12 23:36:56 ----SHD---- C:\Windows\Installer
    2010-02-12 23:36:56 ----HD---- C:\Config.Msi
    2010-02-12 23:36:56 ----D---- C:\ProgramData\Microsoft Help
    2010-02-12 13:54:53 ----D---- C:\Windows\Tasks
    2010-02-12 13:22:04 ----D---- C:\Windows\system32\catroot2
    2010-02-12 13:20:50 ----D---- C:\Windows\inf
    2010-02-12 13:20:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2010-02-07 23:44:50 ----D---- C:\Windows\system32\Tasks
    2010-02-07 08:51:53 ----SD---- C:\Users\Maxime\AppData\Roaming\Microsoft
    2010-02-07 08:33:48 ----HD---- C:\Windows\system32\GroupPolicy
    2010-02-06 16:53:46 ----D---- C:\Windows\Logs
    2010-02-06 16:44:39 ----SD---- C:\ProgramData\Microsoft
    2010-02-06 15:28:41 ----D---- C:\Windows
    2010-02-06 13:00:41 ----D---- C:\ProgramData\playwindowpart
    2010-02-05 13:20:10 ----SHD---- C:\System Volume Information
    2010-02-01 20:26:20 ----A---- C:\Windows\system32\mrt.exe
    2010-01-31 23:32:58 ----D---- C:\Users\Maxime\AppData\Roaming\Skype
    2010-01-31 16:04:37 ----D---- C:\Users\Maxime\AppData\Roaming\skypePM
    2010-01-28 16:50:12 ----D---- C:\Program Files\Lx_cats
    2010-01-23 09:42:00 ----D---- C:\Program Files\Internet Explorer
    2010-01-23 09:41:54 ----D---- C:\Program Files\Microsoft Silverlight
    2010-01-15 23:39:12 ----A---- C:\Windows\NeroDigital.ini
    2010-01-14 11:12:06 ----N---- C:\Windows\system32\MpSigStub.exe

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-01-28 23376]
    R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-01-28 163280]
    R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-01-28 46672]
    R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2008-01-21 350720]
    R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver; C:\Windows\system32\DRIVERS\rtlprot.sys [2007-04-23 25896]
    R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-01-28 19024]
    R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-01-28 51792]
    R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2008-12-20 271360]
    R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2008-12-20 18048]
    R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
    R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2008-12-03 25280]
    R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
    R3 NuidFltr;NUID filter driver; C:\Windows\system32\DRIVERS\NuidFltr.sys [2009-05-09 14736]
    R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-05-16 7465312]
    R3 Point32;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point32k.sys [2008-06-10 33352]
    R3 RTL8023xp;Pilote Realtek 10/100 NIC Family NDIS x86; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2006-11-02 47104]
    R3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-21 73088]
    R3 ZSMC302;AMARICAM 8000; C:\Windows\System32\Drivers\usbvm302.sys [2004-03-19 90968]
    S3 autbd398;autbd398; C:\Windows\system32\drivers\autbd398.sys []
    S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
    S3 EagleNT;EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys []
    S3 jnv4_mib;jnv4_mib; \??\C:\Users\Maxime\AppData\Local\Temp\jnv4_mib.sys []
    S3 MBAMCatchMe;MBAMCatchMe; \??\C:\Windows\system32\drivers\mbamcatchme.sys []
    S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys []
    S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
    S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
    S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
    S3 RTL8187B;NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter Vista Driver; C:\Windows\system32\DRIVERS\wg111v3.sys [2007-12-28 289280]
    S3 usb_rndisx;Carte RNDIS USB; C:\Windows\system32\DRIVERS\usb8023x.sys [2008-01-21 15872]
    S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2009-03-26 36864]
    S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2008-09-04 13056]
    S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2008-09-04 19968]
    S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2008-09-04 24832]
    S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
    S3 WINUSB;Pilote WinUsb; C:\Windows\system32\DRIVERS\WinUSB.SYS [2008-01-21 31616]
    S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
    S3 XDva222;XDva222; \??\C:\Windows\system32\XDva222.sys []
    S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
    S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
    S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-26 132424]
    R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
    R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
    R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    R2 lxcd_device;lxcd_device; C:\Windows\system32\lxcdcoms.exe [2007-04-15 537520]
    R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-06-08 877864]
    R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-05-16 118784]
    R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
    R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2008-09-27 66872]
    R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
    R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-01-28 40384]
    R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-04-02 656168]
    R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]
    S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2008-01-21 523776]
    S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-29 182768]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
    S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [2008-09-25 306432]
    S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    S3 usprserv;User Privilege Service; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2008-01-21 917504]

    -----------------EOF-----------------
    a c 296 8 Sécurité
    13 Février 2010 18:01:27

  • Télécharge SystemLook sur ton Bureau.
  • Clique droit sur SystemLook.exe et choisis Exécuter en tant qu'administrateur.
  • Copie-colle le contenu du cadre ci-dessous dans la zone texte de SystemLook :

    :dir
    C:\ProgramData\playwindowpart
    C:\Program Files\playwindowpart

  • Clique sur le bouton Look pour démarrer l'examen.
  • A la fin, le Bloc-notes s'ouvre avec le résultat de l'analyse. Copie-colle le rapport dans ta prochaine réponse.
    Note : Le rapport peut aussi être trouvé sur ton Bureau sous le nom SystemLook.txt
    13 Février 2010 18:31:23

    voila voila
    SystemLook v1.0 by jpshortstuff (11.01.10)
    Log created at 18:30 on 13/02/2010 by Maxime (Administrator - Elevation successful)

    ========== dir ==========

    C:\ProgramData\playwindowpart - Parameters: "(none)"

    ---Files---
    jfwfbkev.exe --a--- 745472 bytes [17:08 01/09/2009] [17:08 01/09/2009]
    proc vga plan barb.exe --a--- 319488 bytes [17:08 01/09/2009] [17:49 16/12/2009]
    prrzyyhr.exe --a--- 819200 bytes [21:32 12/09/2009] [21:32 12/09/2009]
    wcxbyoyv.exe --a--- 688128 bytes [17:49 16/12/2009] [17:49 16/12/2009]
    ypkhqqyt.exe --a--- 729088 bytes [05:48 20/10/2009] [05:48 20/10/2009]

    ---Folders---
    None found.

    C:\Program Files\playwindowpart - Parameters: "(none)"

    ---Files---
    None found.

    ---Folders---
    None found.

    -=End Of File=-
    a c 296 8 Sécurité
    13 Février 2010 20:34:08

  • Télécharge OTM (OldTimer) sur ton Bureau.
  • Clique droit sur OTM.exe et choisis Exécuter en tant qu'administrateur.
  • Copie (Ctrl+C) le texte suivant ci-dessous :

    :processes
    explorer.exe

    :services
    jnv4_mib
    autbd398
    XDva222

    :reg
    [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9c7d3ea7-fe03-11de-8103-00192148d0b0}]
    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "suuujiv"=-
    "MsWerr"=-
    "LosAlamos"=-
    "F5JMWNZTHI"=-

    :files
    C:\ProgramData\playwindowpart
    C:\Program Files\playwindowpart
    C:\Windows\system32\sshnas21.dll
    C:\Windows\msa.exe
    C:\Windows\system32\suuujiv.exe
    C:\Windows\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job

    :commands
    [emptytemp]
    [reboot]

  • Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
  • Clique maintenant sur le bouton MoveIt! puis ferme OTM.

    ---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
    Accepte en cliquant sur YES.

  • Poste le rapport situé dans ce dossier : C:\_OTM\MovedFiles\
    ---> Le nom du rapport correspond au moment de sa création : date_heure.log
    13 Février 2010 20:43:24

    voila le rapport
    All processes killed
    ========== PROCESSES ==========
    No active process named explorer.exe was found!
    ========== SERVICES/DRIVERS ==========
    Service jnv4_mib stopped successfully!
    Service jnv4_mib deleted successfully!
    Error: No service named autbd398 was found to stop!
    Unable to stop service autbd398!
    Service XDva222 stopped successfully!
    Service XDva222 deleted successfully!
    ========== REGISTRY ==========
    Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9c7d3ea7-fe03-11de-8103-00192148d0b0}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9c7d3ea7-fe03-11de-8103-00192148d0b0}\ not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\suuujiv deleted successfully.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\MsWerr deleted successfully.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\LosAlamos deleted successfully.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\F5JMWNZTHI deleted successfully.
    ========== FILES ==========
    C:\ProgramData\playwindowpart folder moved successfully.
    C:\Program Files\playwindowpart folder moved successfully.
    LoadLibrary failed for C:\Windows\system32\sshnas21.dll
    C:\Windows\system32\sshnas21.dll moved successfully.
    C:\Windows\msa.exe moved successfully.
    C:\Windows\system32\suuujiv.exe moved successfully.
    C:\Windows\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job moved successfully.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: All Users

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Maxime
    ->Temp folder emptied: 15972142 bytes
    ->Temporary Internet Files folder emptied: 9420627 bytes
    ->Java cache emptied: 843663 bytes
    ->Google Chrome cache emptied: 273012868 bytes

    User: Public

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 12892039 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
    %systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 681335 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 298,00 mb


    OTM by OldTimer - Version 3.1.8.0 log created on 02132010_203650

    Files moved on Reboot...
    C:\Users\Maxime\AppData\Local\Temp\xm1985.dll moved successfully.
    File move failed. C:\Windows\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

    Registry entries deleted on Reboot...
    a c 296 8 Sécurité
    13 Février 2010 21:11:54

  • Mets à jour Java.

  • Mets à jour Adobe Reader.

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    14 Février 2010 08:33:40

    je te repond pour cette fois avant d' effectué la manip car j' ai deja utilisé MBAM avant de posté sur le forum et a chaque fois que je lancer un scan arrivé a la moitier le pc faisait un redemarrage un peu sauvage.
    enfin bref je vais essayé on vera bien se que sa donne ^^
    14 Février 2010 08:51:31

    bon la prochaine fois je ne dirais rien .... sa na pas planté le pc :p 
    voila le rapport après la supression des malwares/
    Malwarebytes' Anti-Malware 1.44
    Version de la base de données: 3737
    Windows 6.0.6001 Service Pack 1
    Internet Explorer 7.0.6001.18000

    14/02/2010 08:45:14
    mbam-log-2010-02-14 (08-45-14).txt

    Type de recherche: Examen rapide
    Eléments examinés: 104260
    Temps écoulé: 6 minute(s), 12 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 5
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 1
    Fichier(s) infecté(s): 1

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\F5JMWNZTHI (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\extravideo (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\ROUA3O12PW (Trojan.FakeAlert) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    C:\resycled (Trojan.DNSChanger) -> Quarantined and deleted successfully.

    Fichier(s) infecté(s):
    C:\resycled\boot.com (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    a c 296 8 Sécurité
    14 Février 2010 13:24:58

  • Relance MBAM, va dans Quarantaine et supprime tout.

  • Refais un scan RSIT et poste le rapport log.
    14 Février 2010 13:32:11

    voila voila
    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Maxime at 2010-02-14 13:31:08
    Microsoft® Windows Vista™ Édition Intégrale Service Pack 1
    System drive C: has 96 GB (40%) free of 238 GB
    Total RAM: 2047 MB (27% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 13:31:22, on 14/02/2010
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18385)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Microsoft IntelliType Pro\itype.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Microsoft IntelliPoint\ipoint.exe
    C:\Windows\VM_STI.EXE
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
    C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
    C:\Program Files\DNA\btdna.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Windows\system32\conime.exe
    C:\Program Files\Teamspeak2_RC2\TeamSpeak.exe
    C:\Windows\System32\mobsync.exe
    C:\Windows\system32\wuauclt.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Users\Maxime\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y1E4RI19\RSIT[1].exe
    C:\Program Files\trend micro\Maxime.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
    O4 - HKLM\..\Run: [LXCDCATS] rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCDtime.dll,_RunDLLEntry@16
    O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
    O4 - HKLM\..\Run: [BigDogPath] C:\Windows\VM_STI.EXE AMARICAM 8000
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
    O4 - HKCU\..\Run: [Google Update] "C:\Users\Maxime\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe"
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Global Startup: Assistant Smart Wizard NETGEAR pour WG311v3.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
    O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O13 - Gopher Prefix:
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD44/JSCDL/jdk/6u7/jinstal...
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: lxcd_device - - C:\Windows\system32\lxcdcoms.exe
    O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
    O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe

    --
    End of file - 8919 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
    C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
    C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1463078487-2333592742-3352730541-1000Core.job
    C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1463078487-2333592742-3352730541-1000UA.job
    C:\Windows\tasks\Maintenance en 1 clic.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-02-12 279664]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [2010-02-13 812528]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-02-12 279664]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
    "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]
    "NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-05-16 92704]
    "NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-05-16 13535776]
    "NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-06-08 2221352]
    "LXCDCATS"=rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCDtime.dll,_RunDLLEntry@16 []
    "itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2008-06-10 1442888]
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-04-02 342312]
    "IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2008-06-10 1406024]
    "BigDogPath"=C:\Windows\VM_STI.EXE [2003-01-21 40960]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-02-21 39408]
    "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]
    "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-06-24 1840424]
    "Google Update"=C:\Users\Maxime\AppData\Local\Google\Update\GoogleUpdate.exe [2009-09-16 133104]
    "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
    "DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTProAgent.exe [2007-09-06 136136]
    "BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-10-17 323392]
    "msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    Assistant Smart Wizard NETGEAR pour WG311v3.lnk - C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
    NETGEAR WG111v3 Smart Wizard.lnk - C:\Program Files\NETGEAR\WG111v3\WG111v3.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
    Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2007-07-20 233888]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "EnableLUA"=0
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "FilterAdministratorToken"=1
    "EnableUIADesktopToggle"=0

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    ======List of files/folders created in the last 1 months======

    2010-02-14 08:35:52 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2010-02-13 20:36:50 ----D---- C:\_OTM
    2010-02-13 16:46:24 ----D---- C:\Ad-Remover
    2010-02-12 14:13:37 ----A---- C:\lopR.txt
    2010-02-12 14:12:38 ----D---- C:\Lop SD
    2010-02-12 13:23:50 ----A---- C:\Windows\system32\quartz.dll
    2010-02-12 13:23:50 ----A---- C:\Windows\system32\msvidc32.dll
    2010-02-12 13:23:49 ----A---- C:\Windows\system32\tsbyuv.dll
    2010-02-12 13:23:49 ----A---- C:\Windows\system32\msyuv.dll
    2010-02-12 13:23:49 ----A---- C:\Windows\system32\msrle32.dll
    2010-02-12 13:23:49 ----A---- C:\Windows\system32\iyuv_32.dll
    2010-02-12 13:23:48 ----A---- C:\Windows\system32\msvfw32.dll
    2010-02-12 13:23:48 ----A---- C:\Windows\system32\mciavi32.dll
    2010-02-12 13:23:48 ----A---- C:\Windows\system32\avifil32.dll
    2010-02-12 13:23:48 ----A---- C:\Windows\system32\avicap32.dll
    2010-02-07 09:30:03 ----D---- C:\Program Files\trend micro
    2010-02-07 09:30:02 ----D---- C:\rsit
    2010-02-06 17:01:44 ----D---- C:\ProgramData\Malwarebytes
    2010-02-06 16:29:24 ----D---- C:\Program Files\Enigma Software Group
    2010-02-06 16:03:52 ----D---- C:\Users\Maxime\AppData\Roaming\Malwarebytes
    2010-02-06 15:28:41 ----D---- C:\Windows\pss
    2010-02-06 13:33:42 ----A---- C:\Windows\ntbtlog.txt
    2010-02-06 12:58:03 ----D---- C:\ProgramData\Alwil Software
    2010-02-06 12:58:03 ----D---- C:\Program Files\Alwil Software
    2010-01-22 13:31:16 ----A---- C:\Windows\system32\mshtml.dll
    2010-01-22 13:31:15 ----A---- C:\Windows\system32\wininet.dll
    2010-01-22 13:31:15 ----A---- C:\Windows\system32\urlmon.dll
    2010-01-22 13:31:15 ----A---- C:\Windows\system32\occache.dll
    2010-01-22 13:31:13 ----A---- C:\Windows\system32\ieframe.dll
    2010-01-22 13:31:12 ----A---- C:\Windows\system32\iertutil.dll
    2010-01-22 13:31:12 ----A---- C:\Windows\system32\iedkcs32.dll
    2010-01-22 13:31:12 ----A---- C:\Windows\system32\ieapfltr.dll
    2010-01-22 13:31:11 ----A---- C:\Windows\system32\msfeeds.dll
    2010-01-22 13:31:11 ----A---- C:\Windows\system32\ieUnatt.exe
    2010-01-22 13:31:11 ----A---- C:\Windows\system32\iepeers.dll
    2010-01-22 13:31:11 ----A---- C:\Windows\system32\ieaksie.dll
    2010-01-22 13:31:10 ----A---- C:\Windows\system32\mstime.dll
    2010-01-22 13:31:10 ----A---- C:\Windows\system32\jsproxy.dll
    2010-01-22 13:31:10 ----A---- C:\Windows\system32\ieencode.dll
    2010-01-15 13:46:50 ----A---- C:\Windows\system32\t2embed.dll
    2010-01-15 13:46:50 ----A---- C:\Windows\system32\fontsub.dll

    ======List of files/folders modified in the last 1 months======

    2010-02-14 13:31:21 ----D---- C:\Windows\Prefetch
    2010-02-14 13:31:06 ----D---- C:\Windows\Temp
    2010-02-14 13:28:36 ----D---- C:\Users\Maxime\AppData\Roaming\DNA
    2010-02-14 08:48:21 ----D---- C:\Windows\system32\catroot2
    2010-02-14 08:48:07 ----D---- C:\Program Files\DNA
    2010-02-14 08:47:29 ----D---- C:\Windows\system32\drivers
    2010-02-14 08:47:29 ----D---- C:\Windows\Resources
    2010-02-14 08:35:52 ----RD---- C:\Program Files
    2010-02-14 08:29:40 ----A---- C:\Windows\NeroDigital.ini
    2010-02-13 20:44:37 ----D---- C:\Windows\System32
    2010-02-13 20:37:00 ----D---- C:\Windows\Tasks
    2010-02-13 20:36:58 ----D---- C:\Windows
    2010-02-13 20:36:55 ----SHD---- C:\Windows\Installer
    2010-02-13 20:36:55 ----HD---- C:\ProgramData
    2010-02-13 20:36:51 ----D---- C:\Windows\system32\Tasks
    2010-02-13 20:36:43 ----D---- C:\Program Files\Google
    2010-02-13 08:46:04 ----D---- C:\Windows\winsxs
    2010-02-13 08:35:52 ----D---- C:\Windows\system32\catroot
    2010-02-13 08:33:50 ----D---- C:\Program Files\Windows Mail
    2010-02-12 23:36:56 ----HD---- C:\Config.Msi
    2010-02-12 23:36:56 ----D---- C:\ProgramData\Microsoft Help
    2010-02-12 13:20:50 ----D---- C:\Windows\inf
    2010-02-12 13:20:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2010-02-07 08:51:53 ----SD---- C:\Users\Maxime\AppData\Roaming\Microsoft
    2010-02-07 08:33:48 ----HD---- C:\Windows\system32\GroupPolicy
    2010-02-06 16:53:46 ----D---- C:\Windows\Logs
    2010-02-06 16:44:39 ----SD---- C:\ProgramData\Microsoft
    2010-02-05 13:20:10 ----SHD---- C:\System Volume Information
    2010-02-01 20:26:20 ----A---- C:\Windows\system32\mrt.exe
    2010-01-31 23:32:58 ----D---- C:\Users\Maxime\AppData\Roaming\Skype
    2010-01-31 16:04:37 ----D---- C:\Users\Maxime\AppData\Roaming\skypePM
    2010-01-28 16:50:12 ----D---- C:\Program Files\Lx_cats
    2010-01-23 09:42:00 ----D---- C:\Program Files\Internet Explorer
    2010-01-23 09:41:54 ----D---- C:\Program Files\Microsoft Silverlight

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2008-01-21 350720]
    R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver; C:\Windows\system32\DRIVERS\rtlprot.sys [2007-04-23 25896]
    R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2008-12-20 271360]
    R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2008-12-20 18048]
    R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
    R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2008-12-03 25280]
    R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
    R3 NuidFltr;NUID filter driver; C:\Windows\system32\DRIVERS\NuidFltr.sys [2009-05-09 14736]
    R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-05-16 7465312]
    R3 Point32;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point32k.sys [2008-06-10 33352]
    R3 RTL8023xp;Pilote Realtek 10/100 NIC Family NDIS x86; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2006-11-02 47104]
    R3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-21 73088]
    R3 ZSMC302;AMARICAM 8000; C:\Windows\System32\Drivers\usbvm302.sys [2004-03-19 90968]
    S3 a9i61q7i;a9i61q7i; C:\Windows\system32\drivers\a9i61q7i.sys []
    S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
    S3 EagleNT;EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys []
    S3 MBAMCatchMe;MBAMCatchMe; \??\C:\Windows\system32\drivers\mbamcatchme.sys []
    S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
    S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
    S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
    S3 RTL8187B;NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter Vista Driver; C:\Windows\system32\DRIVERS\wg111v3.sys [2007-12-28 289280]
    S3 usb_rndisx;Carte RNDIS USB; C:\Windows\system32\DRIVERS\usb8023x.sys [2008-01-21 15872]
    S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2009-03-26 36864]
    S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2008-09-04 13056]
    S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2008-09-04 19968]
    S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2008-09-04 24832]
    S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
    S3 WINUSB;Pilote WinUsb; C:\Windows\system32\DRIVERS\WinUSB.SYS [2008-01-21 31616]
    S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
    S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
    S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
    S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-03-26 132424]
    R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
    R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    R2 lxcd_device;lxcd_device; C:\Windows\system32\lxcdcoms.exe [2007-04-15 537520]
    R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-06-08 877864]
    R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-05-16 118784]
    R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
    R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2008-09-27 66872]
    R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-04-02 656168]
    R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]
    S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-13 135664]
    S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2008-01-21 523776]
    S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-29 182768]
    S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
    S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [2008-09-25 306432]
    S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    S3 usprserv;User Privilege Service; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2008-01-21 917504]

    -----------------EOF-----------------
    a c 296 8 Sécurité
    14 Février 2010 13:44:32

    Java n'est pas à jour.

    Plus d'antivirus ?
    14 Février 2010 18:31:01

    alors pour java il ne veut pas se metre a jour sa echoue a chaque fois et antivirus bah aparament il a disparu
    a c 296 8 Sécurité
    14 Février 2010 19:20:58

  • Installe AntiVir Personal et mets-le à jour.
  • Double-clique sur l'icône d'AntiVir (Parapluie) dans la barre des tâches.
  • Dans AntiVir, choisis Outils puis Configuration.
  • Coche Mode Expert et coche Rech. Rootkit au dém. de la recherche à droite dans Autres réglages puis valide.
  • Fais un scan complet, clique sur Tout réparer si AntiVir trouve quelque chose et poste le rapport.

    Tutoriel sur AntiVir.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS