Se connecter / S'enregistrer
Votre question

Prob Je pense avoir un virus

Tags :
  • Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
8 Mai 2009 11:23:10

Bonjour depuis quqlue jours des chose bizarre se passe :
- Quand je veut aller sur une page internet defois sa me dirige vers un site tebe.us
- mon pc redémarre tout seul

J'ai besoin de vitre aide.
Merci

Autres pages sur : prob pense virus

8 Mai 2009 11:59:20

help please
a c 267 8 Sécurité
a b 9 Windows
8 Mai 2009 12:08:24

Bonjour,

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    Contenus similaires
    Pas de réponse à votre question ? Demandez !
    8 Mai 2009 12:17:19

    Log.txt

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Martine at 2009-05-08 12:16:05
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 112 GB (71%) free of 157 GB
    Total RAM: 512 MB (24% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 12:16:11, on 08/05/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16827)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\SYSTEM32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\TPSrv.exe
    C:\WINDOWS\system32\svchost.exe
    C:\PROGRAM FILES\PANDA SECURITY\PANDA GLOBAL PROTECTION 2009\WebProxy.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\PsCtrls.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\PavFnSvr.exe
    C:\Program Files\Fichiers communs\Panda Security\PavShld\pavprsrv.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\PsImSvc.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\PskSvc.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\pavsrv51.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\AVENGINE.EXE
    c:\program files\panda security\panda global protection 2009\firewall\PSHOST.EXE
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE
    C:\Program Files\Panda Security\Panda Global Protection 2009\APVXDWIN.EXE
    C:\WINDOWS\system32\rundll32.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\SRVLOAD.EXE
    C:\Program Files\Panda Security\Panda Global Protection 2009\PavBckPT.exe
    C:\Program Files\Wanadoo\GestionnaireInternet.exe
    C:\Program Files\Wanadoo\ComComp.exe
    C:\PROGRA~1\Wanadoo\Toaster.exe
    C:\PROGRA~1\Wanadoo\Inactivity.exe
    C:\PROGRA~1\Wanadoo\PollingModule.exe
    C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
    C:\Program Files\Wanadoo\Watch.exe
    \?\globalroot\C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Martine\Bureau\RSIT.exe
    C:\Documents and Settings\Martine\Bureau\Martine.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
    O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P31 "EPSON Stylus Photo RX420 Series" /O5 "LPT1:" /M "Stylus Photo RX420"
    O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series (Copie 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P41 "EPSON Stylus Photo RX420 Series (Copie 1)" /O6 "USB001" /M "Stylus Photo RX420"
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Global Protection 2009\APVXDWIN.EXE" /s
    O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Global Protection 2009\Inicio.exe"
    O4 - HKLM\..\Run: [autochk] rundll32.exe C:\WINDOWS\system32\autochk.dll,_IWMPEvents@16
    O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\GestMaj.exe EspaceWanadoo.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [autochk] rundll32.exe C:\DOCUME~1\Martine\protect.dll,_IWMPEvents@16
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\Run: [autochk] rundll32.exe C:\DOCUME~1\LOCALS~1\protect.dll,_IWMPEvents@16 (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - S-1-5-18 Startup: ChkDisk.dll (User 'SYSTEM')
    O4 - .DEFAULT Startup: ChkDisk.dll (User 'Default user')
    O4 - Startup: ChkDisk.dll
    O4 - Startup: ChkDisk.lnk = ?
    O4 - Startup: MaxTV.lnk = C:\Program Files\DMV\MaxTV4\maxtv.exe
    O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O17 - HKLM\System\CCS\Services\Tcpip\..\{1EDD014F-1429-4E14-9AF5-1DB4CB43C397}: NameServer = 80.10.246.1 81.253.149.2
    O20 - Winlogon Notify: ipfwrd - ipfwrd.dll (file missing)
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\PsCtrls.exe
    O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\PsCtrls.exe
    O23 - Service: Panda Function Service (PAVFNSVR) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\PavFnSvr.exe
    O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Security, S.L. - C:\Program Files\Fichiers communs\Panda Security\PavShld\pavprsrv.exe
    O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\pavsrv51.exe
    O23 - Service: Panda Host Service (PSHost) - Panda Software International - c:\program files\panda security\panda global protection 2009\firewall\PSHOST.EXE
    O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\PsImSvc.exe
    O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\PskSvc.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\TPSrv.exe

    --
    End of file - 7764 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Smapp"=C:\Program Files\Analog Devices\SoundMAX\SMTray.exe [2003-05-05 143360]
    "WOOWATCH"=C:\PROGRA~1\Wanadoo\Watch.exe [2004-08-23 20480]
    "WOOTASKBARICON"=C:\PROGRA~1\Wanadoo\GestMaj.exe [2004-10-14 32768]
    "EPSON Stylus Photo RX420 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE [2004-04-09 98304]
    "EPSON Stylus Photo RX420 Series (Copie 1)"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE [2004-04-09 98304]
    "StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-25 61440]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
    "APVXDWIN"=C:\Program Files\Panda Security\Panda Global Protection 2009\APVXDWIN.EXE [2008-12-03 869632]
    "SCANINICIO"=C:\Program Files\Panda Security\Panda Global Protection 2009\Inicio.exe [2008-07-07 50432]
    "autochk"=C:\WINDOWS\system32\autochk.dll [2009-05-08 24064]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "WOOKIT"=C:\Program Files\Wanadoo\GestMaj.exe [2004-10-14 32768]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
    "autochk"=C:\DOCUME~1\Martine\protect.dll [2009-05-08 24064]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    DSLMON.lnk - C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe

    C:\Documents and Settings\Martine\Menu Démarrer\Programmes\Démarrage
    ChkDisk.dll
    ChkDisk.lnk - C:\WINDOWS\system32\rundll32.exe
    MaxTV.lnk - C:\Program Files\DMV\MaxTV4\maxtv.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avldr]
    C:\WINDOWS\SYSTEM32\avldr.dll [2008-03-18 58672]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ipfwrd]
    ipfwrd.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ipfwrd.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipfwrd.sys]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=95000000

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=
    "NoSetActiveDesktop"=
    "NoActiveDesktopChanges"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\WINDOWS\system32\muzapp.exe"="C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
    "C:\Program Files\Steam\SteamApps\porilabofte\counter-strike source\hl2.exe"="C:\Program Files\Steam\SteamApps\porilabofte\counter-strike source\hl2.exe:*:Enabled:hl2"
    "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
    "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
    "C:\WINDOWS\explorer.exe"="C:\WINDOWS\explorer.exe:*:Enabled:Explorer"
    "C:\WINDOWS\Temp\l4tklll.exe"="C:\WINDOWS\Temp\l4tklll.exe:*:Enabled:l4tklll"
    "C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:rundll32"
    "\??\C:\WINDOWS\SYSTEM32\winlogon.exe"="\??\C:\WINDOWS\SYSTEM32\winlogon.exe:*:Enabled:rundll32"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

    ======File associations======

    .js - open - C:\PROGRA~1\PANDAS~1\PANDAG~1\PavScrip.exe "%1" %*
    .vbs - open - C:\PROGRA~1\PANDAS~1\PANDAG~1\PavScrip.exe "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-05-08 12:16:05 ----D---- C:\rsit
    2009-05-08 12:11:34 ----A---- C:\WINDOWS\system32\lmn_setup.exe
    2009-05-08 12:09:44 ----A---- C:\WINDOWS\system32\serv.exe
    2009-05-08 11:14:41 ----D---- C:\Program Files\CCleaner
    2009-05-08 02:11:01 ----ASH---- C:\WINDOWS\system32\autochk.dll
    2009-05-08 01:54:00 ----A---- C:\WINDOWS\system32\HHActiveX.dll
    2009-05-08 01:53:55 ----A---- C:\WINDOWS\system32\TpUtil.dll
    2009-05-08 01:53:55 ----A---- C:\WINDOWS\system32\SYSTOOLS.DLL
    2009-05-08 01:53:55 ----A---- C:\WINDOWS\system32\PavSHook.dll
    2009-05-08 01:53:55 ----A---- C:\WINDOWS\system32\PavLspHook.dll
    2009-05-08 01:53:55 ----A---- C:\WINDOWS\system32\pavipc.dll
    2009-05-08 01:53:51 ----D---- C:\WINDOWS\system32\PAV
    2009-05-08 01:53:51 ----A---- C:\WINDOWS\system32\avldr.dll
    2009-05-08 01:53:50 ----D---- C:\Program Files\Panda Security
    2009-05-08 01:53:50 ----D---- C:\Documents and Settings\Martine\Application Data\Panda Security
    2009-05-08 01:53:50 ----D---- C:\Documents and Settings\All Users\Application Data\Panda Security
    2009-05-08 01:51:41 ----D---- C:\Program Files\Fichiers communs\Panda Security
    2009-05-07 16:31:38 ----A---- C:\WINDOWS\system32\winglsetup.exe
    2009-05-05 19:23:06 ----D---- C:\WINDOWS\Minidump
    2009-05-05 19:08:53 ----A---- C:\WINDOWS\system32\epDPE.ini
    2009-05-05 19:08:53 ----A---- C:\WINDOWS\SlantAdj.dll
    2009-05-05 19:08:53 ----A---- C:\WINDOWS\ADE.DLL
    2009-05-05 19:08:33 ----D---- C:\Program Files\Smart Panel
    2009-05-05 18:39:19 ----D---- C:\Documents and Settings\Martine\Application Data\Malwarebytes
    2009-05-05 18:39:12 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-05-05 18:39:12 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2009-05-05 18:26:30 ----A---- C:\WINDOWS\system32\loader49.exe
    2009-05-05 18:11:29 ----A---- C:\WINDOWS\system32\ak1.exe
    2009-05-03 19:53:09 ----D---- C:\Documents and Settings\Martine\Application Data\DMV Technologies
    2009-05-03 19:51:44 ----N---- C:\WINDOWS\system32\spmsg.dll
    2009-05-03 19:51:14 ----D---- C:\WINDOWS\MaxTV
    2009-05-03 19:51:14 ----D---- C:\Program Files\DMV
    2009-05-03 19:51:10 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
    2009-05-03 19:50:25 ----D---- C:\Program Files\Windows Media Connect 2
    2009-05-03 19:50:05 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
    2009-05-03 19:48:08 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
    2009-05-03 19:47:15 ----D---- C:\WINDOWS\system32\LogFiles
    2009-05-03 19:47:04 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
    2009-05-03 19:00:48 ----A---- C:\WINDOWS\system32\escwiadn.dll
    2009-05-03 19:00:48 ----A---- C:\WINDOWS\system32\escimgd.dll
    2009-05-03 19:00:48 ----A---- C:\WINDOWS\system32\esccmd.dll
    2009-05-03 18:47:17 ----D---- C:\Documents and Settings\Martine\Application Data\DivX
    2009-05-03 18:46:05 ----HD---- C:\WINDOWS\PIF
    2009-05-03 12:01:52 ----D---- C:\spoolerlogs
    2009-05-01 21:48:43 ----D---- C:\Program Files\Microsoft Works
    2009-05-01 21:48:26 ----D---- C:\Program Files\MSBuild
    2009-05-01 21:48:03 ----D---- C:\Program Files\Microsoft Visual Studio
    2009-05-01 21:48:03 ----D---- C:\Program Files\Fichiers communs\DESIGNER
    2009-05-01 21:46:14 ----D---- C:\Program Files\Microsoft.NET
    2009-05-01 21:42:29 ----D---- C:\Program Files\Microsoft Visual Studio 8
    2009-05-01 21:41:47 ----D---- C:\WINDOWS\SHELLNEW
    2009-05-01 21:41:16 ----D---- C:\Program Files\Microsoft Office
    2009-05-01 21:41:14 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
    2009-05-01 21:40:07 ----RHD---- C:\MSOCache
    2009-04-25 14:04:01 ----D---- C:\Documents and Settings\Martine\Application Data\FileZilla
    2009-04-25 12:42:36 ----D---- C:\Program Files\FileZilla FTP Client
    2009-04-25 00:24:36 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
    2009-04-25 00:23:58 ----D---- C:\Program Files\Fichiers communs\DivX Shared
    2009-04-25 00:23:57 ----D---- C:\Program Files\DivX
    2009-04-24 18:01:00 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-04-24 18:00:45 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-04-24 18:00:45 ----D---- C:\Program Files\Adobe
    2009-04-23 20:56:02 ----D---- C:\Documents and Settings\Martine\Application Data\Help
    2009-04-23 18:21:20 ----D---- C:\Documents and Settings\Martine\Application Data\ATI
    2009-04-23 18:21:20 ----D---- C:\Documents and Settings\All Users\Application Data\ATI
    2009-04-23 18:07:51 ----RSD---- C:\WINDOWS\assembly
    2009-04-23 18:07:04 ----D---- C:\WINDOWS\Microsoft.NET
    2009-04-23 18:04:13 ----A---- C:\WINDOWS\Radio_Fr.ini
    2009-04-23 17:39:42 ----N---- C:\WINDOWS\system32\ati2sgag.exe
    2009-04-23 17:38:51 ----D---- C:\Program Files\ATI Technologies
    2009-04-23 17:37:39 ----D---- C:\ATI
    2009-04-22 15:07:00 ----D---- C:\Program Files\ma-config.com
    2009-04-22 15:07:00 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com
    2009-04-20 20:35:31 ----D---- C:\Documents and Settings\All Users\Application Data\Backup
    2009-04-19 13:51:53 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
    2009-04-19 12:29:48 ----D---- C:\Documents and Settings\Martine\Application Data\WinRAR
    2009-04-19 12:29:34 ----D---- C:\Program Files\WinRAR
    2009-04-19 11:19:49 ----D---- C:\Documents and Settings\Martine\Application Data\teamspeak2
    2009-04-19 09:49:13 ----D---- C:\Documents and Settings\Martine\Application Data\Mumble
    2009-04-19 09:48:56 ----D---- C:\Program Files\Mumble
    2009-04-19 09:13:36 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
    2009-04-19 09:04:22 ----A---- C:\WINDOWS\system32\PICSDK.ini
    2009-04-19 09:04:21 ----A---- C:\WINDOWS\system32\PICSDK.dll
    2009-04-19 09:04:21 ----A---- C:\WINDOWS\system32\EpPicPrt.dll
    2009-04-19 09:04:21 ----A---- C:\WINDOWS\system32\EPPicMgr.dll
    2009-04-19 09:02:19 ----A---- C:\WINDOWS\system32\E_FLM9CE.DLL
    2009-04-19 09:02:19 ----A---- C:\WINDOWS\system32\E_FBCH9CE.DLL
    2009-04-19 09:02:18 ----A---- C:\WINDOWS\system32\E_FBCB9CE.DLL
    2009-04-19 09:02:16 ----A---- C:\WINDOWS\system32\E_DCINST.DLL
    2009-04-19 09:02:06 ----D---- C:\Program Files\EPSON
    2009-04-19 09:01:23 ----A---- C:\WINDOWS\CDE RX420FG.ini
    2009-04-18 23:25:31 ----DC---- C:\WINDOWS\system32\DRVSTORE
    2009-04-18 23:25:18 ----D---- C:\Program Files\MSN Messenger
    2009-04-18 23:23:35 ----D---- C:\Program Files\Teamspeak2_RC2
    2009-04-18 22:48:04 ----D---- C:\Program Files\SystemRequirementsLab
    2009-04-18 22:47:50 ----D---- C:\Documents and Settings\Martine\Application Data\SystemRequirementsLab
    2009-04-18 21:39:24 ----D---- C:\Documents and Settings\All Users\Application Data\TVU Networks
    2009-04-18 20:22:08 ----A---- C:\WINDOWS\IsUn040c.exe
    2009-04-18 20:20:34 ----A---- C:\WINDOWS\system32\LAME_MP3.dll
    2009-04-18 20:20:33 ----D---- C:\Program Files\Lame MP3 Codec
    2009-04-18 20:20:20 ----A---- C:\WINDOWS\IFinst26.exe
    2009-04-18 19:38:46 ----A---- C:\WINDOWS\system32\MTXSYNCICON.dll
    2009-04-18 19:38:46 ----A---- C:\WINDOWS\system32\MTTELECHIP.dll
    2009-04-18 19:38:46 ----A---- C:\WINDOWS\system32\MSFLib.dll
    2009-04-18 19:38:46 ----A---- C:\WINDOWS\system32\MSCLib.dll
    2009-04-18 19:38:45 ----A---- C:\WINDOWS\system32\MASetupWizard.dll
    2009-04-18 19:38:45 ----A---- C:\WINDOWS\system32\MASetupCleaner.exe
    2009-04-18 19:38:44 ----A---- C:\WINDOWS\system32\MaXMLProto.dll
    2009-04-18 19:38:43 ----A---- C:\WINDOWS\system32\MK_Lyric.dll
    2009-04-18 19:38:43 ----A---- C:\WINDOWS\system32\MaJUtilLib.dll
    2009-04-18 19:38:43 ----A---- C:\WINDOWS\system32\MaJGUILib.dll
    2009-04-18 19:38:43 ----A---- C:\WINDOWS\system32\MACXMLProto.dll
    2009-04-18 19:38:37 ----D---- C:\Program Files\MarkAny
    2009-04-18 19:38:37 ----A---- C:\WINDOWS\system32\MAMACExtract.dll
    2009-04-18 19:38:26 ----A---- C:\WINDOWS\system32\MaDRM.dll
    2009-04-18 18:36:19 ----D---- C:\Documents and Settings\Martine\Application Data\MSNInstaller
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\vxblock.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxwave.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxsfs.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxmas.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxinsi64.exe
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxinsa64.exe
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxhpinst.exe
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxdrv.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxcpya64.exe
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxafs.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\px.dll
    2009-04-18 14:07:58 ----D---- C:\WINDOWS\RegisteredPackages
    2009-04-18 14:04:01 ----D---- C:\Program Files\Winamp
    2009-04-18 13:56:23 ----A---- C:\WINDOWS\system32\wmpns.dll
    2009-04-18 13:00:25 ----D---- C:\Documents and Settings\Martine\Application Data\Macromedia
    2009-04-18 13:00:25 ----D---- C:\Documents and Settings\Martine\Application Data\Adobe
    2009-04-18 12:56:48 ----A---- C:\WINDOWS\system32\W32n50.dll
    2009-04-18 12:38:56 ----D---- C:\Documents and Settings\Martine\Application Data\Mozilla
    2009-04-18 12:38:44 ----D---- C:\Program Files\Mozilla Firefox
    2009-04-18 12:38:19 ----D---- C:\Program Files\Steam
    2009-04-18 12:32:22 ----SHD---- C:\RECYCLER
    2009-04-18 12:30:28 ----A---- C:\WINDOWS\system32\WooDial2000.dll
    2009-04-18 12:29:25 ----A---- C:\WINDOWS\Fast800.ini
    2009-04-18 12:29:25 ----A---- C:\WINDOWS\adidsl.ini
    2009-04-18 12:29:21 ----A---- C:\WINDOWS\system32\ipdetect.exe
    2009-04-18 12:29:21 ----A---- C:\WINDOWS\system32\adadix32.dll
    2009-04-18 12:29:21 ----A---- C:\WINDOWS\adiras.ini
    2009-04-18 12:29:19 ----A---- C:\WINDOWS\system32\coclassfast.dll
    2009-04-18 12:29:18 ----A---- C:\WINDOWS\system32\unaddrv.exe
    2009-04-18 12:29:18 ----A---- C:\WINDOWS\system32\adadix2k.dll
    2009-04-18 12:29:18 ----A---- C:\WINDOWS\system32\adadix16.dll
    2009-04-18 12:29:14 ----D---- C:\Program Files\SAGEM
    2009-04-18 12:28:51 ----D---- C:\WINDOWS\system32\AlertModule
    2009-04-18 12:28:45 ----A---- C:\WINDOWS\system32\IfHelper.dll
    2009-04-18 12:28:44 ----A---- C:\WINDOWS\system32\FTRTSVC.exe
    2009-04-18 12:28:29 ----N---- C:\WINDOWS\system32\javaw.exe
    2009-04-18 12:28:29 ----N---- C:\WINDOWS\system32\java.exe
    2009-04-18 12:28:22 ----N---- C:\WINDOWS\system32\ActPanel.dll
    2009-04-18 12:28:21 ----D---- C:\Program Files\Java
    2009-04-18 12:27:59 ----A---- C:\WINDOWS\system32\ffJmpWeb.dll
    2009-04-18 12:27:58 ----D---- C:\Program Files\Wanadoo Messager
    2009-04-18 12:26:42 ----D---- C:\Program Files\Wanadoo
    2009-04-18 09:16:45 ----D---- C:\Documents and Settings\Martine\Application Data\vlc
    2009-04-18 09:16:16 ----D---- C:\Program Files\VideoLAN
    2009-04-18 09:07:13 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
    2009-04-18 09:07:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
    2009-04-18 09:06:47 ----D---- C:\WINDOWS\ie7updates
    2009-04-18 09:06:23 ----D---- C:\WINDOWS\WBEM
    2009-04-18 09:05:34 ----HDC---- C:\WINDOWS\ie7
    2009-04-18 09:05:25 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
    2009-04-18 09:05:14 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
    2009-04-17 15:22:58 ----D---- C:\WINDOWS\Prefetch
    2009-04-17 15:21:35 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
    2009-04-17 15:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB963027$
    2009-04-17 15:21:23 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-04-17 15:21:19 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-04-17 15:21:13 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
    2009-04-17 15:21:08 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-04-17 15:21:03 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
    2009-04-17 15:20:58 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
    2009-04-17 15:20:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
    2009-04-17 15:20:49 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
    2009-04-17 15:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
    2009-04-17 15:20:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
    2009-04-17 15:20:31 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-04-17 15:20:25 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
    2009-04-17 15:20:20 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
    2009-04-17 15:20:15 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
    2009-04-17 15:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
    2009-04-17 15:20:05 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-04-17 15:20:00 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
    2009-04-17 15:19:55 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
    2009-04-17 15:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
    2009-04-17 15:19:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
    2009-04-17 15:19:41 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
    2009-04-17 15:19:36 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
    2009-04-17 15:19:32 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
    2009-04-17 15:19:26 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-04-17 15:16:58 ----D---- C:\WINDOWS\system32\fr-fr
    2009-04-17 15:16:57 ----D---- C:\WINDOWS\system32\fr
    2009-04-17 15:16:57 ----D---- C:\WINDOWS\l2schemas
    2009-04-17 15:16:56 ----D---- C:\WINDOWS\system32\bits
    2009-04-17 15:15:29 ----D---- C:\WINDOWS\ServicePackFiles
    2009-04-17 15:13:55 ----D---- C:\WINDOWS\network diagnostic
    2009-04-17 15:12:45 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-04-17 15:10:25 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
    2009-04-17 15:10:23 ----D---- C:\WINDOWS\EHome
    2009-04-17 14:57:43 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
    2009-04-17 14:50:28 ----D---- C:\Program Files\YouTube Downloader
    2009-04-17 14:40:30 ----D---- C:\SAUVEGARDE MME DELORME
    2009-04-17 10:27:49 ----A---- C:\WINDOWS\system32\h323log.txt
    2009-04-17 10:21:32 ----A---- C:\WINDOWS\system32\ativvaxx.dll
    2009-04-17 10:21:32 ----A---- C:\WINDOWS\system32\ati3duag.dll
    2009-04-17 10:21:32 ----A---- C:\WINDOWS\system32\ati3d1ag.dll
    2009-04-17 10:21:32 ----A---- C:\WINDOWS\system32\ati2dvag.dll
    2009-04-17 10:21:32 ----A---- C:\WINDOWS\system32\ati2cqag.dll
    2009-04-17 10:21:17 ----A---- C:\WINDOWS\system32\usbui.dll
    2009-04-17 10:20:24 ----SHD---- C:\WINDOWS\Installer
    2009-04-17 10:20:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-17 10:20:23 ----D---- C:\Program Files\Fichiers communs\ODBC
    2009-04-17 10:20:23 ----A---- C:\WINDOWS\ODBCINST.INI
    2009-04-17 10:20:20 ----RD---- C:\Program Files
    2009-04-17 10:20:20 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
    2009-04-17 10:20:20 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-04-17 10:20:20 ----D---- C:\Program Files\Fichiers communs
    2009-04-17 10:20:17 ----RA---- C:\WINDOWS\system32\kbdazel.dll
    2009-04-17 10:20:16 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
    2009-04-17 10:20:16 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdycc.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbduzb.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdur.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdtat.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdru1.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdru.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdmon.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdbu.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdblr.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdaze.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhept.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhe.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
    2009-04-17 10:20:10 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
    2009-04-17 10:20:10 ----RA---- C:\WINDOWS\system32\kbdlt.dll
    2009-04-17 10:20:09 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
    2009-04-17 10:20:09 ----RA---- C:\WINDOWS\system32\kbdlv.dll
    2009-04-17 10:20:09 ----RA---- C:\WINDOWS\system32\kbdest.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdycl.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdsl.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdro.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdpl.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdhu.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdcz.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdcr.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
    2009-04-17 10:20:04 ----A---- C:\WINDOWS\system32\spxcoins.dll
    2009-04-17 10:20:04 ----A---- C:\WINDOWS\system32\irclass.dll
    2009-04-17 10:20:04 ----A---- C:\WINDOWS\system32\EqnClass.Dll
    2009-04-17 10:20:04 ----A---- C:\WINDOWS\system32\dgsetup.dll
    2009-04-17 10:20:04 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
    2009-04-17 10:20:01 ----N---- C:\WINDOWS\system32\CONFIG.TMP
    2009-04-17 10:20:01 ----A---- C:\WINDOWS\TASKMAN.EXE
    2009-04-17 10:20:01 ----A---- C:\WINDOWS\system32\batt.dll
    2009-04-17 10:20:00 ----A---- C:\WINDOWS\notepad.exe
    2009-04-17 10:19:59 ----A---- C:\WINDOWS\system32\storprop.dll
    2009-04-17 10:19:53 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
    2009-04-17 10:19:49 ----RA---- C:\WINDOWS\SET8.tmp
    2009-04-17 10:19:46 ----RA---- C:\WINDOWS\SET4.tmp
    2009-04-17 10:19:45 ----RA---- C:\WINDOWS\SET3.tmp
    2009-04-17 10:19:40 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-04-17 10:19:40 ----D---- C:\WINDOWS\system32\CatRoot
    2009-04-17 10:19:34 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-04-17 10:19:08 ----SHD---- C:\System Volume Information
    2009-04-17 10:19:08 ----D---- C:\Documents and Settings
    2009-04-17 09:12:47 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
    2009-04-17 09:12:43 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
    2009-04-17 09:12:38 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$
    2009-04-17 09:12:34 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
    2009-04-17 09:12:30 ----HDC---- C:\WINDOWS\$NtUninstallKB961373_0$
    2009-04-17 09:12:26 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
    2009-04-17 09:12:22 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
    2009-04-17 09:12:17 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
    2009-04-17 09:12:13 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$
    2009-04-17 09:12:01 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$
    2009-04-17 09:11:56 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2_0$
    2009-04-17 09:11:52 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
    2009-04-17 09:11:47 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$
    2009-04-17 09:11:43 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
    2009-04-17 09:11:39 ----HDC---- C:\WINDOWS\$NtUninstallKB957097_0$
    2009-04-17 09:11:35 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
    2009-04-17 09:11:32 ----HDC---- C:\WINDOWS\$NtUninstallKB958687_0$
    2009-04-17 09:11:28 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
    2009-04-17 09:11:21 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
    2009-04-17 09:11:18 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
    2009-04-17 09:11:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$
    2009-04-17 09:11:09 ----HDC---- C:\WINDOWS\$NtUninstallKB958690_0$
    2009-04-17 09:11:04 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
    2009-04-17 09:11:00 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$
    2009-04-17 09:10:56 ----HDC---- C:\WINDOWS\$NtUninstallKB954600_0$
    2009-04-17 09:10:52 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
    2009-04-17 09:10:48 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
    2009-04-17 09:10:44 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
    2009-04-17 09:10:28 ----HDC---- C:\WINDOWS\$NtUninstallKB963027_0$
    2009-04-17 09:10:23 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
    2009-04-17 09:10:16 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$
    2009-04-17 09:09:23 ----A---- C:\WINDOWS\system32\wpa.bak
    2009-04-17 08:52:43 ----D---- C:\WINDOWS\system32\PreInstall
    2009-04-17 08:52:43 ----A---- C:\WINDOWS\system32\spupdsvc.exe
    2009-04-17 08:52:42 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
    2009-04-17 08:52:42 ----HD---- C:\WINDOWS\$hf_mig$
    2009-04-17 08:50:04 ----A---- C:\WINDOWS\system32\MSVCR71.DLL
    2009-04-17 08:50:04 ----A---- C:\WINDOWS\system32\MSVCP71.DLL
    2009-04-17 08:50:04 ----A---- C:\WINDOWS\system32\MFC71.dll
    2009-04-17 08:50:02 ----D---- C:\Program Files\Alwil Software
    2009-04-17 08:45:49 ----D---- C:\WINDOWS\system32\SoftwareDistribution
    2009-04-17 08:41:29 ----A---- C:\WINDOWS\system32\ksuser.dll
    2009-04-17 08:41:26 ----A---- C:\WINDOWS\system32\wdmioctl.dll
    2009-04-17 08:41:25 ----A---- C:\WINDOWS\system32\SMMedia.dll
    2009-04-17 08:41:23 ----A---- C:\WINDOWS\SynthCoreA.Dll
    2009-04-17 08:41:23 ----A---- C:\WINDOWS\SynCor.exe
    2009-04-17 08:41:22 ----A---- C:\WINDOWS\system32\Syncor11.dll
    2009-04-17 08:41:22 ----A---- C:\WINDOWS\system32\S11thk32.dll
    2009-04-17 08:41:21 ----A---- C:\WINDOWS\system32\SynthCore11Resources.dll
    2009-04-17 08:41:18 ----D---- C:\WINDOWS\VirtualEar
    2009-04-17 08:41:17 ----A---- C:\WINDOWS\system32\virtear.dll
    2009-04-17 08:41:17 ----A---- C:\WINDOWS\system32\Audio3d.dll
    2009-04-17 08:41:15 ----A---- C:\WINDOWS\system32\a3d.dll
    2009-04-17 08:41:14 ----D---- C:\Program Files\Analog Devices
    2009-04-17 08:41:14 ----A---- C:\WINDOWS\system32\DSndUp.exe
    2009-04-17 08:41:14 ----A---- C:\WINDOWS\system32\CleanUp.exe
    2009-04-17 08:41:13 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-04-17 08:41:13 ----A---- C:\WINDOWS\system32\msssc.dll
    2009-04-17 08:41:07 ----D---- C:\Program Files\Fichiers communs\InstallShield
    2009-04-17 08:40:45 ----A---- C:\WINDOWS\Ascd_tmp.ini
    2009-04-17 08:37:45 ----D---- C:\Documents and Settings\Martine\Application Data\Identities
    2009-04-17 08:37:44 ----HD---- C:\Program Files\Uninstall Information
    2009-04-17 08:37:39 ----ASH---- C:\Documents and Settings\Martine\Application Data\desktop.ini
    2009-04-17 08:37:38 ----SD---- C:\Documents and Settings\Martine\Application Data\Microsoft
    2009-04-17 08:36:18 ----D---- C:\WINDOWS\SoftwareDistribution
    2009-04-17 08:36:16 ----SD---- C:\WINDOWS\system32\Microsoft
    2009-04-17 08:36:16 ----N---- C:\WINDOWS\SchedLgU.Txt
    2009-04-17 08:33:23 ----D---- C:\WINDOWS\system32\xircom
    2009-04-17 08:33:23 ----D---- C:\Program Files\xerox
    2009-04-17 08:33:23 ----D---- C:\Program Files\microsoft frontpage
    2009-04-17 08:33:14 ----A---- C:\WINDOWS\control.ini
    2009-04-17 08:33:14 ----A---- C:\AUTOEXEC.BAT
    2009-04-17 08:32:58 ----A---- C:\WINDOWS\system32\mapi32.dll
    2009-04-17 08:32:15 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-04-17 08:32:15 ----RD---- C:\WINDOWS\Offline Web Pages
    2009-04-17 08:32:15 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
    2009-04-17 08:32:10 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
    2009-04-17 08:32:06 ----HD---- C:\Program Files\WindowsUpdate
    2009-04-17 08:32:03 ----D---- C:\Program Files\Services en ligne
    2009-04-17 08:31:45 ----D---- C:\WINDOWS\system32\DirectX
    2009-04-17 08:31:23 ----A---- C:\WINDOWS\system32\atrace.dll
    2009-04-17 08:31:20 ----A---- C:\WINDOWS\system32\desktop.ini
    2009-04-17 08:31:20 ----A---- C:\WINDOWS\desktop.ini
    2009-04-17 08:31:12 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
    2009-04-17 08:31:11 ----D---- C:\Program Files\Fichiers communs\Services
    2009-04-17 08:31:11 ----A---- C:\WINDOWS\system32\acctres.dll
    2009-04-17 08:31:07 ----SD---- C:\WINDOWS\Tasks
    2009-04-17 08:31:07 ----A---- C:\WINDOWS\system32\icfgnt5.dll
    2009-04-17 08:31:06 ----D---- C:\Program Files\Fichiers communs\MSSoap
    2009-04-17 08:31:02 ----D---- C:\WINDOWS\srchasst
    2009-04-17 08:31:01 ----D---- C:\WINDOWS\system32\Macromed
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wuweb.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wups.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wucltui.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wuauserv.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wuaueng1.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wuaueng.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wuauclt1.exe
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\wuauclt.exe
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\wuapi.dll
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\qmgr.dll
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\bitsprx3.dll
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\bitsprx2.dll
    2009-04-17 08:30:53 ----D---- C:\Program Files\Movie Maker
    2009-04-17 08:30:49 ----A---- C:\WINDOWS\system32\safrslv.dll
    2009-04-17 08:30:49 ----A---- C:\WINDOWS\system32\safrdm.dll
    2009-04-17 08:30:49 ----A---- C:\WINDOWS\system32\safrcdlg.dll
    2009-04-17 08:30:49 ----A---- C:\WINDOWS\system32\racpldlg.dll
    2009-04-17 08:30:45 ----D---- C:\WINDOWS\system32\Restore
    2009-04-17 08:30:45 ----A---- C:\WINDOWS\system32\srrstr.dll
    2009-04-17 08:30:45 ----A---- C:\WINDOWS\system32\fltmc.exe
    2009-04-17 08:30:45 ----A---- C:\WINDOWS\system32\fltlib.dll
    2009-04-17 08:30:44 ----A---- C:\WINDOWS\system32\srsvc.dll
    2009-04-17 08:30:44 ----A---- C:\WINDOWS\system32\srclient.dll
    2009-04-17 08:30:44 ----A---- C:\WINDOWS\system32\ils.dll
    2009-04-17 08:30:43 ----A---- C:\WINDOWS\system32\nmmkcert.dll
    2009-04-17 08:30:43 ----A---- C:\WINDOWS\system32\msconf.dll
    2009-04-17 08:30:43 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
    2009-04-17 08:30:43 ----A---- C:\WINDOWS\system32\mnmdd.dll
    2009-04-17 08:30:43 ----A---- C:\WINDOWS\system32\isrdbg32.dll
    2009-04-17 08:30:40 ----D---- C:\Program Files\NetMeeting
    2009-04-17 08:30:40 ----A---- C:\WINDOWS\system32\msoert2.dll
    2009-04-17 08:30:40 ----A---- C:\WINDOWS\system32\msoeacct.dll
    2009-04-17 08:30:39 ----A---- C:\WINDOWS\system32\inetres.dll
    2009-04-17 08:30:38 ----A---- C:\WINDOWS\system32\inetcomm.dll
    2009-04-17 08:30:36 ----D---- C:\Program Files\Outlook Express
    2009-04-17 08:30:36 ----A---- C:\WINDOWS\system32\schedsvc.dll
    2009-04-17 08:30:36 ----A---- C:\WINDOWS\system32\mstinit.exe
    2009-04-17 08:30:36 ----A---- C:\WINDOWS\system32\mstask.dll
    2009-04-17 08:30:36 ----A---- C:\WINDOWS\system32\icwphbk.dll
    2009-04-17 08:30:35 ----A---- C:\WINDOWS\system32\isign32.dll
    2009-04-17 08:30:35 ----A---- C:\WINDOWS\system32\inetcfg.dll
    2009-04-17 08:30:35 ----A---- C:\WINDOWS\system32\icwdial.dll
    2009-04-17 08:30:29 ----D---- C:\Program Files\Fichiers communs\System
    2009-04-17 08:30:28 ----D---- C:\Program Files\Internet Explorer
    2009-04-17 08:30:17 ----D---- C:\Program Files\ComPlus Applications
    2009-04-17 08:30:16 ----A---- C:\WINDOWS\vbaddin.ini
    2009-04-17 08:30:16 ----A---- C:\WINDOWS\vb.ini
    2009-04-17 08:30:12 ----D---- C:\WINDOWS\Registration
    2009-04-17 08:29:43 ----D---- C:\Program Files\Windows Media Player
    2009-04-17 08:29:43 ----D---- C:\Program Files\Online Services
    2009-04-17 08:29:38 ----D---- C:\Program Files\Messenger
    2009-04-17 08:29:34 ----D---- C:\Program Files\MSN Gaming Zone
    2009-04-17 08:29:34 ----A---- C:\WINDOWS\system32\write.exe
    2009-04-17 08:29:24 ----A---- C:\WINDOWS\system32\sndvol32.exe
    2009-04-17 08:29:24 ----A---- C:\WINDOWS\system32\hticons.dll
    2009-04-17 08:29:23 ----A---- C:\WINDOWS\system32\winchat.exe
    2009-04-17 08:29:23 ----A---- C:\WINDOWS\system32\avwav.dll
    2009-04-17 08:29:23 ----A---- C:\WINDOWS\system32\avtapi.dll
    2009-04-17 08:29:23 ----A---- C:\WINDOWS\system32\avmeter.dll
    2009-04-17 08:29:15 ----A---- C:\WINDOWS\system32\getuname.dll
    2009-04-17 08:29:14 ----A---- C:\WINDOWS\system32\sol.exe
    2009-04-17 08:29:14 ----A---- C:\WINDOWS\system32\charmap.exe
    2009-04-17 08:29:14 ----A---- C:\WINDOWS\system32\calc.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\winmine.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\usrlogon.cmd
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\tsshutdn.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\tslabels.ini
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\tskill.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\reset.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\mshearts.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\freecell.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\tsdiscon.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\tscon.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\shadow.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\rwinsta.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\regini.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\qwinsta.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\qappsrv.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\msg.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\logoff.exe
    2009-04-17 08:29:11 ----A---- C:\WINDOWS\system32\msdtcprf.ini
    2009-04-17 08:29:11 ----A---- C:\WINDOWS\system32\cdmodem.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\stclient.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\mtxlegih.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\mtxex.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\mtxdm.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\comsnap.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\comrepl.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\comaddin.dll
    2009-04-17 08:29:04 ----A---- C:\WINDOWS\system32\wmimgmt.msc
    2009-04-17 08:28:55 ----D---- C:\Program Files\MSN
    2009-04-17 08:28:54 ----A---- C:\WINDOWS\system32\sndrec32.exe
    2009-04-17 08:28:54 ----A---- C:\WINDOWS\system32\mplay32.exe
    2009-04-17 08:28:54 ----A---- C:\WINDOWS\system32\hypertrm.dll
    2009-04-17 08:28:54 ----A---- C:\WINDOWS\system32\accwiz.exe
    2009-04-17 08:28:53 ----D---- C:\Program Files\Windows NT
    2009-04-17 08:28:53 ----A---- C:\WINDOWS\system32\spider.exe
    2009-04-17 08:28:53 ----A---- C:\WINDOWS\system32\mspaint.exe
    2009-04-17 08:28:53 ----A---- C:\WINDOWS\system32\clipbrd.exe
    2009-04-17 08:28:52 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
    2009-04-17 08:28:52 ----A---- C:\WINDOWS\system32\mstscax.dll
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\tscupgrd.exe
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\termsrv.dll
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\sessmgr.exe
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\remotepg.dll
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\rdshost.exe
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\rdsaddin.exe
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\rdchost.dll
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\mstsc.exe
    2009-04-17 08:28:50 ----D---- C:\WINDOWS\system32\MsDtc
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\rdpwsx.dll
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\rdpsnd.dll
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\rdpclip.exe
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\qprocess.exe
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\icaapi.dll
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\cfgbkend.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\xolehlp.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\mtxoci.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\msdtctm.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\msdtcprx.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\msdtclog.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\msdtc.exe
    2009-04-17 08:28:48 ----D---- C:\WINDOWS\system32\Com
    2009-04-17 08:28:48 ----A---- C:\WINDOWS\system32\colbact.dll
    2009-04-17 08:28:48 ----A---- C:\WINDOWS\system32\catsrvps.dll
    2009-04-17 08:28:47 ----A---- C:\WINDOWS\system32\clbcatex.dll
    2009-04-17 08:28:47 ----A---- C:\WINDOWS\system32\catsrvut.dll
    2009-04-17 08:28:47 ----A---- C:\WINDOWS\system32\catsrv.dll
    2009-04-17 08:28:46 ----A---- C:\WINDOWS\system32\comuid.dll
    2009-04-17 08:28:46 ----A---- C:\WINDOWS\system32\comsvcs.dll
    2009-04-17 08:28:46 ----A---- C:\WINDOWS\system32\clbcatq.dll
    2009-04-17 08:28:40 ----A---- C:\WINDOWS\system32\servdeps.dll
    2009-04-17 08:28:40 ----A---- C:\WINDOWS\system32\mmfutil.dll
    2009-04-17 08:28:40 ----A---- C:\WINDOWS\system32\licwmi.dll
    2009-04-17 08:28:40 ----A---- C:\WINDOWS\system32\cmprops.dll
    2009-04-16 20:56:46 ----SH---- C:\boot.ini
    2009-04-16 20:50:42 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-04-16 20:50:42 ----RSD---- C:\WINDOWS\Fonts
    2009-04-16 20:50:42 ----RD---- C:\WINDOWS\Web
    2009-04-16 20:50:42 ----HD---- C:\WINDOWS\inf
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\WinSxS
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\twain_32
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Temp
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\wins
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\wbem
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\usmt
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\spool
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\ShellExt
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\Setup
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\ras
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\oobe
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\npp
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\mui
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\inetsrv
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\IME
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\icsxml
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\ias
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\export
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\drivers
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\dhcp
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\config
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\3com_dmi
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\3076
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\2052
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1054
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1042
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1041
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1037
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1036
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1033
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1031
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1028
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1025
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\security
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Resources
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\repair
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Provisioning
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\PeerNet
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\pchealth
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\mui
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\msapps
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\msagent
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Media
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\java
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\ime
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Help
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Driver Cache
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Debug
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Cursors
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Connection Wizard
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Config
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\AppPatch
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\addins
    2009-04-16 20:50:42 ----D---- C:\WINDOWS
    2009-04-15 22:24:40 ----A---- C:\WINDOWS\system32\dpl100.dll
    2009-04-15 22:24:38 ----A---- C:\WINDOWS\system32\divx_xx11.dll
    2009-04-15 22:24:38 ----A---- C:\WINDOWS\system32\divx_xx0c.dll
    2009-04-15 22:24:38 ----A---- C:\WINDOWS\system32\divx_xx0a.dll
    2009-04-15 22:24:38 ----A---- C:\WINDOWS\system32\divx_xx07.dll
    2009-04-15 22:24:38 ----A---- C:\WINDOWS\system32\DivX.dll

    ======List of files/folders modified in the last 1 months======

    2009-05-05 17:55:47 ----ASH---- C:\WINDOWS\system32\mujuyizi.exe
    2009-05-03 19:50:51 ----A---- C:\WINDOWS\win.ini
    2009-04-17 10:20:19 ----A---- C:\WINDOWS\system.ini

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41856]
    R1 APPFLT;App Filter Plugin; \??\C:\WINDOWS\system32\Drivers\APPFLT.SYS []
    R1 DSAFLT;DSA Filter Plugin; \??\C:\WINDOWS\system32\Drivers\DSAFLT.SYS []
    R1 FNETMON;NetMon Filter Plugin; \??\C:\WINDOWS\system32\Drivers\fnetmon.SYS []
    R1 IDSFLT;Ids Filter Plugin; \??\C:\WINDOWS\system32\Drivers\IDSFLT.SYS []
    R1 ipfwrd;TDIFilter Driver; C:\WINDOWS\system32\ipfwrd.sys [2009-05-08 8720]
    R1 NETFLTDI;Panda Net Driver [TDI Layer]; \??\C:\WINDOWS\system32\Drivers\NETFLTDI.SYS []
    R1 PavTPK.sys;PavTPK.sys; \??\C:\WINDOWS\system32\PavTPK.sys []
    R1 ShldDrv;Panda File Shield Driver; C:\WINDOWS\System32\DRIVERS\ShlDrv51.sys [2008-03-04 41144]
    R1 WNMFLT;Wifi Monitor Filter Plugin; \??\C:\WINDOWS\system32\Drivers\WNMFLT.SYS []
    R2 PAVDRV;pavdrv; C:\WINDOWS\system32\DRIVERS\pavdrv51.sys [2008-04-28 84024]
    R2 PavProc;Panda Process Protection Driver; \??\C:\WINDOWS\system32\DRIVERS\PavProc.sys []
    R3 adiusbaw;USB ADSL WAN Adapter; C:\WINDOWS\system32\DRIVERS\adiusbaw.sys [2004-03-02 127065]
    R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
    R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-04-22 729088]
    R3 ComFiltr;Panda Anti-Dialer; \??\C:\WINDOWS\system32\DRIVERS\COMFiltr.sys []
    R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
    R3 NETIMFLT01060034;PANDA NDIS IM Filter Miniport v1.6.0.34; C:\WINDOWS\system32\DRIVERS\neti1634.sys [2008-06-26 197888]
    R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-05 5888]
    R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
    S1 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
    S2 ADILOADER;General Purpose USB Driver (adildr.sys); C:\WINDOWS\System32\Drivers\adildr.sys [2004-03-02 50007]
    S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
    S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-04-22 397312]
    R2 FTRTSVC;France Telecom Routing Table Service; C:\WINDOWS\System32\FTRTSVC.exe [2004-08-23 40960]
    R2 Gwmsrv;Panda Goodware Cache Manager; C:\WINDOWS\system32\svchost -k Panda []
    R2 Panda Software Controller;Panda Software Controller; C:\Program Files\Panda Security\Panda Global Protection 2009\PsCtrls.exe [2008-07-16 181504]
    R2 Panda Software Controller;Panda Software Controller; C:\Program Files\Panda Security\Panda Global Protection 2009\PsCtrls.exe [2008-07-16 181504]
    R2 PAVFNSVR;Panda Function Service; C:\Program Files\Panda Security\Panda Global Protection 2009\PavFnSvr.exe [2008-07-10 169216]
    R2 PavPrSrv;Panda Process Protection Service; C:\Program Files\Fichiers communs\Panda Security\PavShld\pavprsrv.exe [2008-02-04 62768]
    R2 PAVSRV;Panda On-Access Anti-Malware Service; C:\Program Files\Panda Security\Panda Global Protection 2009\pavsrv51.exe [2008-07-04 288512]
    R2 PSHost;Panda Host Service; c:\program files\panda security\panda global protection 2009\firewall\PSHOST.EXE [2008-06-12 226608]
    R2 PSIMSVC;Panda IManager Service; C:\Program Files\Panda Security\Panda Global Protection 2009\PsImSvc.exe [2008-06-19 108288]
    R2 PskSvcRetail;Panda PSK service; C:\Program Files\Panda Security\Panda Global Protection 2009\PskSvc.exe [2008-06-25 28928]
    R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
    R2 TPSrv;Panda TPSrv; C:\Program Files\Panda Security\Panda Global Protection 2009\TPSrv.exe [2008-07-17 157440]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2004-04-21 516096]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
    S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-04-21 216232]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

    -----------------EOF-----------------
    8 Mai 2009 12:17:40

    info.txt

    info.txt logfile of random's system information tool 1.06 2009-05-08 12:16:14

    ======Uninstall list======

    -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
    Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Reader 9.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
    Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
    ATI - Utilitaire de désinstallation du logiciel-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
    ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0
    ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:D ISPLAY -clean
    Catalyst Control Center - Branding-->MsiExec.exe /I{D3B1C799-CB73-42DE-BA0F-2344793A095C}
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
    Counter-Strike: Source-->"C:\Program Files\Steam\steam.exe" steam://uninstall/240
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    eMule-->"C:\Documents and Settings\Martine\Bureau\Docs SD\Logiciels\eMule\Uninstall.exe"
    EPSON Logiciel imprimante-->C:\WINDOWS\system32\spool\DRIVERS\W32X86\EPUPDATE.EXE /r
    EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
    FileZilla Client 3.2.4-->C:\Program Files\FileZilla FTP Client\uninstall.exe
    Gestionnaire Internet-->C:\PROGRA~1\Wanadoo\uninstall.exe
    HijackThis 2.0.2-->"C:\Documents and Settings\Martine\Bureau\HijackThis.exe" /uninstall
    Insurgency-->"C:\Program Files\Steam\steam.exe" steam://uninstall/17700
    Java 2 Runtime Environment, SE v1.4.0_03-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AC1E4C93-C1E7-11D6-9D10-00010240CE95}\Setup.exe" Anytext
    Lame ACM MP3 Codec-->"C:\WINDOWS\IFinst26.exe" -UC:\Program Files\Lame MP3 Codec\IFU62.inf
    Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
    Ma-Config.com-->MsiExec.exe /X{E780E536-16CE-4CD1-8FE0-2D5E52FAA65B}
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
    Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
    Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
    Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
    Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
    Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
    Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
    Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
    Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
    Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
    Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
    Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
    Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
    Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
    Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
    Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
    Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
    Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
    Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
    Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
    Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
    Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
    Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
    Mise à jour de sécurité pour Windows XP (KB963027)-->"C:\WINDOWS\$NtUninstallKB963027$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
    Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
    Mozilla Firefox (3.0.10)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
    Mumble and Murmur-->C:\Program Files\Mumble\Uninstall.exe
    Navigateur Orange-->C:\PROGRA~1\Wanadoo\Shell.exe inst\uninst_FTBrowser.shl
    Outil de connexion Wanadoo-->C:\PROGRA~1\Wanadoo\MessageDesinstallation.exe Wanadoo
    Panda Global Protection 2009-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{81A25967-DB85-4B48-A8A7-D25AC191DEE4}\SETUP.exe" -l0x40c -removeonly
    SAGEM F@st 800-840-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}\setup.exe" -l0x40c
    Smart Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6C11D561-620B-47DA-A693-4C597F3CDF40}\SETUP.EXE" -l0x40c
    SoundMAX-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\Setup.exe"
    Steam(TM)-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
    System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe
    TeamSpeak 2 RC2-->"C:\Program Files\Teamspeak2_RC2\unins000.exe"
    VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
    VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe
    Wanadoo Messager-->C:\PROGRA~1\WANADO~1\UNWISE.EXE C:\PROGRA~1\WANADO~1\INSTALL.LOG
    Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
    Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
    Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
    Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
    Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
    Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
    Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
    Zombie Panic! Source-->"C:\Program Files\Steam\steam.exe" steam://uninstall/17500

    ======Security center information======

    AV: Panda Global Protection 2009
    FW: Panda Personal Firewall 2009

    ======System event log======

    Computer Name: DELORME-1512FC9
    Event Code: 7035
    Message: Un contrôle Démarrer a correctement été envoyé au service Gestionnaire de connexion automatique d'accès distant.

    Record Number: 731
    Source Name: Service Control Manager
    Time Written: 20090419110309.000000+120
    Event Type: Informations
    User: DELORMES\Martine

    Computer Name: DELORME-1512FC9
    Event Code: 20159
    Message: La connexion à Orange effectuée par l'utilisateur fti/x63cfv9 utilisant le périphérique ISDN10-0 a été déconnectée.

    Record Number: 730
    Source Name: RemoteAccess
    Time Written: 20090419110302.000000+120
    Event Type: Informations
    User:

    Computer Name: DELORME-1512FC9
    Event Code: 19
    Message: Installation réussie : Windows a installé la mise à jour suivante : Mise à jour de sécurité pour Internet Explorer 7 pour Windows XP (KB938127)

    Record Number: 729
    Source Name: Windows Update Agent
    Time Written: 20090419091412.000000+120
    Event Type: Informations
    User:

    Computer Name: DELORME-1512FC9
    Event Code: 4377
    Message: Windows XP Hotfix KB938127-v2-IE7 was installed.

    Record Number: 728
    Source Name: NtServicePack
    Time Written: 20090419091406.000000+120
    Event Type: Informations
    User: DELORMES\Martine

    Computer Name: DELORME-1512FC9
    Event Code: 19
    Message: Installation réussie : Windows a installé la mise à jour suivante : Mise à jour de sécurité pour Windows XP avec le Module d'exécution de format Windows Media 9.5 et 11 (KB941569)

    Record Number: 727
    Source Name: Windows Update Agent
    Time Written: 20090419091354.000000+120
    Event Type: Informations
    User:

    =====Application event log=====

    Computer Name: DELORMES
    Event Code: 1000
    Message: Application défaillante hl2.exe, version 0.0.0.0, module défaillant unknown, version 0.0.0.0, adresse de défaillance 0x0b7d1886.

    Record Number: 391
    Source Name: Application Error
    Time Written: 20090508003625.000000+120
    Event Type: erreur
    User:

    Computer Name: DELORMES
    Event Code: 4000
    Message: The Panda Anti-virus Service has started successfully.

    Record Number: 390
    Source Name: Sentinel
    Time Written: 20090508000559.000000+120
    Event Type: Informations
    User:

    Computer Name: DELORMES
    Event Code: 1800
    Message: Le service Centre de sécurité Windows a démarré.

    Record Number: 389
    Source Name: SecurityCenter
    Time Written: 20090508000556.000000+120
    Event Type: Informations
    User:

    Computer Name: DELORMES
    Event Code: 0
    Message:
    Record Number: 388
    Source Name: Panda Software Controller
    Time Written: 20090508000552.000000+120
    Event Type: Informations
    User:

    Computer Name: DELORMES
    Event Code: 105
    Message: The service was started.

    Record Number: 387
    Source Name: ATI Smart
    Time Written: 20090508000551.000000+120
    Event Type: Informations
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "Path"=C:\WINDOWS\SYSTEM32;C:\WINDOWS;C:\WINDOWS\SYSTEM32\WBEM;C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC;C:\PROGRAM FILES\FICHIERS COMMUNS\DIVX SHARED\C:\PROGRAM FILES\DMV\MAXTV4\PLUGINS;;C:\Program Files\Panda Security\Panda Global Protection 2009\
    "windir"=%SystemRoot%
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 10 Stepping 0, AuthenticAMD
    "PROCESSOR_REVISION"=0a00
    "NUMBER_OF_PROCESSORS"=1
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP

    -----------------EOF-----------------
    8 Mai 2009 12:18:22

    j'espere que cela va pouvoir t'aider car je viens de refaire formater mon pc il y a pas longtemps.
    a c 267 8 Sécurité
    a b 9 Windows
    8 Mai 2009 12:25:33

    Citation :
    j'espere que cela va pouvoir t'aider car je viens de refaire formater mon pc il y a pas longtemps.

    ---> Tu n'es pas assez vigilant, Internet est rempli d'infections.

    [#ff0000]/!\ Désactive tes protections résidentes (Antivirus, etc...) /!\[/#f]

  • Télécharge ComboFix ([#ff0000]sUBs[/#f]) sur ton Bureau.
  • Double-clique sur ComboFix.exe (le .exe n'est pas forcément visible) afin de le lancer.
  • Il va te demander d'installer la console de récupération : accepte.
  • Lorsque la recherche sera terminée, un rapport apparaîtra. Poste ce rapport (C:\Combofix.txt) dans ta prochaine réponse.

    Pour t'aider : Un guide et un tutoriel sur l'utilisation de ComboFix
    8 Mai 2009 12:29:34

    oki comment ca /!\ Désactive tes protections résidentes (Antivirus, etc...) /!\ ?
    a c 267 8 Sécurité
    a b 9 Windows
    8 Mai 2009 12:46:13

    Désactive Panda.
    8 Mai 2009 13:22:37

    je suis en train de faire combofix mais ca fé déjà 20 minutes voir plus que j'attends, il est en train de recherchés. Est-ce normal ?
    8 Mai 2009 13:40:22

    Enfin c terminé voici le rapport :

    ComboFix 09-05-07.09 - Martine 08/05/2009 13:31.1 - NTFSx86
    Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.512.233 [GMT 2:00]
    Lancé depuis: c:\documents and settings\Martine\Bureau\ComboFix.exe
    AV: Panda Global Protection 2009 *On-access scanning disabled* (Updated)
    FW: Panda Personal Firewall 2009 *disabled*
    .
    /wow section - STAGE 1
    'PV' n'est pas reconnu en tant que commande interne
    ou externe, un programme exécutable ou un fichier de commandes.


    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .

    c:\documents and settings\LocalService\protect.dll
    c:\documents and settings\Martine\protect.dll
    c:\windows\system32\a9k.bin
    c:\windows\system32\ak1.exe
    c:\windows\system32\autochk.dll
    c:\windows\system32\config\systemprofile\protect.dll
    c:\windows\system32\drivers\mrxdavv.sys
    c:\windows\system32\drivers\ovfsthtuyynsbavsnbrnopupfuxdorcrxjaqxy.sys
    c:\windows\system32\kwave.sys
    c:\windows\system32\msssc.dll
    c:\windows\system32\mujuyizi.exe
    c:\windows\system32\ovfsthaiqawjhbwbtgyxjksbidrymmtloyadad.dat
    c:\windows\system32\ovfsthedxcjkratpwpjtbfkahassdbwxeuapbb.dll
    c:\windows\system32\ovfsthlqgrcuhxhybwkopwmpwkvaipfujoyxdq.dll
    c:\windows\system32\ovfsthqubruseoapnbidrpymtshlwlkoovknhh.dat
    c:\windows\system32\ovfsthxpxriqhhjvqijtjtuutlalrfcmxblfpb.dll
    c:\windows\system32\uniq.tll
    c:\windows\system32\winglsetup.exe
    C:\xcrashdump.dat

    .
    ((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    -------\Service_ovfsthwwwykrvkltoiqhxvdlxmkoyxetiqhdig


    ((((((((((((((((((((((((((((( Fichiers créés du 2009-04-08 au 2009-05-08 ))))))))))))))))))))))))))))))))))))
    .

    2009-05-08 11:31 . 2009-05-08 11:36 13880 ----a-w c:\windows\system32\drivers\COMFiltr.sys
    2009-05-08 10:16 . 2009-05-08 10:16 -------- d-----w C:\rsit
    2009-05-08 09:14 . 2009-05-08 09:14 -------- d-----w c:\program files\CCleaner
    2009-05-08 07:37 . 2009-05-08 08:42 7 ----a-w c:\windows\system32\pck.bin
    2009-05-08 00:26 . 2009-05-08 10:26 8720 ----a-w c:\windows\system32\ipfwrd.sys
    2009-05-07 23:56 . 2009-05-07 23:56 -------- d-----w c:\documents and settings\Martine\Local Settings\Application Data\Panda Security
    2009-05-07 23:54 . 2008-04-28 15:35 84024 ----a-w c:\windows\system32\drivers\pavdrv51.sys
    2009-05-07 23:54 . 2009-05-07 23:54 261 ----a-w c:\windows\system32\PavCPL.dat
    2009-05-07 23:54 . 2009-05-08 10:09 226820 ----a-w c:\windows\system32\drivers\APPFCONT.DAT
    2009-05-07 23:54 . 2008-06-18 14:06 46720 ----a-w c:\windows\system32\drivers\wnmflt.sys
    2009-05-07 23:54 . 2008-06-18 14:06 52992 ----a-w c:\windows\system32\drivers\dsaflt.sys
    2009-05-07 23:54 . 2008-06-18 14:06 193792 ----a-w c:\windows\system32\drivers\idsflt.sys
    2009-05-07 23:54 . 2008-03-28 09:25 22072 ----a-w c:\windows\system32\drivers\fnetmon.sys
    2009-05-07 23:54 . 2008-06-25 13:42 73728 ----a-w c:\windows\system32\drivers\APPFLT.SYS
    2009-05-07 23:54 . 2008-07-11 12:58 158848 ----a-w c:\windows\system32\drivers\NETFLTDI.SYS
    2009-05-07 23:54 . 2003-10-22 16:23 446464 ----a-w c:\windows\system32\HHActiveX.dll
    2009-05-07 23:53 . 2008-06-24 12:48 193280 ----a-w c:\windows\system32\TpUtil.dll
    2009-05-07 23:53 . 2007-02-08 09:53 107568 ----a-w c:\windows\system32\SYSTOOLS.DLL
    2009-05-07 23:53 . 2009-03-17 15:07 87296 ----a-w c:\windows\system32\PavLspHook.dll
    2009-05-07 23:53 . 2008-06-18 16:03 55552 ----a-w c:\windows\system32\pavipc.dll
    2009-05-07 23:53 . 2008-06-18 16:03 520448 ----a-w c:\windows\system32\PavSHook.dll
    2009-05-07 23:53 . 2008-06-26 09:25 197888 ----a-w c:\windows\system32\drivers\neti1634.sys
    2009-05-07 23:53 . 2008-03-18 14:58 58672 ----a-w c:\windows\system32\avldr.dll
    2009-05-07 23:53 . 2009-05-07 23:53 -------- d-----w c:\windows\system32\PAV
    2009-05-07 23:53 . 2009-05-07 23:53 -------- d-----w c:\documents and settings\Martine\Application Data\Panda Security
    2009-05-07 23:53 . 2009-05-07 23:53 -------- d-----w c:\documents and settings\All Users\Application Data\Panda Security
    2009-05-07 23:53 . 2009-05-07 23:53 -------- d-----w c:\program files\Panda Security
    2009-05-07 23:52 . 2008-06-19 15:24 28544 ----a-w c:\windows\system32\drivers\pavboot.sys
    2009-05-07 23:51 . 2008-02-07 10:03 179640 ----a-w c:\windows\system32\drivers\PavProc.sys
    2009-05-07 23:51 . 2008-03-04 13:59 41144 ----a-w c:\windows\system32\drivers\ShlDrv51.sys
    2009-05-07 23:51 . 2009-05-07 23:51 -------- d-----w c:\program files\Fichiers communs\Panda Security
    2009-05-05 17:08 . 1999-04-26 22:17 3136 ----a-w c:\windows\Ade001.bin
    2009-05-05 17:08 . 1999-06-15 09:31 96768 ----a-w c:\windows\SlantAdj.dll
    2009-05-05 17:08 . 1999-12-07 00:03 73216 ----a-w c:\windows\ADE.DLL
    2009-05-05 17:08 . 2009-05-05 17:08 -------- d-----w c:\program files\Smart Panel
    2009-05-05 16:39 . 2009-05-05 16:39 -------- d-----w c:\documents and settings\Martine\Application Data\Malwarebytes
    2009-05-05 16:39 . 2009-04-06 13:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys
    2009-05-05 16:39 . 2009-04-06 13:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
    2009-05-05 16:39 . 2009-05-05 16:39 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
    2009-05-05 16:39 . 2009-05-05 16:39 -------- d-----w c:\program files\Malwarebytes' Anti-Malware
    2009-05-05 16:26 . 2009-05-05 16:26 23040 ----a-w c:\windows\system32\loader49.exe
    2009-05-04 06:22 . 2009-05-04 06:22 -------- d-----w c:\documents and settings\LocalService\Bureau
    2009-05-03 17:53 . 2009-05-03 17:53 -------- d-----w c:\documents and settings\Martine\Application Data\DMV Technologies
    2009-05-03 17:53 . 2009-05-03 17:53 -------- d-----w c:\documents and settings\Martine\Local Settings\Application Data\DMV Technologies
    2009-05-03 17:51 . 2009-05-03 17:51 -------- d-----w c:\windows\MaxTV
    2009-05-03 17:51 . 2009-05-03 17:51 -------- d-----w c:\program files\DMV
    2009-05-03 17:50 . 2009-05-03 17:50 -------- d-----w c:\program files\Windows Media Connect 2
    2009-05-03 17:47 . 2009-05-08 09:43 -------- d-----w c:\windows\system32\drivers\UMDF
    2009-05-03 17:47 . 2009-05-03 17:47 -------- d-----w c:\windows\system32\LogFiles
    2009-05-03 17:00 . 2003-06-30 22:00 22528 ----a-w c:\windows\system32\esccmd.dll
    2009-05-03 17:00 . 2003-06-30 22:00 46080 ----a-w c:\windows\system32\escimgd.dll
    2009-05-03 17:00 . 2003-08-05 22:00 29184 ----a-w c:\windows\system32\escwiadn.dll
    2009-05-03 17:00 . 2008-04-13 18:45 15104 -c--a-w c:\windows\system32\dllcache\usbscan.sys
    2009-05-03 17:00 . 2008-04-13 18:45 15104 ----a-w c:\windows\system32\drivers\usbscan.sys
    2009-05-03 16:47 . 2009-05-03 16:47 -------- d-----w c:\documents and settings\Martine\Application Data\DivX
    2009-05-03 16:46 . 2009-05-03 16:46 -------- d--h--w c:\windows\PIF
    2009-05-03 10:01 . 2009-05-03 10:01 -------- d-----w C:\spoolerlogs
    2009-05-01 19:48 . 2009-05-01 19:48 -------- d-----w c:\program files\Microsoft Works
    2009-05-01 19:48 . 2009-05-01 19:48 -------- d-----w c:\program files\MSBuild
    2009-05-01 19:46 . 2009-05-01 19:46 -------- d-----w c:\program files\Microsoft.NET
    2009-05-01 19:42 . 2009-05-01 19:42 -------- d-----w c:\program files\Microsoft Visual Studio 8
    2009-05-01 19:41 . 2009-05-01 19:47 -------- d-----w c:\windows\SHELLNEW
    2009-05-01 19:41 . 2009-05-01 19:41 -------- d-----w c:\documents and settings\Martine\Local Settings\Application Data\Microsoft Help
    2009-05-01 19:41 . 2009-05-01 19:52 -------- d-----w c:\documents and settings\All Users\Application Data\Microsoft Help
    2009-05-01 19:40 . 2009-05-01 19:40 -------- d--h--r C:\MSOCache
    2009-04-25 12:04 . 2009-05-06 11:18 -------- d-----w c:\documents and settings\Martine\Application Data\FileZilla
    2009-04-25 10:42 . 2009-04-25 10:42 -------- d-----w c:\program files\FileZilla FTP Client
    2009-04-24 22:24 . 2009-04-15 20:25 120056 ------w c:\windows\system32\pxcpyi64.exe
    2009-04-24 22:23 . 2009-04-24 22:24 -------- d-----w c:\program files\Fichiers communs\DivX Shared
    2009-04-24 22:23 . 2009-04-24 22:24 -------- d-----w c:\program files\DivX
    2009-04-24 16:01 . 2009-04-24 16:02 -------- d-----w c:\documents and settings\Martine\Local Settings\Application Data\Adobe
    2009-04-24 16:00 . 2009-04-24 16:01 -------- d-----w c:\program files\Fichiers communs\Adobe
    2009-04-23 18:56 . 2009-04-23 18:56 -------- d-----w c:\documents and settings\Martine\Local Settings\Application Data\Help
    2009-04-23 16:21 . 2009-04-23 16:21 -------- d-----w c:\documents and settings\Martine\Application Data\ATI
    2009-04-23 16:21 . 2009-04-23 16:21 -------- d-----w c:\documents and settings\All Users\Application Data\ATI
    2009-04-23 16:21 . 2009-04-23 16:21 -------- d-----w c:\documents and settings\Martine\Local Settings\Application Data\ATI
    2009-04-23 15:50 . 2009-04-23 16:21 4984 ----a-w c:\windows\system32\d3d9caps.dat
    2009-04-23 15:43 . 2009-04-23 15:43 0 ----a-w c:\windows\ativpsrm.bin
    2009-04-23 15:39 . 2004-04-21 19:10 516096 ------w c:\windows\system32\ati2sgag.exe
    2009-04-23 15:38 . 2009-04-23 15:41 -------- d-----w c:\program files\ATI Technologies
    2009-04-23 15:37 . 2009-04-23 15:37 -------- d-----w C:\ATI
    2009-04-22 16:11 . 2009-04-22 16:11 -------- d-----w c:\documents and settings\dffdd\Local Settings\Application Data\Help
    2009-04-22 16:10 . 2009-04-22 16:10 -------- d-----w c:\documents and settings\dffdd\Local Settings\Application Data\Mozilla
    2009-04-22 13:07 . 2009-04-22 13:07 -------- d-----w c:\program files\ma-config.com
    2009-04-22 13:07 . 2009-04-22 13:07 -------- d-----w c:\documents and settings\All Users\Application Data\ma-config.com
    2009-04-20 18:35 . 2009-04-20 18:35 -------- d-----w c:\documents and settings\All Users\Application Data\Backup
    2009-04-19 17:10 . 2009-04-19 17:31 -------- d-----w c:\documents and settings\Martine\Contacts
    2009-04-19 09:19 . 2009-04-19 09:19 -------- d-----w c:\documents and settings\Martine\Application Data\teamspeak2
    2009-04-19 09:03 . 2009-04-19 09:03 -------- d-----w c:\documents and settings\JAMBON\Application Data\Mumble
    2009-04-19 07:49 . 2009-04-25 10:34 -------- d-----w c:\documents and settings\Martine\Application Data\Mumble
    2009-04-19 07:48 . 2009-04-19 07:49 -------- d-----w c:\program files\Mumble
    2009-04-19 07:05 . 2008-04-13 18:47 25856 -c--a-w c:\windows\system32\dllcache\usbprint.sys
    2009-04-19 07:05 . 2008-04-13 18:47 25856 ----a-w c:\windows\system32\drivers\usbprint.sys
    2009-04-19 07:05 . 2008-04-13 18:45 32128 -c--a-w c:\windows\system32\dllcache\usbccgp.sys
    2009-04-19 07:05 . 2008-04-13 18:45 32128 ----a-w c:\windows\system32\drivers\usbccgp.sys
    2009-04-19 07:04 . 2004-02-01 00:00 34782 ----a-w c:\windows\system32\EPPICPrinterDB.dat
    2009-04-19 07:04 . 2004-02-01 00:00 413696 ----a-w c:\windows\system32\PICSDK.dll
    2009-04-19 07:04 . 2004-02-01 00:00 27030 ----a-w c:\windows\system32\EPPICPattern1.dat
    2009-04-19 07:04 . 2002-11-14 22:00 114688 ----a-w c:\windows\system32\EpPicPrt.dll
    2009-04-19 07:04 . 2002-11-14 22:00 65536 ----a-w c:\windows\system32\EPPicMgr.dll
    2009-04-19 07:02 . 2000-06-07 01:01 34304 ----a-w c:\windows\system32\E_FBCH9CE.DLL
    2009-04-19 07:02 . 2004-04-20 05:03 79654 ----a-w c:\windows\system32\E_FLM9CE.DLL
    2009-04-19 07:02 . 2003-05-21 02:27 64000 ----a-w c:\windows\system32\E_FBCB9CE.DLL
    2009-04-19 07:02 . 2003-04-10 05:40 31744 ----a-w c:\windows\system32\E_DCINST.DLL
    2009-04-19 07:02 . 2009-05-05 16:21 -------- d-----w c:\program files\EPSON
    2009-04-18 21:26 . 2009-04-18 21:26 -------- d-----w c:\documents and settings\JAMBON\Contacts
    2009-04-18 21:25 . 2009-04-18 21:25 -------- dc----w c:\windows\system32\DRVSTORE
    2009-04-18 21:25 . 2009-04-18 21:25 -------- d-----w c:\program files\MSN Messenger
    2009-04-18 21:24 . 2009-04-18 21:24 -------- d-----w c:\documents and settings\JAMBON\Application Data\Notepad++
    2009-04-18 21:23 . 2009-04-19 09:19 -------- d-----w c:\program files\Teamspeak2_RC2
    2009-04-18 21:21 . 2009-04-18 21:21 -------- d-----w c:\documents and settings\JAMBON\Local Settings\Application Data\Mozilla
    2009-04-18 20:48 . 2009-04-18 20:48 -------- d-----w c:\program files\SystemRequirementsLab
    2009-04-18 20:47 . 2009-04-18 20:48 -------- d-----w c:\documents and settings\Martine\Application Data\SystemRequirementsLab
    2009-04-18 20:47 . 2009-04-19 07:46 -------- d-----w c:\documents and settings\Martine\.jpi_cache
    2009-04-18 20:47 . 2009-04-18 20:47 -------- d-----w c:\documents and settings\Martine\.java
    2009-04-18 19:39 . 2009-04-18 19:39 -------- d-----w c:\documents and settings\All Users\Application Data\TVU Networks
    2009-04-18 19:39 . 2009-04-18 19:39 -------- d-----w c:\documents and settings\Martine\LocalLow
    2009-04-18 19:39 . 2009-04-18 19:39 -------- d-----w c:\documents and settings\Martine\Local Settings\Application Data\TVU Networks
    2009-04-18 18:22 . 1998-11-13 10:16 308224 ----a-w c:\windows\IsUn040c.exe
    2009-04-18 18:20 . 2005-05-03 07:33 299008 ----a-w c:\windows\system32\LAME_MP3.dll
    2009-04-18 18:20 . 2009-04-18 18:20 -------- d-----w c:\program files\Lame MP3 Codec
    2009-04-18 18:20 . 2009-04-18 18:20 65024 ----a-w c:\windows\IFinst26.exe
    2009-04-18 16:36 . 2009-04-18 16:36 -------- d-----w c:\documents and settings\Martine\Application Data\MSNInstaller
    2009-04-18 12:04 . 2009-04-18 12:09 -------- d-----w c:\program files\Winamp
    2009-04-18 11:56 . 2008-04-14 02:33 221184 ----a-w c:\windows\system32\wmpns.dll

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-05-08 11:36 . 2009-05-07 23:54 1132 ----a-w c:\windows\system32\drivers\APPFLTR.CFG.bck
    2009-05-08 11:36 . 2009-05-07 23:54 1132 ----a-w c:\windows\system32\drivers\APPFLTR.CFG
    2009-05-08 10:09 . 2009-05-07 23:54 226820 ----a-w c:\windows\system32\drivers\APPFCONT.DAT.bck
    2009-05-07 23:53 . 2009-04-17 06:41 -------- d--h--w c:\program files\InstallShield Installation Information
    2009-05-02 05:56 . 2009-04-17 06:51 69240 ----a-w c:\documents and settings\Martine\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    2009-04-23 16:10 . 2004-08-05 12:00 71248 ----a-w c:\windows\system32\perfc00C.dat
    2009-04-23 16:10 . 2004-08-05 12:00 458230 ----a-w c:\windows\system32\perfh00C.dat
    2009-04-19 07:04 . 2009-04-17 06:41 -------- d-----w c:\program files\Fichiers communs\InstallShield
    2009-04-18 17:38 . 2009-04-18 17:38 -------- d-----w c:\program files\MarkAny
    2009-04-18 10:29 . 2009-04-18 10:29 23 ----a-w c:\windows\system32\drivers\adidsl.cfg
    2009-04-17 13:18 . 2009-04-17 06:32 76507 ----a-w c:\windows\pchealth\helpctr\OfflineCache\index.dat
    2009-04-17 06:50 . 2009-04-17 06:50 -------- d-----w c:\program files\Alwil Software
    2009-04-17 06:41 . 2009-04-17 06:41 -------- d-----w c:\program files\Analog Devices
    2009-04-17 06:33 . 2009-04-17 06:33 -------- d-----w c:\program files\microsoft frontpage
    2009-04-17 06:32 . 2004-08-05 12:00 67 --sha-w c:\windows\Fonts\desktop.ini
    2009-04-17 06:32 . 2009-04-17 06:32 -------- d-----w c:\program files\Services en ligne
    2009-04-17 06:30 . 2009-04-17 06:30 21892 ----a-w c:\windows\system32\emptyregdb.dat
    2009-04-15 20:25 . 2009-04-18 12:09 43528 ------w c:\windows\system32\drivers\PxHelp20.sys
    2009-04-15 20:25 . 2009-04-18 12:09 129784 ------w c:\windows\system32\pxafs.dll
    2009-04-15 20:25 . 2009-04-18 12:09 118520 ------w c:\windows\system32\pxinsi64.exe
    2009-04-15 20:24 . 2009-04-15 20:24 90112 ----a-w c:\windows\system32\dpl100.dll
    2009-04-15 20:24 . 2009-04-15 20:24 823296 ----a-w c:\windows\system32\divx_xx0c.dll
    2009-04-15 20:24 . 2009-04-15 20:24 823296 ----a-w c:\windows\system32\divx_xx07.dll
    2009-04-15 20:24 . 2009-04-15 20:24 815104 ----a-w c:\windows\system32\divx_xx0a.dll
    2009-04-15 20:24 . 2009-04-15 20:24 802816 ----a-w c:\windows\system32\divx_xx11.dll
    2009-04-15 20:24 . 2009-04-15 20:24 684032 ----a-w c:\windows\system32\DivX.dll
    2009-03-06 14:20 . 2004-08-05 12:00 286720 ----a-w c:\windows\system32\pdh.dll
    2009-03-03 00:13 . 2004-08-05 12:00 826368 ----a-w c:\windows\system32\wininet.dll
    2009-02-25 21:42 . 2009-02-25 21:42 442368 ----a-w c:\windows\system32\ATIDEMGX.dll
    2009-02-25 20:58 . 2009-02-25 20:58 887724 ----a-w c:\windows\system32\ativva6x.dat
    2009-02-25 20:58 . 2009-02-25 20:58 3107788 ----a-w c:\windows\system32\ativva5x.dat
    2009-02-25 20:44 . 2009-02-25 20:44 49664 ----a-w c:\windows\system32\amdpcom32.dll
    2009-02-25 20:40 . 2009-02-25 20:40 475136 ----a-w c:\windows\system32\atikvmag.dll
    2009-02-25 20:38 . 2009-02-25 20:38 126976 ----a-w c:\windows\system32\atiadlxx.dll
    2009-02-25 20:37 . 2009-02-25 20:37 53248 ----a-w c:\windows\system32\drivers\ati2erec.dll
    2009-02-25 20:35 . 2009-02-25 20:35 290816 ----a-w c:\windows\system32\atiok3x2.dll
    2009-02-25 20:32 . 2009-02-25 20:32 45056 ----a-w c:\windows\system32\aticalrt.dll
    2009-02-25 20:32 . 2009-02-25 20:32 45056 ----a-w c:\windows\system32\aticalcl.dll
    2009-02-25 20:30 . 2009-02-25 20:30 3227648 ----a-w c:\windows\system32\aticaldd.dll
    2009-02-20 17:10 . 2004-08-05 12:00 78336 ----a-w c:\windows\system32\ieencode.dll
    2009-02-10 17:06 . 2004-08-04 00:48 2068096 ----a-w c:\windows\system32\ntkrnlpa.exe
    2009-02-09 14:05 . 2004-08-05 12:00 1846912 ----a-w c:\windows\system32\win32k.sys
    2009-02-09 11:24 . 2004-08-05 12:00 2191104 ----a-w c:\windows\system32\ntoskrnl.exe
    2009-02-09 11:23 . 2004-08-05 12:00 111104 ----a-w c:\windows\system32\services.exe
    2009-02-09 10:53 . 2004-08-05 12:00 735744 ----a-w c:\windows\system32\lsasrv.dll
    2009-02-09 10:53 . 2004-08-05 12:00 739840 ----a-w c:\windows\system32\ntdll.dll
    2009-02-09 10:53 . 2004-08-05 12:00 685568 ----a-w c:\windows\system32\advapi32.dll
    2009-02-09 10:53 . 2004-08-05 12:00 401408 ----a-w c:\windows\system32\rpcss.dll
    2009-04-15 20:24 . 2009-04-15 20:24 1044480 ----a-w c:\program files\mozilla firefox\plugins\libdivx.dll
    2009-04-15 20:24 . 2009-04-15 20:24 200704 ----a-w c:\program files\mozilla firefox\plugins\ssldivx.dll
    .

    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "WOOKIT"="c:\program files\Wanadoo\GestMaj.exe" [2004-10-14 32768]
    "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Smapp"="c:\program files\Analog Devices\SoundMAX\SMTray.exe" [2003-05-05 143360]
    "WOOWATCH"="c:\progra~1\Wanadoo\Watch.exe" [2004-08-23 20480]
    "WOOTASKBARICON"="c:\progra~1\Wanadoo\GestMaj.exe" [2004-10-14 32768]
    "EPSON Stylus Photo RX420 Series"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE" [2004-04-09 98304]
    "EPSON Stylus Photo RX420 Series (Copie 1)"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE" [2004-04-09 98304]
    "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-02-25 61440]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
    "APVXDWIN"="c:\program files\Panda Security\Panda Global Protection 2009\APVXDWIN.EXE" [2008-12-03 869632]
    "SCANINICIO"="c:\program files\Panda Security\Panda Global Protection 2009\Inicio.exe" [2008-07-07 50432]

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

    c:\documents and settings\Martine\Menu D‚marrer\Programmes\D‚marrage\
    ChkDisk.dll [2009-5-6 24064]
    ChkDisk.lnk - c:\windows\system32\rundll32.exe [2004-8-5 33792]

    c:\documents and settings\Martine\Menu D‚marrer\Programmes\D‚marrage\
    ChkDisk.dll [2009-5-6 24064]
    ChkDisk.lnk - c:\windows\system32\rundll32.exe [2004-8-5 33792]

    c:\documents and settings\Martine\Menu D‚marrer\Programmes\D‚marrage\
    ChkDisk.dll [2009-5-6 24064]
    ChkDisk.lnk - c:\windows\system32\rundll32.exe [2004-8-5 33792]

    c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
    DSLMON.lnk - c:\program files\SAGEM\SAGEM F@st 800-840\dslmon.exe [2009-4-18 962661]

    [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
    "NoSetActiveDesktop"= 1 (0x1)
    "NoActiveDesktopChanges"= 1 (0x1)

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avldr]
    2008-03-18 14:58 58672 ----a-w c:\windows\system32\avldr.dll

    HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32
    "MIDI1"= SYNCOR11.DLL

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ipfwrd.sys]
    @="Driver"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]
    @="Service"

    [HKEY_LOCAL_MACHINE\software\microsoft\security center]
    "AntiVirusOverride"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
    "EnableFirewall"= 0 (0x0)

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "c:\\Program Files\\Steam\\SteamApps\\porilabofte\\counter-strike source\\hl2.exe"=
    "c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
    "c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
    "c:\\Program Files\\MSN Messenger\\livecall.exe"=
    "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=

    R0 pavboot;Panda boot driver;c:\windows\system32\drivers\pavboot.sys [08/05/2009 01:52 28544]
    R1 APPFLT;App Filter Plugin;c:\windows\system32\drivers\APPFLT.SYS [08/05/2009 01:54 73728]
    R1 DSAFLT;DSA Filter Plugin;c:\windows\system32\drivers\dsaflt.sys [08/05/2009 01:54 52992]
    R1 FNETMON;NetMon Filter Plugin;c:\windows\system32\drivers\fnetmon.sys [08/05/2009 01:54 22072]
    R1 IDSFLT;Ids Filter Plugin;c:\windows\system32\drivers\idsflt.sys [08/05/2009 01:54 193792]
    R1 ipfwrd;TDIFilter Driver;c:\windows\system32\ipfwrd.sys [08/05/2009 02:26 8720]
    R1 NETFLTDI;Panda Net Driver [TDI Layer];c:\windows\system32\drivers\NETFLTDI.SYS [08/05/2009 01:54 158848]
    R1 PavTPK.sys;PavTPK.sys;\??\c:\windows\system32\PavTPK.sys --> c:\windows\system32\PavTPK.sys [?]
    R1 ShldDrv;Panda File Shield Driver;c:\windows\system32\drivers\ShlDrv51.sys [08/05/2009 01:51 41144]
    R1 WNMFLT;Wifi Monitor Filter Plugin;c:\windows\system32\drivers\wnmflt.sys [08/05/2009 01:54 46720]
    R2 Gwmsrv;Panda Goodware Cache Manager;c:\windows\system32\svchost -k Panda --> c:\windows\system32\svchost -k Panda [?]
    R2 PavProc;Panda Process Protection Driver;c:\windows\system32\drivers\PavProc.sys [08/05/2009 01:51 179640]
    R2 PskSvcRetail;Panda PSK service;c:\program files\Panda Security\Panda Global Protection 2009\psksvc.exe [08/05/2009 01:54 28928]
    R3 NETIMFLT01060034;PANDA NDIS IM Filter Miniport v1.6.0.34;c:\windows\system32\drivers\neti1634.sys [08/05/2009 01:53 197888]
    S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [21/04/2009 15:36 216232]

    --- Autres Services/Pilotes en mémoire ---

    *Deregistered* - ComFiltr

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    panda REG_MULTI_SZ Gwmsrv

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
    AppMgmt
    AudioSrv
    Browser
    CryptSvc
    DMServer
    DHCP
    ERSvc
    FastUserSwitchingCompatibility
    HidServ
    LanmanServer
    LanmanWorkstation
    Messenger
    Nla
    NWCWorkstation
    Schedule
    Seclogon
    SRService
    Themes
    TrkWks
    W32Time
    Wmi
    WmdmPmSp
    winmgmt
    wscsvc
    xmlprov
    BITS
    wuauserv
    ShellHWDetection
    helpsvc
    napagent
    hkmsvc
    .
    - - - - ORPHELINS SUPPRIMES - - - -

    HKU-Default-Run-uidenhiufgsduiazghs - c:\windows\TEMP\l4tklll.exe
    HKU-Default-Run-autochk - c:\docume~1\LOCALS~1\protect.dll
    Notify-ipfwrd - ipfwrd.dll


    .
    ------- Examen supplémentaire -------
    .
    uStart Page = hxxp://www.google.fr/
    IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
    FF - ProfilePath - c:\documents and settings\Martine\Application Data\Mozilla\Firefox\Profiles\r3xoas66.default\
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
    FF - plugin: c:\documents and settings\Martine\Application Data\Mozilla\Firefox\Profiles\r3xoas66.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins\nphardwaredetection.dll
    FF - plugin: c:\documents and settings\Martine\Application Data\Mozilla\Firefox\Profiles\r3xoas66.default\extensions\firefox@tvunetworks.com\plugins\npTVUAx.dll
    FF - plugin: c:\program files\Java\j2re1.4.0_03\bin\NPJava11.dll
    FF - plugin: c:\program files\Java\j2re1.4.0_03\bin\NPJava12.dll
    FF - plugin: c:\program files\Java\j2re1.4.0_03\bin\NPJava13.dll
    FF - plugin: c:\program files\Java\j2re1.4.0_03\bin\NPJava32.dll
    FF - plugin: c:\program files\Java\j2re1.4.0_03\bin\NPJPI140_03.dll
    FF - plugin: c:\program files\Java\j2re1.4.0_03\bin\NPOJI610.dll
    FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll
    FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
    .

    **************************************************************************

    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-05-08 13:36
    Windows 5.1.2600 Service Pack 3 NTFS

    Recherche de processus cachés ...

    Recherche d'éléments en démarrage automatique cachés ...

    Recherche de fichiers cachés ...


    **************************************************************************
    .
    ------------------------ Autres processus actifs ------------------------
    .
    c:\windows\system32\ati2evxx.exe
    c:\program files\Panda Security\Panda Global Protection 2009\TPSrv.exe
    c:\windows\system32\FTRTSVC.exe
    c:\program files\Panda Security\Panda Global Protection 2009\PsCtrlS.exe
    c:\program files\Panda Security\Panda Global Protection 2009\PavFnSvr.exe
    c:\program files\Fichiers communs\Panda Security\PavShld\PavPrSrv.exe
    c:\program files\Panda Security\Panda Global Protection 2009\PsImSvc.exe
    c:\program files\Analog Devices\SoundMAX\SMAgent.exe
    c:\program files\Panda Security\Panda Global Protection 2009\PAVSRV51.EXE
    c:\program files\Panda Security\Panda Global Protection 2009\AVENGINE.EXE
    c:\program files\Panda Security\Panda Global Protection 2009\FIREWALL\PSHost.exe
    c:\program files\Wanadoo\TaskBarIcon.exe
    c:\program files\Panda Security\Panda Global Protection 2009\PavBckPT.exe
    c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    c:\windows\system32\wscntfy.exe
    .
    **************************************************************************
    .
    Heure de fin: 2009-05-08 13:38 - La machine a redémarré
    ComboFix-quarantined-files.txt 2009-05-08 11:38

    Avant-CF: 117 185 323 008 octets libres
    Après-CF: 118 176 538 624 octets libres

    377 --- E O F --- 2009-04-19 11:52
    a c 267 8 Sécurité
    a b 9 Windows
    8 Mai 2009 15:04:12

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    8 Mai 2009 17:12:15

    Malwarebytes' Anti-Malware 1.36
    Version de la base de données: 2093
    Windows 5.1.2600 Service Pack 3

    08/05/2009 17:08:03
    mbam-log-2009-05-08 (17-08-00).txt

    Type de recherche: Examen complet (C:\|)
    Eléments examinés: 143523
    Temps écoulé: 27 minute(s), 18 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 3
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 18

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ipfwrd.sys (Trojan.Goldun) -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ipfwrd.sys (Trojan.Goldun) -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ipfwrd (Trojan.Goldun) -> No action taken.

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\WINDOWS\system32\drivers\mrxdavv.sys (Rootkit.Agent.H) -> No action taken.
    C:\Qoobox\Quarantine\C\Documents and Settings\LocalService\protect.dll.vir (Worm.Autorun) -> No action taken.
    C:\Qoobox\Quarantine\C\Documents and Settings\Martine\protect.dll.vir (Worm.Autorun) -> No action taken.
    C:\Qoobox\Quarantine\C\WINDOWS\system32\autochk.dll.vir (Worm.Autorun) -> No action taken.
    C:\Qoobox\Quarantine\C\WINDOWS\system32\ovfsthedxcjkratpwpjtbfkahassdbwxeuapbb.dll.vir (Trojan.TDSS) -> No action taken.
    C:\Qoobox\Quarantine\C\WINDOWS\system32\ovfsthxpxriqhhjvqijtjtuutlalrfcmxblfpb.dll.vir (Trojan.TDSS) -> No action taken.
    C:\Qoobox\Quarantine\C\WINDOWS\system32\config\systemprofile\protect.dll.vir (Worm.Autorun) -> No action taken.
    C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\ovfsthtuyynsbavsnbrnopupfuxdorcrxjaqxy.sys.vir (Trojan.TDSS) -> No action taken.
    C:\System Volume Information\_restore{2E982615-C51E-4762-A753-A10F6A9B7AEF}\RP45\A0019042.sys (Trojan.TDSS) -> No action taken.
    C:\System Volume Information\_restore{2E982615-C51E-4762-A753-A10F6A9B7AEF}\RP45\A0019044.dll (Trojan.TDSS) -> No action taken.
    C:\System Volume Information\_restore{2E982615-C51E-4762-A753-A10F6A9B7AEF}\RP45\A0019045.dll (Trojan.TDSS) -> No action taken.
    C:\System Volume Information\_restore{2E982615-C51E-4762-A753-A10F6A9B7AEF}\RP45\A0019068.dll (Worm.Autorun) -> No action taken.
    C:\System Volume Information\_restore{2E982615-C51E-4762-A753-A10F6A9B7AEF}\RP45\A0019069.dll (Worm.Autorun) -> No action taken.
    C:\System Volume Information\_restore{2E982615-C51E-4762-A753-A10F6A9B7AEF}\RP45\A0019071.dll (Worm.Autorun) -> No action taken.
    C:\System Volume Information\_restore{2E982615-C51E-4762-A753-A10F6A9B7AEF}\RP45\A0019072.dll (Worm.Autorun) -> No action taken.
    C:\WINDOWS\system32\config\systemprofile\Menu Démarrer\Programmes\Démarrage\ChkDisk.dll (Worm.Autorun) -> No action taken.
    C:\WINDOWS\system32\kwave.sys (Trojan.Agent) -> No action taken.
    C:\WINDOWS\system32\loader49.exe (Trojan.Downloader) -> No action taken.
    a c 267 8 Sécurité
    a b 9 Windows
    8 Mai 2009 18:38:13

    Tu as supprimé les infections ?
    8 Mai 2009 20:07:41

    oui maintenant je fait quoi, mais a parrament ces partis mais pas sur.Sinon tu peut me donner des conseils pour Être plus vigilant sur internet
    a c 267 8 Sécurité
    a b 9 Windows
    8 Mai 2009 21:31:56

  • Menu Démarrer > Exécuter > Tape combofix /u et valide.

  • Relance MBAM, va dans Quarantaine et supprime tout.

  • Refais un scan RSIT et poste le rapport log.
    9 Mai 2009 09:40:39

    log :

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Martine at 2009-05-09 09:40:06
    Microsoft Windows XP Édition familiale Service Pack 3
    System drive C: has 117 GB (74%) free of 157 GB
    Total RAM: 512 MB (43% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 09:40:19, on 09/05/2009
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16827)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\TPSrv.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\System32\FTRTSVC.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\PsCtrls.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\PavFnSvr.exe
    C:\Program Files\Fichiers communs\Panda Security\PavShld\pavprsrv.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\PsImSvc.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\PskSvc.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\pavsrv51.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\AVENGINE.EXE
    c:\program files\panda security\panda global protection 2009\firewall\PSHOST.EXE
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\PavBckPT.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
    C:\Program Files\Wanadoo\GestionnaireInternet.exe
    C:\Program Files\Wanadoo\ComComp.exe
    C:\PROGRA~1\Wanadoo\Toaster.exe
    C:\PROGRA~1\Wanadoo\Inactivity.exe
    C:\PROGRA~1\Wanadoo\PollingModule.exe
    C:\Program Files\Wanadoo\Watch.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\apvxdwin.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\WebProxy.exe
    C:\Program Files\Panda Security\Panda Global Protection 2009\SRVLOAD.EXE
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Martine\Bureau\RSIT.exe
    C:\Documents and Settings\Martine\Bureau\Martine.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
    O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
    O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P31 "EPSON Stylus Photo RX420 Series" /O5 "LPT1:" /M "Stylus Photo RX420"
    O4 - HKLM\..\Run: [EPSON Stylus Photo RX420 Series (Copie 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE /P41 "EPSON Stylus Photo RX420 Series (Copie 1)" /O6 "USB001" /M "Stylus Photo RX420"
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Global Protection 2009\APVXDWIN.EXE" /s
    O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Global Protection 2009\Inicio.exe"
    O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\GestMaj.exe EspaceWanadoo.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - S-1-5-18 Startup: ChkDisk.lnk = ? (User 'SYSTEM')
    O4 - S-1-5-18 Startup: MaxTV.lnk = C:\Program Files\DMV\MaxTV4\maxtv.exe (User 'SYSTEM')
    O4 - .DEFAULT Startup: ChkDisk.lnk = ? (User 'Default user')
    O4 - .DEFAULT Startup: MaxTV.lnk = C:\Program Files\DMV\MaxTV4\maxtv.exe (User 'Default user')
    O4 - Startup: ChkDisk.lnk = ?
    O4 - Startup: MaxTV.lnk = C:\Program Files\DMV\MaxTV4\maxtv.exe
    O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O17 - HKLM\System\CCS\Services\Tcpip\..\{1EDD014F-1429-4E14-9AF5-1DB4CB43C397}: NameServer = 80.10.246.1 81.253.149.2
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
    O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
    O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\PsCtrls.exe
    O23 - Service: Panda Function Service (PAVFNSVR) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\PavFnSvr.exe
    O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Security, S.L. - C:\Program Files\Fichiers communs\Panda Security\PavShld\pavprsrv.exe
    O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\pavsrv51.exe
    O23 - Service: Panda Host Service (PSHost) - Panda Software International - c:\program files\panda security\panda global protection 2009\firewall\PSHOST.EXE
    O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\PsImSvc.exe
    O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\PskSvc.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2009\TPSrv.exe

    --
    End of file - 7048 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Smapp"=C:\Program Files\Analog Devices\SoundMAX\SMTray.exe [2003-05-05 143360]
    "WOOWATCH"=C:\PROGRA~1\Wanadoo\Watch.exe [2004-08-23 20480]
    "WOOTASKBARICON"=C:\PROGRA~1\Wanadoo\GestMaj.exe [2004-10-14 32768]
    "EPSON Stylus Photo RX420 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE [2004-04-09 98304]
    "EPSON Stylus Photo RX420 Series (Copie 1)"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9CE.EXE [2004-04-09 98304]
    "StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-25 61440]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
    "APVXDWIN"=C:\Program Files\Panda Security\Panda Global Protection 2009\APVXDWIN.EXE [2008-12-03 869632]
    "SCANINICIO"=C:\Program Files\Panda Security\Panda Global Protection 2009\Inicio.exe [2008-07-07 50432]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "WOOKIT"=C:\Program Files\Wanadoo\GestMaj.exe [2004-10-14 32768]
    "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
    DSLMON.lnk - C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe

    C:\Documents and Settings\Martine\Menu Démarrer\Programmes\Démarrage
    ChkDisk.lnk - C:\WINDOWS\system32\rundll32.exe
    MaxTV.lnk - C:\Program Files\DMV\MaxTV4\maxtv.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avldr]
    C:\WINDOWS\system32\avldr.dll [2008-03-18 58672]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun"=323
    "NoDriveAutoRun"=67108863
    "NoDrives"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "HonorAutoRunSetting"=
    "NoDriveAutoRun"=
    "NoDriveTypeAutoRun"=
    "NoDrives"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\Steam\SteamApps\porilabofte\counter-strike source\hl2.exe"="C:\Program Files\Steam\SteamApps\porilabofte\counter-strike source\hl2.exe:*:Enabled:hl2"
    "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
    "C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
    "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
    "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
    "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
    "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
    "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

    ======File associations======

    .js - open - C:\PROGRA~1\PANDAS~1\PANDAG~1\PAVSCRIP.EXE "%1" %*
    .vbs - open - C:\PROGRA~1\PANDAS~1\PANDAG~1\PAVSCRIP.EXE "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-05-09 09:37:44 ----D---- C:\ComboFix
    2009-05-08 23:56:05 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
    2009-05-08 23:55:54 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
    2009-05-08 23:55:41 ----HDC---- C:\WINDOWS\$NtUninstallKB959772_WM11$
    2009-05-08 23:55:33 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
    2009-05-08 23:55:31 ----A---- C:\WINDOWS\imsins.BAK
    2009-05-08 23:55:25 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
    2009-05-08 22:30:45 ----D---- C:\Program Files\QuickMediaConverter
    2009-05-08 22:20:05 ----A---- C:\WINDOWS\system32\muweb.dll
    2009-05-08 22:20:05 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
    2009-05-08 22:20:05 ----A---- C:\WINDOWS\system32\mucltui.dll
    2009-05-08 17:10:49 ----SHD---- C:\RECYCLER
    2009-05-08 13:38:39 ----A---- C:\ComboFix.txt
    2009-05-08 12:49:14 ----A---- C:\Boot.bak
    2009-05-08 12:49:10 ----RASHD---- C:\cmdcons
    2009-05-08 12:36:39 ----D---- C:\WINDOWS\ERDNT
    2009-05-08 12:16:05 ----D---- C:\rsit
    2009-05-08 11:14:41 ----D---- C:\Program Files\CCleaner
    2009-05-08 01:54:00 ----A---- C:\WINDOWS\system32\HHActiveX.dll
    2009-05-08 01:53:55 ----A---- C:\WINDOWS\system32\TpUtil.dll
    2009-05-08 01:53:55 ----A---- C:\WINDOWS\system32\SYSTOOLS.DLL
    2009-05-08 01:53:55 ----A---- C:\WINDOWS\system32\PavSHook.dll
    2009-05-08 01:53:55 ----A---- C:\WINDOWS\system32\PavLspHook.dll
    2009-05-08 01:53:55 ----A---- C:\WINDOWS\system32\pavipc.dll
    2009-05-08 01:53:51 ----D---- C:\WINDOWS\system32\PAV
    2009-05-08 01:53:51 ----A---- C:\WINDOWS\system32\avldr.dll
    2009-05-08 01:53:50 ----D---- C:\Program Files\Panda Security
    2009-05-08 01:53:50 ----D---- C:\Documents and Settings\Martine\Application Data\Panda Security
    2009-05-08 01:53:50 ----D---- C:\Documents and Settings\All Users\Application Data\Panda Security
    2009-05-08 01:51:41 ----D---- C:\Program Files\Fichiers communs\Panda Security
    2009-05-05 19:23:06 ----D---- C:\WINDOWS\Minidump
    2009-05-05 19:08:53 ----A---- C:\WINDOWS\system32\epDPE.ini
    2009-05-05 19:08:53 ----A---- C:\WINDOWS\SlantAdj.dll
    2009-05-05 19:08:53 ----A---- C:\WINDOWS\ADE.DLL
    2009-05-05 19:08:33 ----D---- C:\Program Files\Smart Panel
    2009-05-05 18:39:19 ----D---- C:\Documents and Settings\Martine\Application Data\Malwarebytes
    2009-05-05 18:39:12 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-05-05 18:39:12 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2009-05-03 19:53:09 ----D---- C:\Documents and Settings\Martine\Application Data\DMV Technologies
    2009-05-03 19:51:44 ----N---- C:\WINDOWS\system32\spmsg.dll
    2009-05-03 19:51:14 ----D---- C:\WINDOWS\MaxTV
    2009-05-03 19:51:14 ----D---- C:\Program Files\DMV
    2009-05-03 19:51:10 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
    2009-05-03 19:50:25 ----D---- C:\Program Files\Windows Media Connect 2
    2009-05-03 19:50:05 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
    2009-05-03 19:48:08 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
    2009-05-03 19:47:15 ----D---- C:\WINDOWS\system32\LogFiles
    2009-05-03 19:47:04 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
    2009-05-03 19:00:48 ----A---- C:\WINDOWS\system32\escwiadn.dll
    2009-05-03 19:00:48 ----A---- C:\WINDOWS\system32\escimgd.dll
    2009-05-03 19:00:48 ----A---- C:\WINDOWS\system32\esccmd.dll
    2009-05-03 18:47:17 ----D---- C:\Documents and Settings\Martine\Application Data\DivX
    2009-05-03 18:46:05 ----HD---- C:\WINDOWS\PIF
    2009-05-03 12:01:52 ----D---- C:\spoolerlogs
    2009-05-01 21:48:43 ----D---- C:\Program Files\Microsoft Works
    2009-05-01 21:48:26 ----D---- C:\Program Files\MSBuild
    2009-05-01 21:48:03 ----D---- C:\Program Files\Microsoft Visual Studio
    2009-05-01 21:48:03 ----D---- C:\Program Files\Fichiers communs\DESIGNER
    2009-05-01 21:46:14 ----D---- C:\Program Files\Microsoft.NET
    2009-05-01 21:42:29 ----D---- C:\Program Files\Microsoft Visual Studio 8
    2009-05-01 21:41:47 ----D---- C:\WINDOWS\SHELLNEW
    2009-05-01 21:41:16 ----D---- C:\Program Files\Microsoft Office
    2009-05-01 21:41:14 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
    2009-05-01 21:40:07 ----RHD---- C:\MSOCache
    2009-04-25 14:04:01 ----D---- C:\Documents and Settings\Martine\Application Data\FileZilla
    2009-04-25 12:42:36 ----D---- C:\Program Files\FileZilla FTP Client
    2009-04-25 00:24:36 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
    2009-04-25 00:23:58 ----D---- C:\Program Files\Fichiers communs\DivX Shared
    2009-04-25 00:23:57 ----D---- C:\Program Files\DivX
    2009-04-24 18:01:00 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
    2009-04-24 18:00:45 ----D---- C:\Program Files\Fichiers communs\Adobe
    2009-04-24 18:00:45 ----D---- C:\Program Files\Adobe
    2009-04-23 20:56:02 ----D---- C:\Documents and Settings\Martine\Application Data\Help
    2009-04-23 18:21:20 ----D---- C:\Documents and Settings\Martine\Application Data\ATI
    2009-04-23 18:21:20 ----D---- C:\Documents and Settings\All Users\Application Data\ATI
    2009-04-23 18:07:51 ----RSD---- C:\WINDOWS\assembly
    2009-04-23 18:07:04 ----D---- C:\WINDOWS\Microsoft.NET
    2009-04-23 18:04:13 ----A---- C:\WINDOWS\Radio_Fr.ini
    2009-04-23 17:39:42 ----N---- C:\WINDOWS\system32\ati2sgag.exe
    2009-04-23 17:38:51 ----D---- C:\Program Files\ATI Technologies
    2009-04-23 17:37:39 ----D---- C:\ATI
    2009-04-22 15:07:00 ----D---- C:\Program Files\ma-config.com
    2009-04-22 15:07:00 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com
    2009-04-20 20:35:31 ----D---- C:\Documents and Settings\All Users\Application Data\Backup
    2009-04-19 13:51:53 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
    2009-04-19 12:29:48 ----D---- C:\Documents and Settings\Martine\Application Data\WinRAR
    2009-04-19 12:29:34 ----D---- C:\Program Files\WinRAR
    2009-04-19 11:19:49 ----D---- C:\Documents and Settings\Martine\Application Data\teamspeak2
    2009-04-19 09:49:13 ----D---- C:\Documents and Settings\Martine\Application Data\Mumble
    2009-04-19 09:48:56 ----D---- C:\Program Files\Mumble
    2009-04-19 09:13:36 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
    2009-04-19 09:04:22 ----A---- C:\WINDOWS\system32\PICSDK.ini
    2009-04-19 09:04:21 ----A---- C:\WINDOWS\system32\PICSDK.dll
    2009-04-19 09:04:21 ----A---- C:\WINDOWS\system32\EpPicPrt.dll
    2009-04-19 09:04:21 ----A---- C:\WINDOWS\system32\EPPicMgr.dll
    2009-04-19 09:02:19 ----A---- C:\WINDOWS\system32\E_FLM9CE.DLL
    2009-04-19 09:02:19 ----A---- C:\WINDOWS\system32\E_FBCH9CE.DLL
    2009-04-19 09:02:18 ----A---- C:\WINDOWS\system32\E_FBCB9CE.DLL
    2009-04-19 09:02:16 ----A---- C:\WINDOWS\system32\E_DCINST.DLL
    2009-04-19 09:02:06 ----D---- C:\Program Files\EPSON
    2009-04-19 09:01:23 ----A---- C:\WINDOWS\CDE RX420FG.ini
    2009-04-18 23:25:31 ----DC---- C:\WINDOWS\system32\DRVSTORE
    2009-04-18 23:25:18 ----D---- C:\Program Files\MSN Messenger
    2009-04-18 23:23:35 ----D---- C:\Program Files\Teamspeak2_RC2
    2009-04-18 22:48:04 ----D---- C:\Program Files\SystemRequirementsLab
    2009-04-18 22:47:50 ----D---- C:\Documents and Settings\Martine\Application Data\SystemRequirementsLab
    2009-04-18 21:39:24 ----D---- C:\Documents and Settings\All Users\Application Data\TVU Networks
    2009-04-18 20:22:08 ----A---- C:\WINDOWS\IsUn040c.exe
    2009-04-18 20:20:34 ----A---- C:\WINDOWS\system32\LAME_MP3.dll
    2009-04-18 20:20:33 ----D---- C:\Program Files\Lame MP3 Codec
    2009-04-18 20:20:20 ----A---- C:\WINDOWS\IFinst26.exe
    2009-04-18 19:38:46 ----A---- C:\WINDOWS\system32\MTXSYNCICON.dll
    2009-04-18 19:38:46 ----A---- C:\WINDOWS\system32\MTTELECHIP.dll
    2009-04-18 19:38:46 ----A---- C:\WINDOWS\system32\MSFLib.dll
    2009-04-18 19:38:46 ----A---- C:\WINDOWS\system32\MSCLib.dll
    2009-04-18 19:38:45 ----A---- C:\WINDOWS\system32\MASetupWizard.dll
    2009-04-18 19:38:45 ----A---- C:\WINDOWS\system32\MASetupCleaner.exe
    2009-04-18 19:38:44 ----A---- C:\WINDOWS\system32\MaXMLProto.dll
    2009-04-18 19:38:43 ----A---- C:\WINDOWS\system32\MK_Lyric.dll
    2009-04-18 19:38:43 ----A---- C:\WINDOWS\system32\MaJUtilLib.dll
    2009-04-18 19:38:43 ----A---- C:\WINDOWS\system32\MaJGUILib.dll
    2009-04-18 19:38:43 ----A---- C:\WINDOWS\system32\MACXMLProto.dll
    2009-04-18 19:38:37 ----D---- C:\Program Files\MarkAny
    2009-04-18 19:38:37 ----A---- C:\WINDOWS\system32\MAMACExtract.dll
    2009-04-18 19:38:26 ----A---- C:\WINDOWS\system32\MaDRM.dll
    2009-04-18 18:36:19 ----D---- C:\Documents and Settings\Martine\Application Data\MSNInstaller
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\vxblock.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxwave.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxsfs.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxmas.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxinsi64.exe
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxinsa64.exe
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxhpinst.exe
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxdrv.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxcpya64.exe
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\pxafs.dll
    2009-04-18 14:09:13 ----N---- C:\WINDOWS\system32\px.dll
    2009-04-18 14:07:58 ----D---- C:\WINDOWS\RegisteredPackages
    2009-04-18 14:04:01 ----D---- C:\Program Files\Winamp
    2009-04-18 13:56:23 ----A---- C:\WINDOWS\system32\wmpns.dll
    2009-04-18 13:00:25 ----D---- C:\Documents and Settings\Martine\Application Data\Macromedia
    2009-04-18 13:00:25 ----D---- C:\Documents and Settings\Martine\Application Data\Adobe
    2009-04-18 12:56:48 ----A---- C:\WINDOWS\system32\W32n50.dll
    2009-04-18 12:38:56 ----D---- C:\Documents and Settings\Martine\Application Data\Mozilla
    2009-04-18 12:38:44 ----D---- C:\Program Files\Mozilla Firefox
    2009-04-18 12:38:19 ----D---- C:\Program Files\Steam
    2009-04-18 12:30:28 ----A---- C:\WINDOWS\system32\WooDial2000.dll
    2009-04-18 12:29:25 ----A---- C:\WINDOWS\Fast800.ini
    2009-04-18 12:29:25 ----A---- C:\WINDOWS\adidsl.ini
    2009-04-18 12:29:21 ----A---- C:\WINDOWS\system32\ipdetect.exe
    2009-04-18 12:29:21 ----A---- C:\WINDOWS\system32\adadix32.dll
    2009-04-18 12:29:21 ----A---- C:\WINDOWS\adiras.ini
    2009-04-18 12:29:19 ----A---- C:\WINDOWS\system32\coclassfast.dll
    2009-04-18 12:29:18 ----A---- C:\WINDOWS\system32\unaddrv.exe
    2009-04-18 12:29:18 ----A---- C:\WINDOWS\system32\adadix2k.dll
    2009-04-18 12:29:18 ----A---- C:\WINDOWS\system32\adadix16.dll
    2009-04-18 12:29:14 ----D---- C:\Program Files\SAGEM
    2009-04-18 12:28:51 ----D---- C:\WINDOWS\system32\AlertModule
    2009-04-18 12:28:45 ----A---- C:\WINDOWS\system32\IfHelper.dll
    2009-04-18 12:28:44 ----A---- C:\WINDOWS\system32\FTRTSVC.exe
    2009-04-18 12:28:29 ----N---- C:\WINDOWS\system32\javaw.exe
    2009-04-18 12:28:29 ----N---- C:\WINDOWS\system32\java.exe
    2009-04-18 12:28:22 ----N---- C:\WINDOWS\system32\ActPanel.dll
    2009-04-18 12:28:21 ----D---- C:\Program Files\Java
    2009-04-18 12:27:59 ----A---- C:\WINDOWS\system32\ffJmpWeb.dll
    2009-04-18 12:27:58 ----D---- C:\Program Files\Wanadoo Messager
    2009-04-18 12:26:42 ----D---- C:\Program Files\Wanadoo
    2009-04-18 09:16:45 ----D---- C:\Documents and Settings\Martine\Application Data\vlc
    2009-04-18 09:16:16 ----D---- C:\Program Files\VideoLAN
    2009-04-18 09:07:13 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
    2009-04-18 09:07:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
    2009-04-18 09:06:47 ----D---- C:\WINDOWS\ie7updates
    2009-04-18 09:06:23 ----D---- C:\WINDOWS\WBEM
    2009-04-18 09:05:34 ----HDC---- C:\WINDOWS\ie7
    2009-04-18 09:05:25 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
    2009-04-18 09:05:14 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
    2009-04-17 15:22:58 ----D---- C:\WINDOWS\Prefetch
    2009-04-17 15:21:35 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
    2009-04-17 15:21:28 ----HDC---- C:\WINDOWS\$NtUninstallKB963027$
    2009-04-17 15:21:23 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
    2009-04-17 15:21:19 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
    2009-04-17 15:21:13 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
    2009-04-17 15:21:08 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
    2009-04-17 15:21:03 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
    2009-04-17 15:20:58 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
    2009-04-17 15:20:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
    2009-04-17 15:20:49 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
    2009-04-17 15:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
    2009-04-17 15:20:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
    2009-04-17 15:20:31 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
    2009-04-17 15:20:25 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
    2009-04-17 15:20:20 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
    2009-04-17 15:20:15 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
    2009-04-17 15:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
    2009-04-17 15:20:05 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
    2009-04-17 15:20:00 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
    2009-04-17 15:19:55 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
    2009-04-17 15:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
    2009-04-17 15:19:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
    2009-04-17 15:19:41 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
    2009-04-17 15:19:36 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
    2009-04-17 15:19:32 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
    2009-04-17 15:19:26 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
    2009-04-17 15:16:58 ----D---- C:\WINDOWS\system32\fr-fr
    2009-04-17 15:16:57 ----D---- C:\WINDOWS\system32\fr
    2009-04-17 15:16:57 ----D---- C:\WINDOWS\l2schemas
    2009-04-17 15:16:56 ----D---- C:\WINDOWS\system32\bits
    2009-04-17 15:15:29 ----D---- C:\WINDOWS\ServicePackFiles
    2009-04-17 15:13:55 ----D---- C:\WINDOWS\network diagnostic
    2009-04-17 15:12:45 ----D---- C:\WINDOWS\system32\ReinstallBackups
    2009-04-17 15:10:25 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
    2009-04-17 15:10:23 ----D---- C:\WINDOWS\EHome
    2009-04-17 14:57:43 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
    2009-04-17 14:50:28 ----D---- C:\Program Files\YouTube Downloader
    2009-04-17 14:40:30 ----D---- C:\SAUVEGARDE MME DELORME
    2009-04-17 10:27:49 ----A---- C:\WINDOWS\system32\h323log.txt
    2009-04-17 10:21:32 ----A---- C:\WINDOWS\system32\ativvaxx.dll
    2009-04-17 10:21:32 ----A---- C:\WINDOWS\system32\ati3duag.dll
    2009-04-17 10:21:32 ----A---- C:\WINDOWS\system32\ati3d1ag.dll
    2009-04-17 10:21:32 ----A---- C:\WINDOWS\system32\ati2dvag.dll
    2009-04-17 10:21:32 ----A---- C:\WINDOWS\system32\ati2cqag.dll
    2009-04-17 10:21:17 ----A---- C:\WINDOWS\system32\usbui.dll
    2009-04-17 10:20:24 ----SHD---- C:\WINDOWS\Installer
    2009-04-17 10:20:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
    2009-04-17 10:20:23 ----D---- C:\Program Files\Fichiers communs\ODBC
    2009-04-17 10:20:23 ----A---- C:\WINDOWS\ODBCINST.INI
    2009-04-17 10:20:20 ----RD---- C:\Program Files
    2009-04-17 10:20:20 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
    2009-04-17 10:20:20 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
    2009-04-17 10:20:20 ----D---- C:\Program Files\Fichiers communs
    2009-04-17 10:20:17 ----RA---- C:\WINDOWS\system32\kbdazel.dll
    2009-04-17 10:20:16 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
    2009-04-17 10:20:16 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdycc.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbduzb.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdur.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdtat.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdru1.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdru.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdmon.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdbu.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdblr.dll
    2009-04-17 10:20:14 ----RA---- C:\WINDOWS\system32\kbdaze.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhept.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdhe.dll
    2009-04-17 10:20:11 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
    2009-04-17 10:20:10 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
    2009-04-17 10:20:10 ----RA---- C:\WINDOWS\system32\kbdlt.dll
    2009-04-17 10:20:09 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
    2009-04-17 10:20:09 ----RA---- C:\WINDOWS\system32\kbdlv.dll
    2009-04-17 10:20:09 ----RA---- C:\WINDOWS\system32\kbdest.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdycl.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdsl.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdro.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdpl.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdhu.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdcz.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\kbdcr.dll
    2009-04-17 10:20:07 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
    2009-04-17 10:20:04 ----A---- C:\WINDOWS\system32\spxcoins.dll
    2009-04-17 10:20:04 ----A---- C:\WINDOWS\system32\irclass.dll
    2009-04-17 10:20:04 ----A---- C:\WINDOWS\system32\EqnClass.Dll
    2009-04-17 10:20:04 ----A---- C:\WINDOWS\system32\dgsetup.dll
    2009-04-17 10:20:04 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
    2009-04-17 10:20:01 ----N---- C:\WINDOWS\system32\CONFIG.TMP
    2009-04-17 10:20:01 ----A---- C:\WINDOWS\TASKMAN.EXE
    2009-04-17 10:20:01 ----A---- C:\WINDOWS\system32\batt.dll
    2009-04-17 10:20:00 ----A---- C:\WINDOWS\notepad.exe
    2009-04-17 10:19:59 ----A---- C:\WINDOWS\system32\storprop.dll
    2009-04-17 10:19:53 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
    2009-04-17 10:19:49 ----RA---- C:\WINDOWS\SET8.tmp
    2009-04-17 10:19:46 ----RA---- C:\WINDOWS\SET4.tmp
    2009-04-17 10:19:45 ----RA---- C:\WINDOWS\SET3.tmp
    2009-04-17 10:19:40 ----D---- C:\WINDOWS\system32\CatRoot2
    2009-04-17 10:19:40 ----D---- C:\WINDOWS\system32\CatRoot
    2009-04-17 10:19:34 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2009-04-17 10:19:08 ----SHD---- C:\System Volume Information
    2009-04-17 10:19:08 ----D---- C:\Documents and Settings
    2009-04-17 09:12:47 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
    2009-04-17 09:12:43 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
    2009-04-17 09:12:38 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$
    2009-04-17 09:12:34 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
    2009-04-17 09:12:30 ----HDC---- C:\WINDOWS\$NtUninstallKB961373_0$
    2009-04-17 09:12:26 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
    2009-04-17 09:12:22 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
    2009-04-17 09:12:17 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
    2009-04-17 09:12:13 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$
    2009-04-17 09:12:01 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$
    2009-04-17 09:11:56 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2_0$
    2009-04-17 09:11:52 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
    2009-04-17 09:11:47 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$
    2009-04-17 09:11:43 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
    2009-04-17 09:11:39 ----HDC---- C:\WINDOWS\$NtUninstallKB957097_0$
    2009-04-17 09:11:35 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
    2009-04-17 09:11:32 ----HDC---- C:\WINDOWS\$NtUninstallKB958687_0$
    2009-04-17 09:11:28 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
    2009-04-17 09:11:21 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
    2009-04-17 09:11:18 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
    2009-04-17 09:11:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$
    2009-04-17 09:11:09 ----HDC---- C:\WINDOWS\$NtUninstallKB958690_0$
    2009-04-17 09:11:04 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
    2009-04-17 09:11:00 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$
    2009-04-17 09:10:56 ----HDC---- C:\WINDOWS\$NtUninstallKB954600_0$
    2009-04-17 09:10:52 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
    2009-04-17 09:10:48 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
    2009-04-17 09:10:44 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
    2009-04-17 09:10:28 ----HDC---- C:\WINDOWS\$NtUninstallKB963027_0$
    2009-04-17 09:10:23 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
    2009-04-17 09:10:16 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$
    2009-04-17 09:09:23 ----A---- C:\WINDOWS\system32\wpa.bak
    2009-04-17 08:52:43 ----D---- C:\WINDOWS\system32\PreInstall
    2009-04-17 08:52:43 ----A---- C:\WINDOWS\system32\spupdsvc.exe
    2009-04-17 08:52:42 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
    2009-04-17 08:52:42 ----HD---- C:\WINDOWS\$hf_mig$
    2009-04-17 08:50:04 ----A---- C:\WINDOWS\system32\MSVCR71.DLL
    2009-04-17 08:50:04 ----A---- C:\WINDOWS\system32\MSVCP71.DLL
    2009-04-17 08:50:04 ----A---- C:\WINDOWS\system32\MFC71.dll
    2009-04-17 08:50:02 ----D---- C:\Program Files\Alwil Software
    2009-04-17 08:45:49 ----D---- C:\WINDOWS\system32\SoftwareDistribution
    2009-04-17 08:41:29 ----A---- C:\WINDOWS\system32\ksuser.dll
    2009-04-17 08:41:26 ----A---- C:\WINDOWS\system32\wdmioctl.dll
    2009-04-17 08:41:25 ----A---- C:\WINDOWS\system32\SMMedia.dll
    2009-04-17 08:41:23 ----A---- C:\WINDOWS\SynthCoreA.Dll
    2009-04-17 08:41:23 ----A---- C:\WINDOWS\SynCor.exe
    2009-04-17 08:41:22 ----A---- C:\WINDOWS\system32\Syncor11.dll
    2009-04-17 08:41:22 ----A---- C:\WINDOWS\system32\S11thk32.dll
    2009-04-17 08:41:21 ----A---- C:\WINDOWS\system32\SynthCore11Resources.dll
    2009-04-17 08:41:18 ----D---- C:\WINDOWS\VirtualEar
    2009-04-17 08:41:17 ----A---- C:\WINDOWS\system32\virtear.dll
    2009-04-17 08:41:17 ----A---- C:\WINDOWS\system32\Audio3d.dll
    2009-04-17 08:41:15 ----A---- C:\WINDOWS\system32\a3d.dll
    2009-04-17 08:41:14 ----D---- C:\Program Files\Analog Devices
    2009-04-17 08:41:14 ----A---- C:\WINDOWS\system32\DSndUp.exe
    2009-04-17 08:41:14 ----A---- C:\WINDOWS\system32\CleanUp.exe
    2009-04-17 08:41:13 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-04-17 08:41:07 ----D---- C:\Program Files\Fichiers communs\InstallShield
    2009-04-17 08:40:45 ----A---- C:\WINDOWS\Ascd_tmp.ini
    2009-04-17 08:37:45 ----D---- C:\Documents and Settings\Martine\Application Data\Identities
    2009-04-17 08:37:44 ----HD---- C:\Program Files\Uninstall Information
    2009-04-17 08:37:39 ----ASH---- C:\Documents and Settings\Martine\Application Data\desktop.ini
    2009-04-17 08:37:38 ----SD---- C:\Documents and Settings\Martine\Application Data\Microsoft
    2009-04-17 08:36:18 ----D---- C:\WINDOWS\SoftwareDistribution
    2009-04-17 08:36:16 ----SD---- C:\WINDOWS\system32\Microsoft
    2009-04-17 08:36:16 ----A---- C:\WINDOWS\SchedLgU.Txt
    2009-04-17 08:33:23 ----D---- C:\WINDOWS\system32\xircom
    2009-04-17 08:33:23 ----D---- C:\Program Files\xerox
    2009-04-17 08:33:23 ----D---- C:\Program Files\microsoft frontpage
    2009-04-17 08:33:14 ----A---- C:\WINDOWS\control.ini
    2009-04-17 08:33:14 ----A---- C:\AUTOEXEC.BAT
    2009-04-17 08:32:58 ----A---- C:\WINDOWS\system32\mapi32.dll
    2009-04-17 08:32:15 ----SD---- C:\WINDOWS\Downloaded Program Files
    2009-04-17 08:32:15 ----RD---- C:\WINDOWS\Offline Web Pages
    2009-04-17 08:32:15 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
    2009-04-17 08:32:10 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
    2009-04-17 08:32:06 ----HD---- C:\Program Files\WindowsUpdate
    2009-04-17 08:32:03 ----D---- C:\Program Files\Services en ligne
    2009-04-17 08:31:45 ----D---- C:\WINDOWS\system32\DirectX
    2009-04-17 08:31:23 ----A---- C:\WINDOWS\system32\atrace.dll
    2009-04-17 08:31:20 ----A---- C:\WINDOWS\system32\desktop.ini
    2009-04-17 08:31:20 ----A---- C:\WINDOWS\desktop.ini
    2009-04-17 08:31:12 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
    2009-04-17 08:31:11 ----D---- C:\Program Files\Fichiers communs\Services
    2009-04-17 08:31:11 ----A---- C:\WINDOWS\system32\acctres.dll
    2009-04-17 08:31:07 ----SD---- C:\WINDOWS\Tasks
    2009-04-17 08:31:07 ----A---- C:\WINDOWS\system32\icfgnt5.dll
    2009-04-17 08:31:06 ----D---- C:\Program Files\Fichiers communs\MSSoap
    2009-04-17 08:31:02 ----D---- C:\WINDOWS\srchasst
    2009-04-17 08:31:01 ----D---- C:\WINDOWS\system32\Macromed
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wuweb.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wups.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wucltui.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wuauserv.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wuaueng1.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wuaueng.dll
    2009-04-17 08:30:58 ----A---- C:\WINDOWS\system32\wuauclt1.exe
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\wuauclt.exe
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\wuapi.dll
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\qmgr.dll
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\bitsprx3.dll
    2009-04-17 08:30:57 ----A---- C:\WINDOWS\system32\bitsprx2.dll
    2009-04-17 08:30:53 ----D---- C:\Program Files\Movie Maker
    2009-04-17 08:30:49 ----A---- C:\WINDOWS\system32\safrslv.dll
    2009-04-17 08:30:49 ----A---- C:\WINDOWS\system32\safrdm.dll
    2009-04-17 08:30:49 ----A---- C:\WINDOWS\system32\safrcdlg.dll
    2009-04-17 08:30:49 ----A---- C:\WINDOWS\system32\racpldlg.dll
    2009-04-17 08:30:45 ----D---- C:\WINDOWS\system32\Restore
    2009-04-17 08:30:45 ----A---- C:\WINDOWS\system32\srrstr.dll
    2009-04-17 08:30:45 ----A---- C:\WINDOWS\system32\fltmc.exe
    2009-04-17 08:30:45 ----A---- C:\WINDOWS\system32\fltlib.dll
    2009-04-17 08:30:44 ----A---- C:\WINDOWS\system32\srsvc.dll
    2009-04-17 08:30:44 ----A---- C:\WINDOWS\system32\srclient.dll
    2009-04-17 08:30:44 ----A---- C:\WINDOWS\system32\ils.dll
    2009-04-17 08:30:43 ----A---- C:\WINDOWS\system32\nmmkcert.dll
    2009-04-17 08:30:43 ----A---- C:\WINDOWS\system32\msconf.dll
    2009-04-17 08:30:43 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
    2009-04-17 08:30:43 ----A---- C:\WINDOWS\system32\mnmdd.dll
    2009-04-17 08:30:43 ----A---- C:\WINDOWS\system32\isrdbg32.dll
    2009-04-17 08:30:40 ----D---- C:\Program Files\NetMeeting
    2009-04-17 08:30:40 ----A---- C:\WINDOWS\system32\msoert2.dll
    2009-04-17 08:30:40 ----A---- C:\WINDOWS\system32\msoeacct.dll
    2009-04-17 08:30:39 ----A---- C:\WINDOWS\system32\inetres.dll
    2009-04-17 08:30:38 ----A---- C:\WINDOWS\system32\inetcomm.dll
    2009-04-17 08:30:36 ----D---- C:\Program Files\Outlook Express
    2009-04-17 08:30:36 ----A---- C:\WINDOWS\system32\schedsvc.dll
    2009-04-17 08:30:36 ----A---- C:\WINDOWS\system32\mstinit.exe
    2009-04-17 08:30:36 ----A---- C:\WINDOWS\system32\mstask.dll
    2009-04-17 08:30:36 ----A---- C:\WINDOWS\system32\icwphbk.dll
    2009-04-17 08:30:35 ----A---- C:\WINDOWS\system32\isign32.dll
    2009-04-17 08:30:35 ----A---- C:\WINDOWS\system32\inetcfg.dll
    2009-04-17 08:30:35 ----A---- C:\WINDOWS\system32\icwdial.dll
    2009-04-17 08:30:29 ----D---- C:\Program Files\Fichiers communs\System
    2009-04-17 08:30:28 ----D---- C:\Program Files\Internet Explorer
    2009-04-17 08:30:17 ----D---- C:\Program Files\ComPlus Applications
    2009-04-17 08:30:16 ----A---- C:\WINDOWS\vbaddin.ini
    2009-04-17 08:30:16 ----A---- C:\WINDOWS\vb.ini
    2009-04-17 08:30:12 ----D---- C:\WINDOWS\Registration
    2009-04-17 08:29:43 ----D---- C:\Program Files\Windows Media Player
    2009-04-17 08:29:43 ----D---- C:\Program Files\Online Services
    2009-04-17 08:29:38 ----D---- C:\Program Files\Messenger
    2009-04-17 08:29:34 ----D---- C:\Program Files\MSN Gaming Zone
    2009-04-17 08:29:34 ----A---- C:\WINDOWS\system32\write.exe
    2009-04-17 08:29:24 ----A---- C:\WINDOWS\system32\sndvol32.exe
    2009-04-17 08:29:24 ----A---- C:\WINDOWS\system32\hticons.dll
    2009-04-17 08:29:23 ----A---- C:\WINDOWS\system32\winchat.exe
    2009-04-17 08:29:23 ----A---- C:\WINDOWS\system32\avwav.dll
    2009-04-17 08:29:23 ----A---- C:\WINDOWS\system32\avtapi.dll
    2009-04-17 08:29:23 ----A---- C:\WINDOWS\system32\avmeter.dll
    2009-04-17 08:29:15 ----A---- C:\WINDOWS\system32\getuname.dll
    2009-04-17 08:29:14 ----A---- C:\WINDOWS\system32\sol.exe
    2009-04-17 08:29:14 ----A---- C:\WINDOWS\system32\charmap.exe
    2009-04-17 08:29:14 ----A---- C:\WINDOWS\system32\calc.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\winmine.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\usrlogon.cmd
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\tsshutdn.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\tslabels.ini
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\tskill.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\reset.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\mshearts.exe
    2009-04-17 08:29:13 ----A---- C:\WINDOWS\system32\freecell.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\tsdiscon.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\tscon.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\shadow.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\rwinsta.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\regini.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\qwinsta.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\qappsrv.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\msg.exe
    2009-04-17 08:29:12 ----A---- C:\WINDOWS\system32\logoff.exe
    2009-04-17 08:29:11 ----A---- C:\WINDOWS\system32\msdtcprf.ini
    2009-04-17 08:29:11 ----A---- C:\WINDOWS\system32\cdmodem.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\stclient.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\mtxlegih.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\mtxex.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\mtxdm.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\comsnap.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\comrepl.dll
    2009-04-17 08:29:10 ----A---- C:\WINDOWS\system32\comaddin.dll
    2009-04-17 08:29:04 ----A---- C:\WINDOWS\system32\wmimgmt.msc
    2009-04-17 08:28:55 ----D---- C:\Program Files\MSN
    2009-04-17 08:28:54 ----A---- C:\WINDOWS\system32\sndrec32.exe
    2009-04-17 08:28:54 ----A---- C:\WINDOWS\system32\mplay32.exe
    2009-04-17 08:28:54 ----A---- C:\WINDOWS\system32\hypertrm.dll
    2009-04-17 08:28:54 ----A---- C:\WINDOWS\system32\accwiz.exe
    2009-04-17 08:28:53 ----D---- C:\Program Files\Windows NT
    2009-04-17 08:28:53 ----A---- C:\WINDOWS\system32\spider.exe
    2009-04-17 08:28:53 ----A---- C:\WINDOWS\system32\mspaint.exe
    2009-04-17 08:28:53 ----A---- C:\WINDOWS\system32\clipbrd.exe
    2009-04-17 08:28:52 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
    2009-04-17 08:28:52 ----A---- C:\WINDOWS\system32\mstscax.dll
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\tscupgrd.exe
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\termsrv.dll
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\sessmgr.exe
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\remotepg.dll
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\rdshost.exe
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\rdsaddin.exe
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\rdchost.dll
    2009-04-17 08:28:51 ----A---- C:\WINDOWS\system32\mstsc.exe
    2009-04-17 08:28:50 ----D---- C:\WINDOWS\system32\MsDtc
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\rdpwsx.dll
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\rdpsnd.dll
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\rdpclip.exe
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\qprocess.exe
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\icaapi.dll
    2009-04-17 08:28:50 ----A---- C:\WINDOWS\system32\cfgbkend.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\xolehlp.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\mtxoci.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\msdtctm.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\msdtcprx.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\msdtclog.dll
    2009-04-17 08:28:49 ----A---- C:\WINDOWS\system32\msdtc.exe
    2009-04-17 08:28:48 ----D---- C:\WINDOWS\system32\Com
    2009-04-17 08:28:48 ----A---- C:\WINDOWS\system32\colbact.dll
    2009-04-17 08:28:48 ----A---- C:\WINDOWS\system32\catsrvps.dll
    2009-04-17 08:28:47 ----A---- C:\WINDOWS\system32\clbcatex.dll
    2009-04-17 08:28:47 ----A---- C:\WINDOWS\system32\catsrvut.dll
    2009-04-17 08:28:47 ----A---- C:\WINDOWS\system32\catsrv.dll
    2009-04-17 08:28:46 ----A---- C:\WINDOWS\system32\comuid.dll
    2009-04-17 08:28:46 ----A---- C:\WINDOWS\system32\comsvcs.dll
    2009-04-17 08:28:46 ----A---- C:\WINDOWS\system32\clbcatq.dll
    2009-04-17 08:28:40 ----A---- C:\WINDOWS\system32\servdeps.dll
    2009-04-17 08:28:40 ----A---- C:\WINDOWS\system32\mmfutil.dll
    2009-04-17 08:28:40 ----A---- C:\WINDOWS\system32\licwmi.dll
    2009-04-17 08:28:40 ----A---- C:\WINDOWS\system32\cmprops.dll
    2009-04-16 20:56:46 ----RASH---- C:\boot.ini
    2009-04-16 20:50:42 ----RSHDC---- C:\WINDOWS\system32\dllcache
    2009-04-16 20:50:42 ----RSD---- C:\WINDOWS\Fonts
    2009-04-16 20:50:42 ----RD---- C:\WINDOWS\Web
    2009-04-16 20:50:42 ----HD---- C:\WINDOWS\inf
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\WinSxS
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\twain_32
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Temp
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\wins
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\wbem
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\usmt
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\spool
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\ShellExt
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\Setup
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\ras
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\oobe
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\npp
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\mui
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\inetsrv
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\IME
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\icsxml
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\ias
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\export
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\drivers
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\dhcp
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\config
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\3com_dmi
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\3076
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\2052
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1054
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1042
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1041
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1037
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1036
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1033
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1031
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1028
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32\1025
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system32
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\system
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\security
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Resources
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\repair
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Provisioning
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\PeerNet
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\pchealth
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\mui
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\msapps
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\msagent
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Media
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\java
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\ime
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Help
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Driver Cache
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Debug
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Cursors
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Connection Wizard
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\Config
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\AppPatch
    2009-04-16 20:50:42 ----D---- C:\WINDOWS\addins
    2009-04-16 20:50:42 ----D---- C:\WINDOWS
    2009-04-15 22:24:40 ----A---- C:\WINDOWS\system32\dpl100.dll
    2009-04-15 22:24:38 ----A---- C:\WINDOWS\system32\divx_xx11.dll
    2009-04-15 22:24:38 ----A---- C:\WINDOWS\system32\divx_xx0c.dll
    2009-04-15 22:24:38 ----A---- C:\WINDOWS\system32\divx_xx0a.dll
    2009-04-15 22:24:38 ----A---- C:\WINDOWS\system32\divx_xx07.dll
    2009-04-15 22:24:38 ----A---- C:\WINDOWS\system32\DivX.dll

    ======List of files/folders modified in the last 1 months======

    2009-05-08 13:37:02 ----A---- C:\WINDOWS\system.ini
    2009-05-03 19:50:51 ----A---- C:\WINDOWS\win.ini

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41856]
    R1 APPFLT;App Filter Plugin; \??\C:\WINDOWS\system32\Drivers\APPFLT.SYS []
    R1 DSAFLT;DSA Filter Plugin; \??\C:\WINDOWS\system32\Drivers\DSAFLT.SYS []
    R1 FNETMON;NetMon Filter Plugin; \??\C:\WINDOWS\system32\Drivers\fnetmon.SYS []
    R1 IDSFLT;Ids Filter Plugin; \??\C:\WINDOWS\system32\Drivers\IDSFLT.SYS []
    R1 NETFLTDI;Panda Net Driver [TDI Layer]; \??\C:\WINDOWS\system32\Drivers\NETFLTDI.SYS []
    R1 PavTPK.sys;PavTPK.sys; \??\C:\WINDOWS\system32\PavTPK.sys []
    R1 ShldDrv;Panda File Shield Driver; C:\WINDOWS\System32\DRIVERS\ShlDrv51.sys [2008-03-04 41144]
    R1 WNMFLT;Wifi Monitor Filter Plugin; \??\C:\WINDOWS\system32\Drivers\WNMFLT.SYS []
    R2 PAVDRV;pavdrv; C:\WINDOWS\system32\DRIVERS\pavdrv51.sys [2008-04-28 84024]
    R2 PavProc;Panda Process Protection Driver; \??\C:\WINDOWS\system32\DRIVERS\PavProc.sys []
    R3 adiusbaw;USB ADSL WAN Adapter; C:\WINDOWS\system32\DRIVERS\adiusbaw.sys [2004-03-02 127065]
    R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
    R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2004-04-22 729088]
    R3 ComFiltr;Panda Anti-Dialer; \??\C:\WINDOWS\system32\DRIVERS\COMFiltr.sys []
    R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
    R3 NETIMFLT01060034;PANDA NDIS IM Filter Miniport v1.6.0.34; C:\WINDOWS\system32\DRIVERS\neti1634.sys [2008-06-26 197888]
    R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-05 5888]
    R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-15 578368]
    R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
    R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
    R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
    S1 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
    S2 ADILOADER;General Purpose USB Driver (adildr.sys); C:\WINDOWS\System32\Drivers\adildr.sys [2004-03-02 50007]
    S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
    S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
    S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
    S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
    S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
    S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
    S3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
    S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
    S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2004-04-22 397312]
    R2 FTRTSVC;France Telecom Routing Table Service; C:\WINDOWS\System32\FTRTSVC.exe [2004-08-23 40960]
    R2 Gwmsrv;Panda Goodware Cache Manager; C:\WINDOWS\system32\svchost -k Panda []
    R2 Panda Software Controller;Panda Software Controller; C:\Program Files\Panda Security\Panda Global Protection 2009\PsCtrls.exe [2008-07-16 181504]
    R2 PAVFNSVR;Panda Function Service; C:\Program Files\Panda Security\Panda Global Protection 2009\PavFnSvr.exe [2008-07-10 169216]
    R2 PavPrSrv;Panda Process Protection Service; C:\Program Files\Fichiers communs\Panda Security\PavShld\pavprsrv.exe [2008-02-04 62768]
    R2 PAVSRV;Panda On-Access Anti-Malware Service; C:\Program Files\Panda Security\Panda Global Protection 2009\pavsrv51.exe [2008-07-04 288512]
    R2 PSHost;Panda Host Service; c:\program files\panda security\panda global protection 2009\firewall\PSHOST.EXE [2008-06-12 226608]
    R2 PSIMSVC;Panda IManager Service; C:\Program Files\Panda Security\Panda Global Protection 2009\PsImSvc.exe [2008-06-19 108288]
    R2 PskSvcRetail;Panda PSK service; C:\Program Files\Panda Security\Panda Global Protection 2009\PskSvc.exe [2008-06-25 28928]
    R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
    R2 TPSrv;Panda TPSrv; C:\Program Files\Panda Security\Panda Global Protection 2009\TPSrv.exe [2008-07-17 157440]
    R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
    S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2004-04-21 516096]
    S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
    S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
    S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-04-21 216232]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
    S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

    -----------------EOF-----------------
    a c 267 8 Sécurité
    a b 9 Windows
    9 Mai 2009 12:51:02

  • Fais analyser ce fichier : C:\WINDOWS\SlantAdj.dll

  • Sur VirusTotal et poste le lien de l'analyse.
    26 Septembre 2009 16:07:53

    Antivirus Version Dernière mise à jour Résultat
    a-squared 4.5.0.24 2009.07.25 -
    AhnLab-V3 5.0.0.2 2009.07.25 -
    AntiVir 7.9.0.228 2009.07.24 -
    Antiy-AVL 2.0.3.7 2009.07.24 -
    Authentium 5.1.2.4 2009.07.24 -
    Avast 4.8.1335.0 2009.07.24 -
    AVG 8.5.0.387 2009.07.25 -
    BitDefender 7.2 2009.07.25 -
    CAT-QuickHeal 10.00 2009.07.25 -
    ClamAV 0.94.1 2009.07.25 -
    Comodo 1761 2009.07.25 -
    DrWeb 5.0.0.12182 2009.07.25 -
    eSafe 7.0.17.0 2009.07.23 -
    eTrust-Vet 31.6.6640 2009.07.25 -
    F-Prot 4.4.4.56 2009.07.24 -
    F-Secure 8.0.14470.0 2009.07.24 -
    Fortinet 3.120.0.0 2009.07.25 -
    GData 19 2009.07.25 -
    Ikarus T3.1.1.64.0 2009.07.25 -
    Jiangmin 11.0.800 2009.07.25 -
    K7AntiVirus 7.10.802 2009.07.25 -
    Kaspersky 7.0.0.125 2009.07.25 -
    McAfee 5687 2009.07.24 -
    McAfee+Artemis 5687 2009.07.24 -
    McAfee-GW-Edition 6.8.5 2009.07.25 -
    Microsoft 1.4903 2009.07.25 -
    NOD32 4276 2009.07.25 -
    Norman 6.01.09 2009.07.24 -
    nProtect 2009.1.8.0 2009.07.25 -
    Panda 10.0.0.14 2009.07.25 -
    PCTools 4.4.2.0 2009.07.25 -
    Prevx 3.0 2009.07.25 -
    Rising 21.39.52.00 2009.07.25 -
    Sophos 4.44.0 2009.07.25 -
    Sunbelt 3.2.1858.2 2009.07.23 -
    Symantec 1.4.4.12 2009.07.25 -
    TheHacker 6.3.4.3.373 2009.07.24 -
    TrendMicro 8.950.0.1094 2009.07.25 -
    VBA32 3.12.10.9 2009.07.24 -
    ViRobot 2009.7.25.1853 2009.07.25 -
    VirusBuster 4.6.5.0 2009.07.24 -
    Information additionnelle
    File size: 96768 bytes
    MD5 : 7645e64856a08f9864499b2e2515f479
    SHA1 : bff4a1b2b5cc456fc063b5b9204f3736e8fe96c3
    SHA256: c808cae7783559d5e1bf434a7ee3ca6f83b93b0f3fda1af720a609b9e5442829
    PEInfo: PE Structure information

    ( base data )
    entrypointaddress.: 0xBC50
    timedatestamp.....: 0x37658AB1 (Tue Jun 15 01:05:21 1999)
    machinetype.......: 0x14C (Intel I386)

    ( 5 sections )
    name viradd virsiz rawdsiz ntrpy md5
    .text 0x1000 0x1149C 0x11600 6.57 0ebc1761cdcb31f8acbda5c4ec16ace7
    .rdata 0x13000 0xE34 0x1000 4.77 9995fb13c48fdf43a42e86029a43b0a4
    .data 0x14000 0x5898 0x3A00 1.83 13d91b28d8da75681ce586271a8c4a52
    .idata 0x1A000 0x596 0x600 4.96 cd4b306da1cc35bb6d651f251fbec1fd
    .reloc 0x1B000 0xF42 0x1000 5.10 9fa52e6f44b46017cd4723083285d640

    ( 1 imports )

    > kernel32.dll: GetACP, GetProcessHeap, HeapFree, GetCommandLineA, GetProcAddress, GetModuleHandleA, GetVersion, HeapDestroy, HeapCreate, VirtualFree, InitializeCriticalSection, DeleteCriticalSection, EnterCriticalSection, LeaveCriticalSection, ExitProcess, VirtualAlloc, TerminateProcess, GetCurrentProcess, GetCurrentThreadId, TlsSetValue, TlsAlloc, TlsFree, SetLastError, TlsGetValue, GetLastError, SetHandleCount, GetStdHandle, GetFileType, GetStartupInfoA, GetModuleFileNameA, GetCPInfo, HeapAlloc, GetOEMCP, FreeEnvironmentStringsA, MultiByteToWideChar, FreeEnvironmentStringsW, GetEnvironmentStrings, GetEnvironmentStringsW, WideCharToMultiByte, WriteFile, InterlockedDecrement, InterlockedIncrement, LoadLibraryA, GetStringTypeA, GetStringTypeW, LCMapStringA, LCMapStringW, FlushFileBuffers, GetLocaleInfoA, GetLocaleInfoW, CloseHandle, SetStdHandle, SetFilePointer

    ( 1 exports )

    > SlantAdj, SlantAdj_Delete, SlantAdj_Lock, SlantAdj_New, SlantAdj_OverlapClean, SlantAdj_OverlapDelete, SlantAdj_OverlapLock, SlantAdj_OverlapNew, SlantAdj_OverlapRestore, SlantAdj_OverlapUnlock, SlantAdj_OverlapWorkSize, SlantAdj_Preview, SlantAdj_PreviewDelete, SlantAdj_PreviewNew, SlantAdj_SetResource, SlantAdj_UnLock, SlantAdj_WorkSize
    TrID : File type identification
    Win32 Executable MS Visual C++ 4.x (69.2%)
    Win32 Executable MS Visual C++ (generic) (19.3%)
    Win32 Executable Generic (4.3%)
    Win32 Dynamic Link Library (generic) (3.8%)
    Win16/32 Executable Delphi generic (1.0%)
    ThreatExpert: http://www.threatexpert.com/report.aspx?md5=7645e64856a...
    ssdeep: 1536:/PHalniFTk1wlT6+eMbh597FKOXm7mKo4m0TzSRhb44uy1OUQMgm7Rl:/P6IFWK6+bVz7Fm7m14m0nasHUnQMgUl
    PEiD : -
    RDS : NSRL Reference Data Set
    -

    ATENTION ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.
    a c 267 8 Sécurité
    a b 9 Windows
    26 Septembre 2009 16:49:02

    Plus de souci ?
    27 Septembre 2009 18:43:10

    non, merci tout va bien.
    Merci +
    a c 267 8 Sécurité
    a b 9 Windows
    27 Septembre 2009 20:18:22

    1/

  • Désinstalle HijackThis.

  • Télécharge ToolsCleaner2 sur ton Bureau.
  • Double-clique sur ToolsCleaner2.exe pour le lancer.
  • Clique sur Recherche et laisse le scan agir.
  • Clique sur Suppression pour finaliser.
  • Tu peux, si tu le souhaites, te servir des Options Facultatives.
  • Clique sur Quitter pour obtenir le rapport.
  • Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).


    2/

  • Télécharge et installe CCleaner Slim.
  • Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
  • Va dans Nettoyeur, choisis Analyser. Une fois terminé, lance le nettoyage.


    3/

  • Il est nécessaire de désactiver puis réactiver la restauration système pour la purger.


    ==Prévention==

    Conserve MBAM. Il te servira à scanner les fichiers douteux en complément de l'antivirus et scanne le disque dur régulièrement.

    Vérifie que les mises à jour automatiques sont bien activées (Menu Démarrer, clique droit sur Poste de travail, Propriétés, onglet Mises à jour automatiques).

    Par rapport au P2P : Lien

    Voici un dossier complet (A lire avec Adobe Reader ou Foxit Reader) : Lien


    ==Problème résolu ?==

    --> Si tu estimes que ton problème est résolu, ajoute [Résolu] au titre. Pour cela :
  • Clique, dans ton premier message, sur le bouton Editer .
  • Ajoute la mention [Résolu] devant le titre.
  • Clique ensuite sur Valider votre message.


    Sois plus vigilant(e) sur Internet ;) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS