Votre question

Des fenetres pop up sans etre connecté a internet[resolu]

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
14 Août 2009 12:45:22

bon voila je ne suis pas tres doué en informatique mais je pense deja que les fenetres pop up qui apparaissent comme ca n'est pas normal je soupconne un logiciel espion d'en etre la cause. Je suis sous vista et j'ai un sony vaio fw 41/E
merci de bien vouloir m'aider car windows defender et avast ne detecter rien d'anormal!!
PS: les fenetres apparaissent souvent par 2 je ne sait pas si cela peux vous aider.

Autres pages sur : fenetres pop connecte internet resolu

14 Août 2009 13:45:14

petit up (deso du double post)
a c 327 8 Sécurité
14 Août 2009 13:48:18

Bonjour,

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    Contenus similaires
    14 Août 2009 13:53:44

    ( Bref apparition )

    Destrio toujours là :) 
    14 Août 2009 13:59:09

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by maxime at 2009-08-14 13:56:49
    Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
    System drive C: has 386 GB (83%) free of 464 GB
    Total RAM: 3038 MB (29% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 13:57:28, on 14/08/2009
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18294)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Windows\msc.exe
    c:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Apoint\Apoint.exe
    C:\Program Files\sony\ISB Utility\ISBMgr.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\sony\Marketing Tools\MarketingTools.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe
    C:\Program Files\sony\Network Utility\LANUtil.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Windows\Speech\Common\sapisvr.exe
    C:\Program Files\Apoint\ApMsgFwd.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files\Apoint\Apntex.exe
    C:\Users\maxime\AppData\Local\Temp\Low\22FD.tmp
    C:\Windows\system32\wuauclt.exe
    c:\PROGRA~1\mcafee\VIRUSS~1\mcvsshld.exe
    C:\Windows\system32\rundll32.exe
    C:\Program Files\Internet Explorer\IEUser.exe
    C:\Users\maxime\AppData\Local\Temp\Low\F1A1.tmp
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
    C:\Users\maxime\AppData\Local\Temp\Low\6173.tmp
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Users\maxime\AppData\Local\Temp\b.exe
    C:\Windows\system32\ctfmon.exe
    C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe
    C:\Users\maxime\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1FGYKKOF\RSIT[1].exe
    C:\Program Files\trend micro\maxime.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll
    O2 - BHO: XML module - {500BCA15-57A7-4eaf-8143-8C619470B13D} - C:\Windows\system32\msxml71.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
    O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
    O4 - HKLM\..\Run: [StartCCC] "c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [McENUI] C:\PROGRA~1\McAfee\MHN\McENUI.exe /hide
    O4 - HKLM\..\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
    O4 - HKLM\..\Run: [AML] C:\Program Files\Sony\VAIO Launcher\AML.exe InitApp
    O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
    O4 - HKCU\..\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe"
    O4 - HKCU\..\Run: [NortonOnlineBackupReminder] "C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [Speech Recognition] "C:\Windows\Speech\Common\sapisvr.exe" -SpeechUX -Startup
    O4 - HKCU\..\Run: [Monopod] C:\Users\maxime\AppData\Local\Temp\b.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Global Startup: Bluetooth.lnk = ?
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O13 - Gopher Prefix:
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
    O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
    O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - c:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: IviRegMgr - InterVideo - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
    O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
    O23 - Service: NSUService - Sony Corporation - C:\Program Files\sony\Network Utility\NSUService.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
    O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHCImp.exe
    O23 - Service: VAIO Media plus Database Manager (SOHDBSvr) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
    O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe
    O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDs.exe
    O23 - Service: VAIO Media plus Playlist Manager (SOHPlMgr) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
    O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
    O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
    O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\sony\VAIO Event Service\VESMgr.exe
    O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
    O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
    O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
    O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
    O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
    O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
    O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

    --
    End of file - 13874 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\McDefragTask.job
    C:\Windows\tasks\McQcTask.job
    C:\Windows\tasks\NSSstub.job
    C:\Windows\tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job
    C:\Windows\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
    McAfee Phishing Filter - c:\PROGRA~1\mcafee\msk\mskapbho.dll [2009-01-09 246800]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500BCA15-57A7-4eaf-8143-8C619470B13D}]
    XML Class - C:\Windows\system32\msxml71.dll [2009-08-11 207876]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
    scriptproxy - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll [2009-03-25 62784]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-19 259696]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll [2009-07-23 669168]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
    McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-01-29 145424]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
    Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-07-19 470512]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-05-21 41368]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-01-29 145424]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-19 259696]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
    "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-01-06 6703648]
    "Apoint"=C:\Program Files\Apoint\Apoint.exe [2008-09-30 122880]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-12-03 35184]
    "ISBMgr.exe"=C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2008-12-18 317288]
    "StartCCC"=c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-03-02 61440]
    "Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-07-16 30192]
    "McENUI"=C:\PROGRA~1\McAfee\MHN\McENUI.exe [2008-09-12 1176808]
    "MarketingTools"=C:\Program Files\Sony\Marketing Tools\MarketingTools.exe [2009-07-16 26112]
    "AML"=C:\Program Files\Sony\VAIO Launcher\AML.exe [2009-03-09 1101824]
    "mcagent_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2009-06-23 645328]
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-07-13 292128]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-05-21 148888]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
    "NSUFloatingUI"=C:\Program Files\Sony\Network Utility\LANUtil.exe [2008-12-21 274432]
    "NortonOnlineBackupReminder"=C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe [2009-01-16 503976]
    "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-07-16 39408]
    "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]
    "Speech Recognition"=C:\Windows\Speech\Common\sapisvr.exe [2008-01-21 49664]
    "Monopod"=C:\Users\maxime\AppData\Local\Temp\b.exe [2009-08-11 144384]

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]
    C:\Windows\system32\VESWinlogon.dll [2009-01-19 98304]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "EnableUIADesktopToggle"=0

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    ======List of files/folders created in the last 1 months======

    2009-08-14 13:56:50 ----D---- C:\Program Files\trend micro
    2009-08-14 13:56:49 ----D---- C:\rsit
    2009-08-14 11:16:09 ----A---- C:\Windows\msc.exe
    2009-08-12 23:42:43 ----A---- C:\Windows\system32\kerberos.dll
    2009-08-12 23:42:42 ----A---- C:\Windows\system32\wdigest.dll
    2009-08-12 23:42:42 ----A---- C:\Windows\system32\schannel.dll
    2009-08-12 23:42:42 ----A---- C:\Windows\system32\msv1_0.dll
    2009-08-12 23:42:42 ----A---- C:\Windows\system32\lsasrv.dll
    2009-08-12 23:42:41 ----A---- C:\Windows\system32\lsass.exe
    2009-08-12 23:42:40 ----A---- C:\Windows\system32\secur32.dll
    2009-08-12 10:39:19 ----A---- C:\Windows\system32\atl.dll
    2009-08-12 10:39:15 ----A---- C:\Windows\system32\wkssvc.dll
    2009-08-12 10:39:10 ----A---- C:\Windows\system32\mstscax.dll
    2009-08-12 10:39:07 ----A---- C:\Windows\system32\avifil32.dll
    2009-08-12 10:39:00 ----A---- C:\Windows\system32\wmp.dll
    2009-08-12 10:38:59 ----A---- C:\Windows\system32\wmpdxm.dll
    2009-08-12 10:38:57 ----A---- C:\Windows\system32\spwmp.dll
    2009-08-12 10:38:56 ----A---- C:\Windows\system32\dxmasf.dll
    2009-08-12 10:38:55 ----A---- C:\Windows\system32\wmploc.DLL
    2009-08-11 21:46:27 ----A---- C:\Windows\msb.exe
    2009-08-11 19:15:00 ----A---- C:\Windows\ntbtlog.txt
    2009-08-11 19:13:50 ----A---- C:\Windows\msa.exe
    2009-08-11 19:13:42 ----A---- C:\Windows\system32\msxml71.dll
    2009-07-29 19:20:49 ----A---- C:\Windows\system32\mshtml.dll
    2009-07-29 19:20:48 ----A---- C:\Windows\system32\occache.dll
    2009-07-29 19:20:47 ----A---- C:\Windows\system32\ieframe.dll
    2009-07-29 19:20:46 ----A---- C:\Windows\system32\urlmon.dll
    2009-07-29 19:20:45 ----A---- C:\Windows\system32\wininet.dll
    2009-07-29 19:20:45 ----A---- C:\Windows\system32\iertutil.dll
    2009-07-29 19:20:45 ----A---- C:\Windows\system32\iedkcs32.dll
    2009-07-29 19:20:44 ----A---- C:\Windows\system32\msfeeds.dll
    2009-07-29 19:20:44 ----A---- C:\Windows\system32\ieUnatt.exe
    2009-07-29 19:20:44 ----A---- C:\Windows\system32\ieaksie.dll
    2009-07-29 19:20:43 ----A---- C:\Windows\system32\mstime.dll
    2009-07-29 19:20:43 ----A---- C:\Windows\system32\jsproxy.dll
    2009-07-29 19:20:43 ----A---- C:\Windows\system32\ieencode.dll
    2009-07-20 22:48:22 ----D---- C:\ProgramData\WindowsSearch
    2009-07-19 11:33:33 ----D---- C:\Program Files\MSXML 4.0
    2009-07-19 11:17:03 ----D---- C:\ProgramData\Blizzard
    2009-07-18 17:52:40 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
    2009-07-18 17:50:56 ----D---- C:\Program Files\World of Warcraft
    2009-07-18 17:49:38 ----A---- C:\Windows\system32\EncDec.dll
    2009-07-18 17:49:37 ----A---- C:\Windows\system32\psisdecd.dll
    2009-07-18 17:46:19 ----A---- C:\Windows\system32\ntkrnlpa.exe
    2009-07-18 17:46:18 ----A---- C:\Windows\system32\rpcss.dll
    2009-07-18 17:46:18 ----A---- C:\Windows\system32\ntoskrnl.exe
    2009-07-18 17:46:16 ----A---- C:\Windows\system32\sdohlp.dll
    2009-07-18 17:46:16 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
    2009-07-18 17:46:16 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
    2009-07-18 17:46:16 ----A---- C:\Windows\system32\iasrecst.dll
    2009-07-18 17:46:15 ----A---- C:\Windows\system32\iashost.exe
    2009-07-18 17:46:15 ----A---- C:\Windows\system32\iasdatastore.dll
    2009-07-18 17:46:15 ----A---- C:\Windows\system32\iasads.dll
    2009-07-18 17:45:43 ----A---- C:\Windows\system32\PortableDeviceApi.dll
    2009-07-18 17:45:35 ----A---- C:\Windows\system32\t2embed.dll
    2009-07-18 17:45:35 ----A---- C:\Windows\system32\fontsub.dll
    2009-07-18 17:45:35 ----A---- C:\Windows\system32\dciman32.dll
    2009-07-18 17:45:35 ----A---- C:\Windows\system32\atmfd.dll
    2009-07-18 17:45:24 ----A---- C:\Windows\system32\winhttp.dll
    2009-07-18 17:45:20 ----A---- C:\Windows\system32\msdtcprx.dll
    2009-07-18 17:45:19 ----A---- C:\Windows\system32\xolehlp.dll
    2009-07-18 17:45:08 ----A---- C:\Windows\system32\localspl.dll
    2009-07-18 17:44:01 ----A---- C:\Windows\system32\kernel32.dll
    2009-07-18 17:44:01 ----A---- C:\Windows\system32\apilogen.dll
    2009-07-18 17:44:01 ----A---- C:\Windows\system32\amxread.dll
    2009-07-18 17:43:56 ----A---- C:\Windows\system32\wersvc.dll
    2009-07-18 17:43:56 ----A---- C:\Windows\system32\Faultrep.dll
    2009-07-18 17:43:13 ----A---- C:\Windows\system32\rpcrt4.dll
    2009-07-17 21:14:37 ----D---- C:\Windows\system32\Adobe
    2009-07-17 21:00:23 ----D---- C:\ProgramData\NOS
    2009-07-17 21:00:23 ----D---- C:\Program Files\NOS
    2009-07-17 17:33:47 ----D---- C:\Users\maxime\AppData\Roaming\InterVideo
    2009-07-17 16:22:34 ----A---- C:\Windows\system32\javaws.exe
    2009-07-17 16:22:34 ----A---- C:\Windows\system32\javaw.exe
    2009-07-17 16:22:34 ----A---- C:\Windows\system32\java.exe
    2009-07-17 11:35:48 ----D---- C:\Users\maxime\AppData\Roaming\Mozilla
    2009-07-17 11:35:15 ----D---- C:\Users\maxime\AppData\Roaming\LimeWire
    2009-07-17 11:34:43 ----D---- C:\Program Files\LimeWire
    2009-07-17 11:30:16 ----D---- C:\Program Files\QuickTime
    2009-07-17 11:01:06 ----D---- C:\Program Files\iTunes
    2009-07-16 22:06:33 ----D---- C:\Users\maxime\AppData\Roaming\Apple Computer
    2009-07-16 22:06:22 ----DC---- C:\Windows\system32\DRVSTORE
    2009-07-16 22:06:22 ----A---- C:\Windows\system32\GEARAspi.dll
    2009-07-16 22:06:03 ----D---- C:\Program Files\iPod
    2009-07-16 22:06:01 ----D---- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
    2009-07-16 22:05:33 ----D---- C:\Program Files\Bonjour
    2009-07-16 22:04:58 ----D---- C:\ProgramData\Apple Computer
    2009-07-16 22:03:00 ----D---- C:\ProgramData\Apple
    2009-07-16 22:03:00 ----D---- C:\Program Files\Common Files\Apple
    2009-07-16 20:49:06 ----D---- C:\ProgramData\FLEXnet
    2009-07-16 20:11:38 ----D---- C:\ProgramData\ArcSoft
    2009-07-16 20:11:17 ----D---- C:\Users\maxime\AppData\Roaming\ArcSoft
    2009-07-16 19:33:07 ----D---- C:\Update
    2009-07-16 18:24:41 ----D---- C:\Users\maxime\AppData\Roaming\DivX
    2009-07-16 18:20:04 ----D---- C:\Users\maxime\AppData\Roaming\Macromedia
    2009-07-16 18:20:04 ----D---- C:\Users\maxime\AppData\Roaming\Adobe
    2009-07-16 18:18:04 ----A---- C:\Windows\system32\wups2.dll
    2009-07-16 18:18:04 ----A---- C:\Windows\system32\wucltux.dll
    2009-07-16 18:18:04 ----A---- C:\Windows\system32\wuaueng.dll
    2009-07-16 18:18:04 ----A---- C:\Windows\system32\wuauclt.exe
    2009-07-16 18:17:37 ----A---- C:\Windows\system32\wups.dll
    2009-07-16 18:17:37 ----A---- C:\Windows\system32\wudriver.dll
    2009-07-16 18:17:37 ----A---- C:\Windows\system32\wuapi.dll
    2009-07-16 18:17:28 ----A---- C:\Windows\system32\wuwebv.dll
    2009-07-16 18:17:28 ----A---- C:\Windows\system32\wuapp.exe
    2009-07-16 18:16:31 ----D---- C:\Users\maxime\AppData\Roaming\Google
    2009-07-16 17:59:41 ----D---- C:\VAIO Entertainment
    2009-07-16 17:54:30 ----D---- C:\Users\maxime\AppData\Roaming\Sony Corporation
    2009-07-16 17:54:26 ----D---- C:\Users\maxime\AppData\Roaming\ATI
    2009-07-16 17:53:45 ----D---- C:\Users\maxime\AppData\Roaming\Identities
    2009-07-16 17:50:46 ----SD---- C:\Users\maxime\AppData\Roaming\Microsoft
    2009-07-16 17:50:46 ----D---- C:\Users\maxime\AppData\Roaming\Media Center Programs
    2009-07-16 17:47:13 ----SHD---- C:\ProgramData\Modèles
    2009-07-16 17:47:13 ----SHD---- C:\ProgramData\Menu Démarrer
    2009-07-16 17:47:13 ----SHD---- C:\ProgramData\Favoris
    2009-07-16 17:47:13 ----SHD---- C:\ProgramData\Bureau
    2009-07-16 17:47:13 ----SHD---- C:\Program Files\Fichiers communs
    2009-07-16 17:40:29 ----D---- C:\_FS_SWRINFO
    2009-07-16 17:40:27 ----D---- C:\Documentation
    2009-07-16 17:40:08 ----D---- C:\ProgramData\Roaming
    2009-07-16 17:39:39 ----D---- C:\Program Files\Cisco
    2009-07-16 17:39:38 ----D---- C:\Program Files\Common Files\Intel
    2009-07-16 17:39:37 ----D---- C:\ProgramData\Intel
    2009-07-16 17:38:59 ----D---- C:\Program Files\Microsoft
    2009-07-16 17:38:45 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-07-16 17:38:26 ----D---- C:\Program Files\Windows Live
    2009-07-16 17:37:32 ----D---- C:\Program Files\Common Files\Windows Live
    2009-07-16 17:37:17 ----A---- C:\Windows\system32\gdiplus.dll
    2009-07-16 17:36:55 ----A---- C:\Windows\VAIOUpdt.INI
    2009-07-16 17:33:49 ----A---- C:\Windows\system32\d3dx9_35.dll
    2009-07-16 17:32:47 ----A---- C:\Windows\system32\VESWinlogon.dll
    2009-07-16 17:27:55 ----D---- C:\Program Files\Skype
    2009-07-16 17:27:54 ----D---- C:\Program Files\Common Files\Skype
    2009-07-16 17:27:52 ----D---- C:\ProgramData\Skype
    2009-07-16 17:27:44 ----D---- C:\ProgramData\Uninstall
    2009-07-16 17:27:41 ----D---- C:\ProgramData\Sonic
    2009-07-16 17:27:30 ----D---- C:\Program Files\Roxio
    2009-07-16 17:27:04 ----D---- C:\Program Files\Common Files\Sonic Shared
    2009-07-16 17:26:56 ----D---- C:\Program Files\Common Files\Roxio Shared
    2009-07-16 17:26:40 ----N---- C:\Windows\system32\pxafs.dll
    2009-07-16 17:22:09 ----D---- C:\ProgramData\Symantec
    2009-07-16 17:22:09 ----D---- C:\Program Files\Symantec
    2009-07-16 17:20:41 ----D---- C:\Program Files\Microsoft Office Suite Activation Assistant
    2009-07-16 17:18:19 ----A---- C:\Windows\system32\msonpmon.dll
    2009-07-16 17:17:51 ----D---- C:\Program Files\Microsoft Works
    2009-07-16 17:17:41 ----D---- C:\Program Files\Common Files\DESIGNER
    2009-07-16 17:17:29 ----D---- C:\Windows\PCHEALTH
    2009-07-16 17:17:29 ----D---- C:\Program Files\Microsoft.NET
    2009-07-16 17:15:50 ----D---- C:\Program Files\Microsoft Office
    2009-07-16 17:15:49 ----D---- C:\ProgramData\Microsoft Help
    2009-07-16 17:15:35 ----RHD---- C:\MSOCache
    2009-07-16 17:14:18 ----D---- C:\ProgramData\SiteAdvisor
    2009-07-16 17:10:14 ----D---- C:\Program Files\Common Files\McAfee
    2009-07-16 17:09:50 ----D---- C:\Program Files\McAfee.com
    2009-07-16 17:09:47 ----D---- C:\Program Files\McAfee
    2009-07-16 17:09:43 ----D---- C:\ProgramData\McAfee
    2009-07-16 17:09:37 ----A---- C:\Windows\system32\Mdat_1.2.00.0903160.txt
    2009-07-16 17:09:27 ----A---- C:\Windows\system32\PCDLIB32.DLL
    2009-07-16 17:09:22 ----A---- C:\Windows\system32\ArcSoftKsUFilter.dll
    2009-07-16 17:09:20 ----D---- C:\Program Files\Common Files\ArcSoft
    2009-07-16 17:09:20 ----D---- C:\Program Files\ArcSoft
    2009-07-16 17:09:12 ----D---- C:\ProgramData\Google
    2009-07-16 17:08:41 ----D---- C:\Program Files\Google
    2009-07-16 17:08:20 ----D---- C:\Program Files\Common Files\DivX Shared
    2009-07-16 17:08:19 ----D---- C:\Program Files\DivX
    2009-07-16 17:04:37 ----N---- C:\Windows\system32\pxhpinst.exe
    2009-07-16 17:03:44 ----D---- C:\ProgramData\ATI
    2009-07-16 17:03:04 ----D---- C:\Program Files\ATI Technologies
    2009-07-16 17:02:28 ----D---- C:\Program Files\Common Files\InterVideo
    2009-07-16 17:01:16 ----D---- C:\Program Files\InterVideo
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\xinput1_3.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\xactengine2_6.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\xactengine2_5.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\xactengine2_4.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\x3daudio1_1.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\d3dx9_32.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\d3dx10.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\xinput1_2.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\xinput1_1.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\xactengine2_3.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\xactengine2_2.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\xactengine2_1.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\d3dx9_31.dll
    2009-07-16 17:00:32 ----A---- C:\Windows\system32\xactengine2_0.dll
    2009-07-16 17:00:32 ----A---- C:\Windows\system32\x3daudio1_0.dll
    2009-07-16 17:00:32 ----A---- C:\Windows\system32\d3dx9_30.dll
    2009-07-16 17:00:31 ----A---- C:\Windows\system32\d3dx9_29.dll
    2009-07-16 17:00:31 ----A---- C:\Windows\system32\d3dx9_28.dll
    2009-07-16 17:00:31 ----A---- C:\Windows\system32\d3dx9_27.dll
    2009-07-16 17:00:31 ----A---- C:\Windows\system32\d3dx9_26.dll
    2009-07-16 17:00:30 ----A---- C:\Windows\system32\d3dx9_25.dll
    2009-07-16 17:00:30 ----A---- C:\Windows\system32\d3dx9_24.dll
    2009-07-16 16:58:57 ----D---- C:\ProgramData\eSellerate
    2009-07-16 16:58:56 ----D---- C:\ProgramData\SmartSound Software Inc
    2009-07-16 16:58:52 ----D---- C:\Program Files\SmartSound Software
    2009-07-16 16:56:03 ----D---- C:\Windows\system32\Macromed
    2009-07-16 16:53:33 ----D---- C:\Program Files\Common Files\Macrovision Shared
    2009-07-16 16:53:13 ----D---- C:\Program Files\Common Files\PX Storage Engine
    2009-07-16 16:50:56 ----D---- C:\Windows\Sonysys
    2009-07-16 16:50:49 ----D---- C:\Windows\SoftwareDistribution
    2009-07-16 16:41:46 ----SHD---- C:\System Volume Information

    ======List of files/folders modified in the last 1 months======

    2009-08-14 13:57:02 ----D---- C:\Windows\Temp
    2009-08-14 13:56:50 ----RD---- C:\Program Files
    2009-08-14 13:48:08 ----D---- C:\Windows\system32\Tasks
    2009-08-14 13:48:07 ----D---- C:\Windows\Tasks
    2009-08-14 12:18:46 ----D---- C:\Windows\System32
    2009-08-14 12:18:46 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2009-08-14 12:18:45 ----D---- C:\Windows\inf
    2009-08-14 12:12:26 ----D---- C:\Windows
    2009-08-14 11:21:59 ----D---- C:\Windows\Prefetch
    2009-08-14 11:17:34 ----D---- C:\Windows\system32\WDI
    2009-08-13 03:06:33 ----D---- C:\Windows\system32\drivers
    2009-08-13 03:01:12 ----D---- C:\Windows\winsxs
    2009-08-12 23:42:04 ----D---- C:\Windows\system32\catroot
    2009-08-12 23:42:01 ----D---- C:\Windows\system32\catroot2
    2009-08-12 16:06:27 ----D---- C:\Program Files\Windows Media Player
    2009-08-12 16:04:14 ----D---- C:\Program Files\Windows Mail
    2009-08-06 21:04:22 ----HD---- C:\ProgramData
    2009-07-30 15:20:15 ----D---- C:\Program Files\Internet Explorer
    2009-07-30 11:56:27 ----SHD---- C:\Windows\Installer
    2009-07-26 00:07:56 ----D---- C:\Windows\system32\LogFiles
    2009-07-20 17:31:55 ----D---- C:\Windows\Logs
    2009-07-19 21:21:15 ----D---- C:\Windows\Microsoft.NET
    2009-07-19 19:05:23 ----D---- C:\Windows\ehome
    2009-07-19 19:05:18 ----D---- C:\Windows\system32\wbem
    2009-07-19 19:05:17 ----D---- C:\Windows\system32\manifeststore
    2009-07-19 19:05:17 ----D---- C:\Windows\AppPatch
    2009-07-19 11:38:33 ----D---- C:\Program Files\Common Files\microsoft shared
    2009-07-19 11:35:51 ----RSD---- C:\Windows\assembly
    2009-07-18 17:52:40 ----D---- C:\Program Files\Common Files
    2009-07-18 13:33:13 ----SD---- C:\ProgramData\Microsoft
    2009-07-18 11:14:18 ----SD---- C:\Windows\Downloaded Program Files
    2009-07-17 17:47:59 ----D---- C:\Windows\rescache
    2009-07-17 16:22:32 ----D---- C:\Program Files\Java
    2009-07-16 21:18:55 ----D---- C:\Windows\system32\NDF
    2009-07-16 18:36:06 ----D---- C:\Windows\system32\fr-FR
    2009-07-16 18:16:58 ----D---- C:\Windows\system32\restore
    2009-07-16 17:59:41 ----D---- C:\ProgramData\Sony Corporation
    2009-07-16 17:54:02 ----SHD---- C:\$Recycle.Bin
    2009-07-16 17:50:46 ----RD---- C:\Users
    2009-07-16 17:47:13 ----D---- C:\Windows\Debug
    2009-07-16 17:47:13 ----D---- C:\Program Files\Windows NT
    2009-07-16 17:43:26 ----D---- C:\Windows\system32\sysprep
    2009-07-16 17:43:26 ----D---- C:\Windows\Panther
    2009-07-16 17:42:47 ----D---- C:\Program Files\sony
    2009-07-16 17:40:30 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-07-16 17:39:37 ----D---- C:\Program Files\Intel
    2009-07-16 17:34:37 ----RSD---- C:\Windows\Fonts
    2009-07-16 17:33:43 ----D---- C:\Program Files\Common Files\Sony Shared
    2009-07-16 17:16:11 ----D---- C:\Windows\ShellNew
    2009-07-16 17:09:19 ----D---- C:\Program Files\Common Files\InstallShield
    2009-07-16 16:56:30 ----D---- C:\Program Files\Common Files\Adobe
    2009-07-16 16:55:43 ----D---- C:\ProgramData\Adobe
    2009-07-16 16:55:43 ----D---- C:\Program Files\Adobe
    2009-07-16 16:51:03 ----A---- C:\Windows\csup.txt

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 DMICall;Sony DMI Call service; C:\Windows\system32\DRIVERS\DMICall.sys [2008-11-25 10216]
    R1 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2009-03-25 214024]
    R1 MPFP;MPFP; C:\Windows\System32\Drivers\Mpfp.sys [2008-10-23 130424]
    R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2008-01-25 12672]
    R2 regi;regi; \??\C:\Windows\system32\drivers\regi.sys [2007-04-17 11032]
    R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2008-10-23 68608]
    R2 risdptsk;risdptsk; C:\Windows\system32\DRIVERS\risdptsk.sys [2008-10-23 46592]
    R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2008-01-25 8192]
    R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2008-09-30 164400]
    R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect; C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2008-04-24 17920]
    R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-03-11 4304384]
    R3 BthEnum;Pilote de bloc de demande Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-04-17 23040]
    R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
    R3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-17 30208]
    R3 btwaudio;Périphérique audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys [2009-02-10 84008]
    R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2009-02-10 109096]
    R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-02-10 29736]
    R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-02-10 18344]
    R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
    R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
    R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2008-01-25 985600]
    R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2008-01-25 207360]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-01-06 2254880]
    R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2009-03-25 79880]
    R3 mfebopk;McAfee Inc. mfebopk; C:\Windows\system32\drivers\mfebopk.sys [2009-03-25 35272]
    R3 mfesmfk;McAfee Inc. mfesmfk; C:\Windows\system32\drivers\mfesmfk.sys [2009-03-25 40552]
    R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-08-28 3664384]
    R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-04-17 149504]
    R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIV.sys [2009-03-10 153952]
    R3 SFEP;Sony Firmware Extension Parser; C:\Windows\system32\DRIVERS\SFEP.sys [2008-11-19 9344]
    R3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
    R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2008-01-25 659968]
    R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
    R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2008-03-27 298496]
    S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2008-04-17 507904]
    S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
    S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
    S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-01-21 200704]
    S3 mferkdk;McAfee Inc. mferkdk; C:\Windows\system32\drivers\mferkdk.sys [2009-03-25 34216]
    S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
    S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
    S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
    S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2009-07-09 39424]
    S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-06-07 131000]
    S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-21 39936]
    S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
    S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
    S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]
    S4 UIUSys;Conexant Setup API; C:\Windows\system32\DRIVERS\UIUSYS.SYS []
    S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7; c:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-12-08 169312]
    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712]
    R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2009-03-11 729088]
    R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
    R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-01-24 559656]
    R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2008-08-20 860160]
    R2 IviRegMgr;IviRegMgr; c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-04 112152]
    R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [2009-01-23 203280]
    R2 mcmscsvc;McAfee Services; C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe [2009-06-23 797864]
    R2 McNASvc;McAfee Network Agent; c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe [2009-01-09 2482848]
    R2 McProxy;McAfee Proxy Service; c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe [2009-01-09 359952]
    R2 McShield;McAfee Real-time Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [2009-03-25 144704]
    R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2009-03-19 884360]
    R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\McAfee\MSK\MskSrver.exe [2009-01-09 26640]
    R2 NSUService;NSUService; C:\Program Files\sony\Network Utility\NSUService.exe [2008-12-21 303104]
    R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2008-08-20 466944]
    R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [2009-01-06 109088]
    R2 uCamMonitor;CamMonitor; C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
    R2 VAIO Event Service;VAIO Event Service; C:\Program Files\sony\VAIO Event Service\VESMgr.exe [2009-01-19 203624]
    R2 VAIO Power Management;VAIO Power Management; C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2008-12-19 415592]
    R2 VCFw;VAIO Content Folder Watcher; C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2009-01-14 5184872]
    R2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2009-01-19 394536]
    R2 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2009-01-21 192512]
    R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2008-01-25 386560]
    R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-07-13 542496]
    R3 McODS;McAfee Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe [2009-04-01 365072]
    R3 McSysmon;McAfee SystemGuards; C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [2009-03-24 606736]
    R3 Vcsw;VAIO Entertainment UPnP Client Adapter; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [2009-01-21 313264]
    S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2008-08-01 109056]
    S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-07-16 651720]
    S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-07-16 30192]
    S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-19 182768]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
    S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2009-01-08 114688]
    S3 SOHCImp;VAIO Media plus Content Importer; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2009-02-05 120104]
    S3 SOHDBSvr;VAIO Media plus Database Manager; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [2009-02-05 70952]
    S3 SOHDms;VAIO Media plus Digital Media Server; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe [2009-02-05 390440]
    S3 SOHDs;VAIO Media plus Device Searcher; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDs.exe [2009-02-05 75048]
    S3 SOHPlMgr;VAIO Media plus Playlist Manager; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [2009-02-05 91432]
    S3 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [2009-01-21 69632]
    S3 VcmXmlIfHelper;VAIO Content Metadata XML Interface; C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [2009-01-16 83240]

    -----------------EOF-----------------
    14 Août 2009 13:59:53

    info.txt logfile of random's system information tool 1.06 2009-08-14 13:57:33

    ======Uninstall list======

    -->"C:\Program Files\InstallShield Installation Information\{90516BE8-EA2E-44CD-9ACF-22F95A4397CE}\setup.exe" -runfromtemp -l0x040c -removeonly
    -->"C:\Program Files\InstallShield Installation Information\{96D0B6C6-5A72-4B47-8583-A87E55F5FE81}\setup.exe" -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->C:\Program Files\InstallShield Installation Information\{36C41D70-56F5-4E2B-81DA-6BEB7502D7A1}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\InstallShield Installation Information\{3D173DC5-4AE5-4B3F-9819-3977DD11B1D0}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\InstallShield Installation Information\{B2C4A8C4-AA20-425D-9FEE-C78039238C81}\setup.exe -runfromtemp -l0x040c -removeonly
    -->C:\Program Files\InstallShield Installation Information\{B34B6E67-FCDD-4E03-8742-B5701427FAFB}\setup.exe -runfromtemp -l0x040c -removeonly
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00A1-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
    Activer Norton Online Backup-->MsiExec.exe /I{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}
    Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Photoshop Elements 7.0-->msiexec /i {5511C07D-A83C-45AD-92B6-42DF99729A3C}
    Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
    Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
    Adobe Premiere Elements 7.0 Templates-->msiexec /I {85AF94EC-55DE-452A-8FD7-C34E598B3F1F} REMOVEFROMARP=1
    Adobe Premiere Elements 7.0 Templates-->MsiExec.exe /X{85AF94EC-55DE-452A-8FD7-C34E598B3F1F}
    Adobe Premiere Elements 7.0-->msiexec /I {D564B5E2-CCB5-4A5C-B35E-2FC30BBC9336} REMOVEPREFS=1
    Adobe Premiere Elements 7.0-->MsiExec.exe /I{D564B5E2-CCB5-4A5C-B35E-2FC30BBC9336}
    Adobe Reader 9.0.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90100000001}
    Adobe Shockwave Player 11.5-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe"
    Alps Pointing-device for VAIO-->C:\Program Files\Apoint\Uninstap.exe ADDREMOVE
    Apple Mobile Device Support-->MsiExec.exe /I{C337BDAF-CB4E-47E2-BE1A-CB31BB7DD0E3}
    Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
    ArcSoft Magic-i Visual Effects 2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7BB90344-0647-468E-925A-7F69F7983421}\Setup.exe" -l0x40c
    ArcSoft WebCam Companion 2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9973498D-EA29-4A68-BE0B-C88D6E03E928}\Setup.exe" -l0x40c
    Assistant de connexion Windows Live-->MsiExec.exe /I{D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
    Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
    Catalyst Control Center - Branding-->MsiExec.exe /I{9EAC0E21-510E-4259-A9C6-F5D5B8969036}
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Click to Disc Editor-->C:\Program Files\InstallShield Installation Information\{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}\setup.exe -runfromtemp -l0x040c
    Click to Disc-->C:\Program Files\InstallShield Installation Information\{68A69CFF-130D-4CDE-AB0E-7374ECB144C8}\setup.exe -runfromtemp -l0x040c -removeonly
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Plus DirectShow Filters-->C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    Dolby Control Center-->MsiExec.exe /I{D035FBF6-FDEF-487D-89CA-6F9DD07B783F}
    Gestion de l’alimentation de VAIO-->"C:\Program Files\InstallShield Installation Information\{5F5867F0-2D23-4338-A206-01A76C823924}\setup.exe" -runfromtemp -l0x040c -removeonly
    Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
    Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_9DE96A29E721D90A.exe" /uninstall
    Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
    HDAUDIO SoftV92 Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_104D0200\UIU32m.exe -U -ISnSZIRXz.inf
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{3CCB732A-E472-4CF9-B1EE-F18365341FE0}
    Intel PROSet Wireless-->Intel PROSet Wireless
    iTunes-->MsiExec.exe /I{99ECF41F-5CCA-42BD-B8B8-A8333E2E2944}
    Java(TM) 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
    LimeWire 5.1.4-->"C:\Program Files\LimeWire\uninstall.exe"
    McAfee SecurityCenter-->C:\Program Files\McAfee\MSC\mcuninst.exe
    Me&My VAIO-->"C:\Program Files\InstallShield Installation Information\{76D7CCD6-8369-405C-B494-5F34FAE67249}\setup.exe" -runfromtemp -l0x040c -removeonly
    Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
    Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
    Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
    Microsoft Office OneNote MUI (French) 2007-->MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
    Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
    Microsoft Office PowerPoint Viewer 2007 (French)-->MsiExec.exe /X{95120000-00AF-040C-0000-0000000FF1CE}
    Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
    Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
    Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
    Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
    Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
    Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
    Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
    Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
    Microsoft Office Suite Activation Assistant-->MsiExec.exe /X{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
    Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
    Microsoft Works-->MsiExec.exe /I{0214A441-A4AB-43A8-8DEF-2F73C5364673}
    Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C}
    Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3}
    Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223}
    Module de compatibilité pour Microsoft Office System 2007-->MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    Music Transfer-->C:\Program Files\InstallShield Installation Information\{CE2121C6-C94D-4A73-8EA4-6943F33EE335}\setup.exe -runfromtemp -l0x040c -removeonly
    OpenMG Secure Module 5.3.00-->C:\Program Files\InstallShield Installation Information\{DEF97A70-C67D-41E1-837C-6462C97A6F65}\IS_Setup.exe -l0x0409 /z"UNINSTALL"
    Outil de restauration de données VAIO-->C:\Program Files\InstallShield Installation Information\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}\setup.exe -runfromtemp -l0x040c -removeonly
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    Préréglage personnalisé de SonicStage Mastering Studio Audio Filter-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EC37A846-53AC-4DA7-98FA-76A4E74AA900}\setup.exe" -l0x40c -removeonly
    QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68}
    Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd.exe -r -m -nrg2709
    Roxio Central Audio-->MsiExec.exe /I{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
    Roxio Central Copy-->MsiExec.exe /I{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
    Roxio Central Core-->MsiExec.exe /I{ED439A64-F018-4DD4-8BA5-328D85AB09AB}
    Roxio Central Data-->MsiExec.exe /I{08E81ABD-79F7-49C2-881F-FD6CB0975693}
    Roxio Central Tools-->MsiExec.exe /I{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}
    Roxio Easy Media Creator 10 LJ-->C:\ProgramData\Uninstall\{537BF16E-7412-448C-95D8-846E85A1D817}\setup.exe /x {537BF16E-7412-448C-95D8-846E85A1D817}
    Roxio Easy Media Creator Home-->MsiExec.exe /I{FE51662F-D8F6-43B5-99D9-D4894AF00F83}
    Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
    Security Update for 2007 Microsoft Office System (KB969679)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C66E4A6C-6E07-4C63-8CCD-2493B5087C73}
    Security Update for Microsoft Office Excel 2007 (KB969682)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C03803BD-745A-46F8-8557-817DED578780}
    Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
    Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
    Security Update for Microsoft Office Word 2007 (KB969604)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {CF3D6499-709C-43D0-8908-BC5652656050}
    Setting Utility Series-->"C:\Program Files\InstallShield Installation Information\{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}\setup.exe" -runfromtemp -l0x040c -removeonly
    Skype™ 3.8-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
    SmartSound Quicktracks for Premiere Elements-->"C:\Program Files\InstallShield Installation Information\{F6234880-85BE-4DCB-8A45-1FF85A1A8552}\setup.exe" -runfromtemp -l0x0409 -removeonly
    SmartSound Quicktracks for Premiere Elements-->MsiExec.exe /I{F6234880-85BE-4DCB-8A45-1FF85A1A8552}
    Software Info for Me&My VAIO-->"C:\Program Files\InstallShield Installation Information\{69C8B1E3-2665-4A0F-B049-67746E5C4CE3}\setup.exe" -runfromtemp -l0x040c -removeonly
    SonicStage Mastering Studio Audio Filter-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DF7DB916-90E5-40F2-9010-B8125EB5FD6F}\setup.exe" -l0x40c -removeonly
    SonicStage Mastering Studio Plugins-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9C1C8A04-F8CA-4472-A92D-4288CE32DE86}\setup.exe" -l0x40c -removeonly
    SonicStage Mastering Studio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6332AFF1-9D9A-429C-AA03-F82749FA4F49}\setup.exe" -l0x40c -removeonly
    Sony Home Network Library-->"C:\Program Files\InstallShield Installation Information\{D03D02D8-AB64-4785-A48E-5AA8B0FB8C14}\setup.exe" -runfromtemp -l0x040c -removeonly
    Sony Picture Utility-->C:\Program Files\InstallShield Installation Information\{D5068583-D569-468B-9755-5FBF5848F46F}\setup.exe -runfromtemp -l0x040c uninstall -removeonly
    Sony Video Shared Library-->C:\Program Files\InstallShield Installation Information\{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}\setup.exe -runfromtemp -l0x040c -removeonly
    Support de Présentation VAIO-->"C:\Program Files\InstallShield Installation Information\{2018C019-30D9-4240-8C01-0865C10DCF5A}\setup.exe" -runfromtemp -l0x040c -removeonly
    Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
    VAIO Content Folder Setting-->"C:\Program Files\InstallShield Installation Information\{23825B69-36DF-4DAD-9CFD-118D11D80F16}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO Content Folder Watcher-->"C:\Program Files\InstallShield Installation Information\{327B75F0-92AF-420A-988F-FA596A218E0B}\setup.exe" -runfromtemp -l0x040c UNINSTALL -removeonly
    VAIO Content Metadata Intelligent Analyzing Manager-->C:\Program Files\InstallShield Installation Information\{BFD85D24-D4F3-4CCC-B518-D7C4FC29C76D}\setup.exe -runfromtemp -l0x040c -removeonly
    VAIO Content Metadata Manager Setting-->C:\Program Files\InstallShield Installation Information\{EADE97A7-E7AA-43FD-A042-92A68E0187A6}\setup.exe -runfromtemp -l0x040c -removeonly
    VAIO Content Metadata XML Interface Library-->C:\Program Files\InstallShield Installation Information\{E3453B1B-C91B-4C48-B046-8DF635DD46F2}\setup.exe -runfromtemp -l0x040c -removeonly
    VAIO Control Center-->"C:\Program Files\InstallShield Installation Information\{72042FA6-5609-489F-A8EA-3C2DD650F667}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO DVD Menu Data Basic-->C:\Program Files\InstallShield Installation Information\{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}\setup.exe -runfromtemp -l0x040c -removeonly
    VAIO Edit Components 6.5-->C:\Program Files\InstallShield Installation Information\{B7C03E84-AF46-42F4-809D-D4127D9086D0}\setup.exe -runfromtemp -l0x040c -removeonly
    VAIO Entertainment Platform-->"C:\Program Files\InstallShield Installation Information\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO Event Service-->"C:\Program Files\InstallShield Installation Information\{C7477742-DDB4-43E5-AC8D-0259E1E661B1}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO Launcher-->"C:\Program Files\InstallShield Installation Information\{15D5C238-4C2E-4AEA-A66D-D6989A4C586B}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO Marketing Tools-->C:\Program Files\Sony\Marketing Tools\Uninstaller.exe /bootstrap
    VAIO Media plus Opening Movie-->"C:\Program Files\InstallShield Installation Information\{9238E8A4-BEBA-43A3-B926-769BDBF194C5}\setup.exe" -runfromtemp -l0x0c0c -removeonly
    VAIO Media plus-->"C:\Program Files\InstallShield Installation Information\{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO Movie Story Template Data-->C:\Program Files\InstallShield Installation Information\{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}\setup.exe -runfromtemp -l0x040c -removeonly
    VAIO Movie Story-->C:\Program Files\InstallShield Installation Information\{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}\setup.exe -runfromtemp -l0x040c -removeonly
    VAIO MusicBox Sample Music-->"C:\Program Files\InstallShield Installation Information\{98FC7A64-774B-49B5-B046-4B4EBC053FA9}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO MusicBox-->"C:\Program Files\InstallShield Installation Information\{D613E659-6503-42A8-9617-4F599061EAD5}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO Original Function Setting-->"C:\Program Files\InstallShield Installation Information\{A63E7492-A0BC-4BB9-89A7-352965222380}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO Smart Network-->"C:\Program Files\InstallShield Installation Information\{3B659FAD-E772-44A3-B7E7-560FF084669F}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO Update 4-->"C:\Program Files\InstallShield Installation Information\{83CDA18E-0BF3-4ACA-872C-B4CDABF2360E}\setup.exe" -runfromtemp -l0x040c -removeonly
    VAIO Wallpaper Contents-->"C:\Program Files\InstallShield Installation Information\{D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}\setup.exe" -runfromtemp -l0x040c -removeonly
    VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
    WIDCOMM Bluetooth Software-->MsiExec.exe /X{D239B547-8B20-4BDE-888D-C9CCA823FFD8}
    Windows Live Call-->MsiExec.exe /I{01523985-2098-43AF-9C97-12B07BE02A9B}
    Windows Live Communications Platform-->MsiExec.exe /I{F69E83CF-B440-43F8-89E6-6EA80712109B}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    WinDVD BD for VAIO-->C:\Program Files\InstallShield Installation Information\{20471B27-D702-4FE8-8DEC-0702CC8C0A85}\setup.exe -runfromtemp
    World of Warcraft-->C:\Program Files\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe

    ======Security center information======

    AS: Windows Defender

    ======System event log======

    Computer Name: PC-de-maxime
    Event Code: 3004
    Message: L’agent de protection en temps réel Windows Defender a détecté des modifications. Microsoft vous recommande d’analyser les logiciels responsables de ces modifications, à la recherche de risques potentiels. Vous pouvez vous servir des informations relatives au fonctionnement de ces programmes pour autoriser ou non leur exécution, ou pour les supprimer de l’ordinateur. N’autorisez les modifications que si vous faites confiance au programme ou à l’éditeur de logiciel. Windows Defender ne peut pas annuler les modifications que vous autorisez.
    Pour plus d’informations, consultez les données suivantes :
    Non applicable
    ID d’analyse : {EC642E0E-E280-4898-9C15-1CD21143B9AF}
    Utilisateur : PC-de-maxime\maxime
    Nom : Unknown
    ID :
    ID de gravité :
    ID de catégorie :
    Chemin d’accès trouvé : file:C:\Windows\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job;file:C:\Users\maxime\AppData\Local\Temp\b.exe;taskscheduler:C:\Windows\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
    Type d’alerte : Logiciel non classifié
    Type de détection :
    Record Number: 26250
    Source Name: Microsoft-Windows-Windows Defender
    Time Written: 20090814111702.000000-000
    Event Type: Avertissement
    User:

    Computer Name: PC-de-maxime
    Event Code: 10016
    Message: Les paramètres d'autorisation par défaut de l'ordinateur n'accordent pas d'autorisation Local Activation pour l'application serveur COM avec le CLSID
    {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
    au SID PC-de-maxime\maxime de l'utilisateur (S-1-5-21-4292891822-4005138697-933549591-1000) depuis l'adresse LocalHost (utilisation de LRPC). Cette autorisation de sécurité peut être modifiée à l'aide de l'outil d'administration Services de composants.
    Record Number: 26251
    Source Name: Microsoft-Windows-DistributedCOM
    Time Written: 20090814113212.000000-000
    Event Type: Erreur
    User: PC-de-maxime\maxime

    Computer Name: PC-de-maxime
    Event Code: 10016
    Message: Les paramètres d'autorisation par défaut de l'ordinateur n'accordent pas d'autorisation Local Activation pour l'application serveur COM avec le CLSID
    {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
    au SID PC-de-maxime\maxime de l'utilisateur (S-1-5-21-4292891822-4005138697-933549591-1000) depuis l'adresse LocalHost (utilisation de LRPC). Cette autorisation de sécurité peut être modifiée à l'aide de l'outil d'administration Services de composants.
    Record Number: 26252
    Source Name: Microsoft-Windows-DistributedCOM
    Time Written: 20090814113214.000000-000
    Event Type: Erreur
    User: PC-de-maxime\maxime

    Computer Name: PC-de-maxime
    Event Code: 3004
    Message: L’agent de protection en temps réel Windows Defender a détecté des modifications. Microsoft vous recommande d’analyser les logiciels responsables de ces modifications, à la recherche de risques potentiels. Vous pouvez vous servir des informations relatives au fonctionnement de ces programmes pour autoriser ou non leur exécution, ou pour les supprimer de l’ordinateur. N’autorisez les modifications que si vous faites confiance au programme ou à l’éditeur de logiciel. Windows Defender ne peut pas annuler les modifications que vous autorisez.
    Pour plus d’informations, consultez les données suivantes :
    Non applicable
    ID d’analyse : {EE972EA9-0CD9-440B-A8EF-FA105D5FAC60}
    Utilisateur : PC-de-maxime\maxime
    Nom : Unknown
    ID :
    ID de gravité :
    ID de catégorie :
    Chemin d’accès trouvé : file:C:\Windows\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job;file:C:\Users\maxime\AppData\Local\Temp\b.exe;taskscheduler:C:\Windows\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
    Type d’alerte : Logiciel non classifié
    Type de détection :
    Record Number: 26253
    Source Name: Microsoft-Windows-Windows Defender
    Time Written: 20090814113242.000000-000
    Event Type: Avertissement
    User:

    Computer Name: PC-de-maxime
    Event Code: 3004
    Message: L’agent de protection en temps réel Windows Defender a détecté des modifications. Microsoft vous recommande d’analyser les logiciels responsables de ces modifications, à la recherche de risques potentiels. Vous pouvez vous servir des informations relatives au fonctionnement de ces programmes pour autoriser ou non leur exécution, ou pour les supprimer de l’ordinateur. N’autorisez les modifications que si vous faites confiance au programme ou à l’éditeur de logiciel. Windows Defender ne peut pas annuler les modifications que vous autorisez.
    Pour plus d’informations, consultez les données suivantes :
    Non applicable
    ID d’analyse : {BF7227B0-42B8-464D-B4D6-21503644355A}
    Utilisateur : PC-de-maxime\maxime
    Nom : Unknown
    ID :
    ID de gravité :
    ID de catégorie :
    Chemin d’accès trouvé : file:C:\Windows\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job;file:C:\Users\maxime\AppData\Local\Temp\b.exe;taskscheduler:C:\Windows\tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job
    Type d’alerte : Logiciel non classifié
    Type de détection :
    Record Number: 26254
    Source Name: Microsoft-Windows-Windows Defender
    Time Written: 20090814114810.000000-000
    Event Type: Avertissement
    User:

    =====Application event log=====

    Computer Name: PC-de-maxime
    Event Code: 1530
    Message: Windows a détecté que votre fichier de Registre est toujours utilisé par d'autres applications ou services. Le fichier va être déchargé. Les applications ou services qui ont accès à votre Registre risquent de ne pas fonctionner correctement après cela.

    DÉTAIL -
    2 user registry handles leaked from \Registry\User\S-1-5-21-4292891822-4005138697-933549591-1000_Classes:
    Process 4292 (\Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE) has opened key \REGISTRY\USER\S-1-5-21-4292891822-4005138697-933549591-1000_CLASSES
    Process 1880 (\Device\HarddiskVolume2\Windows\System32\spoolsv.exe) has opened key \REGISTRY\USER\S-1-5-21-4292891822-4005138697-933549591-1000_CLASSES\Local Settings\Software\Microsoft\Windows\Shell\MuiCache

    Record Number: 5141
    Source Name: Microsoft-Windows-User Profiles Service
    Time Written: 20090814095336.000000-000
    Event Type: Avertissement
    User: AUTORITE NT\SYSTEM

    Computer Name: PC-de-maxime
    Event Code: 10
    Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
    Record Number: 5171
    Source Name: Microsoft-Windows-WMI
    Time Written: 20090814100024.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-maxime
    Event Code: 7
    Message: Échec de chargement du module d'extension. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Code d'erreur = 0x80042019)
    Record Number: 5172
    Source Name: VzCdbSvc
    Time Written: 20090814100026.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-maxime
    Event Code: 10
    Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
    Record Number: 5210
    Source Name: Microsoft-Windows-WMI
    Time Written: 20090814101227.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-maxime
    Event Code: 7
    Message: Échec de chargement du module d'extension. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Code d'erreur = 0x80042019)
    Record Number: 5211
    Source Name: VzCdbSvc
    Time Written: 20090814101229.000000-000
    Event Type: Erreur
    User:

    =====Security event log=====

    Computer Name: PC-de-maxime
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
    Record Number: 5513
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090814115725.288369-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-maxime
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
    Record Number: 5514
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090814115725.321369-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-maxime
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
    Record Number: 5515
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090814115725.376369-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-maxime
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
    Record Number: 5516
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090814115725.404369-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-maxime
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys
    Record Number: 5517
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090814115725.433369-000
    Event Type: Échec de l'audit
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\WIDCOMM\Bluetooth Software\;c:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\QuickTime\QTSystem\
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
    "PROCESSOR_ARCHITECTURE"=x86
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "USERNAME"=SYSTEM
    "windir"=%SystemRoot%
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 10, GenuineIntel
    "PROCESSOR_REVISION"=170a
    "NUMBER_OF_PROCESSORS"=2
    "TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
    "DFSTRACINGON"=FALSE
    "configsetroot"=%SystemRoot%\ConfigSetRoot
    "RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\10.0\Roxio Central36\
    "EMC_AUTOPLAY"=C:\Program Files\Common Files\Roxio Shared\
    "CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

    -----------------EOF-----------------

    un grand merci en tout cas
    a c 327 8 Sécurité
    14 Août 2009 14:07:09

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    14 Août 2009 14:25:34

    Malwarebytes' Anti-Malware 1.40
    Version de la base de données: 2622
    Windows 6.0.6001 Service Pack 1

    14/08/2009 14:19:51
    mbam-log-2009-08-14 (14-19-51).txt

    Type de recherche: Examen rapide
    Eléments examinés: 86662
    Temps écoulé: 7 minute(s), 11 second(s)

    Processus mémoire infecté(s): 5
    Module(s) mémoire infecté(s): 1
    Clé(s) du Registre infectée(s): 9
    Valeur(s) du Registre infectée(s): 1
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 98

    Processus mémoire infecté(s):
    C:\Windows\msc.exe (Trojan.Agent) -> Unloaded process successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\22FD.tmp (Trojan.Agent) -> Unloaded process successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\F1A1.tmp (Trojan.Agent) -> Unloaded process successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6173.tmp (Trojan.Agent) -> Unloaded process successfully.
    C:\Users\maxime\AppData\Local\Temp\b.exe (Trojan.Downloader) -> Unloaded process successfully.

    Module(s) mémoire infecté(s):
    C:\Windows\System32\msxml71.dll (Trojan.FakeAlert) -> Delete on reboot.

    Clé(s) du Registre infectée(s):
    HKEY_CLASSES_ROOT\xml.xml (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\{500bca15-57a7-4eaf-8143-8c619470b13d} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{500bca15-57a7-4eaf-8143-8c619470b13d} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{500bca15-57a7-4eaf-8143-8c619470b13d} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\xml.xml.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Typelib\{e24211b3-a78a-c6a9-d317-70979ace5058} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Monopod (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\NordBull (Malware.Trace) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.

    Valeur(s) du Registre infectée(s):
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\monopod (Trojan.Downloader) -> Quarantined and deleted successfully.

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\Windows\msc.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\22FD.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\F1A1.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6173.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\b.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Windows\System32\msxml71.dll (Trojan.FakeAlert) -> Delete on reboot.
    C:\Windows\Temp\TMP000000708FCDF8141DA5665C (Trojan.Downloader) -> Delete on reboot.
    C:\Users\maxime\AppData\Local\Temp\4128.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\4FFD.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\a.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\c.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\1C69.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\1C69.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\1D33.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\1D33.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\22FD.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\2915.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\2915.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\35B3.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\35B3.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\C1CD.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\C1CD.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\C381.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\C381.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\D3D9.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\D3D9.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\D40C.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\D40C.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\D63F.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\D63F.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\DC9C.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\DC9C.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\DE9E.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\DE9E.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6386.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\657A.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\657A.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6B7A.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6B7A.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6CE.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6CE.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6F4A.tmp (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6F4A.tmp.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\76E9.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\76E9.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\78FD.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\78FD.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\8816.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\8816.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\89DD.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\89DD.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\8E1E.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\8E1E.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\9771.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\9771.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\97DE.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\97DE.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\A9D8.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\A9D8.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6386.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\B9B2.tmp.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\F1A1.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\F225.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\F225.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\F34B.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\F34B.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\B9B2.tmp (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\407A.tmp (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\407A.tmp.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\4175.tmp (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\4175.tmp.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\473F.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\473F.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\4BB3.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\4BB3.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\58BD.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\58BD.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\6173.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\2EB1.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\2EB1.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\83B4.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\83B4.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\96AF.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\96AF.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\ADE8.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\ADE8.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\D0B3.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\D0B3.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\EAB7.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\EAB7.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\Low\64B7.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\Low\64B7.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\Low\BED9.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\maxime\AppData\Local\Temp\Low\Low\Low\BED9.tmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Windows\msa.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Windows\msb.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Windows\Tasks\{7B02EF0B-A410-4938-8480-9BA26420A627}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Windows\Tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job (Trojan.Downloader) -> Quarantined and deleted successfully.



    autre chose: il m'ont dit de redemmarer mon ordi pour supprimer certains fichier qu'il ne pouvaient pas faire coomme ca alors j'ai fait ce qu'il ont dit.
    a c 327 8 Sécurité
    14 Août 2009 14:27:30

    Tu as bien fait.

  • Relance MBAM, va dans Quarantaine et supprime tout.

  • Désinstalle Java 6 Update 14.

  • Mets à jour Java.

  • Refais un scan RSIT et poste le rapport log.
    14 Août 2009 14:33:07


    euh petite question toute bete comment on desinstalle java??
    cv j'ai trouvé
    a c 327 8 Sécurité
    14 Août 2009 14:35:38

    Panneau de configuration > Désinstaller un programme.
    14 Août 2009 14:41:36

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by maxime at 2009-08-14 14:40:53
    Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
    System drive C: has 384 GB (83%) free of 464 GB
    Total RAM: 3038 MB (53% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 14:41:08, on 14/08/2009
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18294)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe
    c:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Apoint\Apoint.exe
    C:\Program Files\sony\ISB Utility\ISBMgr.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\sony\Marketing Tools\MarketingTools.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\sony\Network Utility\LANUtil.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Apoint\ApMsgFwd.exe
    C:\Windows\Speech\Common\sapisvr.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\Apoint\Apntex.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files\Internet Explorer\ieuser.exe
    C:\Windows\system32\wuauclt.exe
    C:\Windows\system32\conime.exe
    C:\Windows\system32\rundll32.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
    C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe
    C:\Users\maxime\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0UC9OY0F\RSIT[1].exe
    C:\Program Files\trend micro\maxime.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
    O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
    O4 - HKLM\..\Run: [StartCCC] "c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [McENUI] C:\PROGRA~1\McAfee\MHN\McENUI.exe /hide
    O4 - HKLM\..\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
    O4 - HKLM\..\Run: [AML] C:\Program Files\Sony\VAIO Launcher\AML.exe InitApp
    O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
    O4 - HKCU\..\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe"
    O4 - HKCU\..\Run: [NortonOnlineBackupReminder] "C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [Speech Recognition] "C:\Windows\Speech\Common\sapisvr.exe" -SpeechUX -Startup
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Global Startup: Bluetooth.lnk = ?
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O13 - Gopher Prefix:
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
    O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
    O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - c:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: IviRegMgr - InterVideo - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
    O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
    O23 - Service: NSUService - Sony Corporation - C:\Program Files\sony\Network Utility\NSUService.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
    O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHCImp.exe
    O23 - Service: VAIO Media plus Database Manager (SOHDBSvr) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
    O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe
    O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDs.exe
    O23 - Service: VAIO Media plus Playlist Manager (SOHPlMgr) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
    O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
    O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
    O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\sony\VAIO Event Service\VESMgr.exe
    O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
    O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
    O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
    O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
    O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
    O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
    O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

    --
    End of file - 13308 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\McDefragTask.job
    C:\Windows\tasks\McQcTask.job
    C:\Windows\tasks\NSSstub.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]
    a c 327 8 Sécurité
    14 Août 2009 14:42:40

    Le rapport est incomplet, peux-tu le reposter ?
    14 Août 2009 14:45:37

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by maxime at 2009-08-14 14:40:53
    Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
    System drive C: has 384 GB (83%) free of 464 GB
    Total RAM: 3038 MB (53% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 14:41:08, on 14/08/2009
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18294)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe
    c:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Apoint\Apoint.exe
    C:\Program Files\sony\ISB Utility\ISBMgr.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files\sony\Marketing Tools\MarketingTools.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\sony\Network Utility\LANUtil.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Apoint\ApMsgFwd.exe
    C:\Windows\Speech\Common\sapisvr.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\Apoint\Apntex.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
    C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files\Internet Explorer\ieuser.exe
    C:\Windows\system32\wuauclt.exe
    C:\Windows\system32\conime.exe
    C:\Windows\system32\rundll32.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
    C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe
    C:\Users\maxime\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0UC9OY0F\RSIT[1].exe
    C:\Program Files\trend micro\maxime.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
    O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
    O4 - HKLM\..\Run: [StartCCC] "c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [McENUI] C:\PROGRA~1\McAfee\MHN\McENUI.exe /hide
    O4 - HKLM\..\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
    O4 - HKLM\..\Run: [AML] C:\Program Files\Sony\VAIO Launcher\AML.exe InitApp
    O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
    O4 - HKCU\..\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe"
    O4 - HKCU\..\Run: [NortonOnlineBackupReminder] "C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKCU\..\Run: [Speech Recognition] "C:\Windows\Speech\Common\sapisvr.exe" -SpeechUX -Startup
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
    O4 - Global Startup: Bluetooth.lnk = ?
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O13 - Gopher Prefix:
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
    O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
    O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - c:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: IviRegMgr - InterVideo - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
    O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
    O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
    O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
    O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
    O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
    O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
    O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
    O23 - Service: NSUService - Sony Corporation - C:\Program Files\sony\Network Utility\NSUService.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
    O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHCImp.exe
    O23 - Service: VAIO Media plus Database Manager (SOHDBSvr) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
    O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe
    O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDs.exe
    O23 - Service: VAIO Media plus Playlist Manager (SOHPlMgr) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
    O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
    O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
    O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\sony\VAIO Event Service\VESMgr.exe
    O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
    O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
    O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
    O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
    O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
    O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
    O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

    --
    End of file - 13308 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\McDefragTask.job
    C:\Windows\tasks\McQcTask.job
    C:\Windows\tasks\NSSstub.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
    McAfee Phishing Filter - c:\PROGRA~1\mcafee\msk\mskapbho.dll [2009-01-09 246800]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
    scriptproxy - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll [2009-03-25 62784]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-19 259696]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll [2009-07-23 669168]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
    McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-01-29 145424]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
    Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-07-19 470512]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-14 41760]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-01-29 145424]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-19 259696]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
    "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-01-06 6703648]
    "Apoint"=C:\Program Files\Apoint\Apoint.exe [2008-09-30 122880]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-12-03 35184]
    "ISBMgr.exe"=C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2008-12-18 317288]
    "StartCCC"=c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-03-02 61440]
    "Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-07-16 30192]
    "McENUI"=C:\PROGRA~1\McAfee\MHN\McENUI.exe [2008-09-12 1176808]
    "MarketingTools"=C:\Program Files\Sony\Marketing Tools\MarketingTools.exe [2009-07-16 26112]
    "AML"=C:\Program Files\Sony\VAIO Launcher\AML.exe [2009-03-09 1101824]
    "mcagent_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2009-06-23 645328]
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-07-13 292128]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-14 149280]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
    "NSUFloatingUI"=C:\Program Files\Sony\Network Utility\LANUtil.exe [2008-12-21 274432]
    "NortonOnlineBackupReminder"=C:\Program Files\Symantec\Norton Online Backup\Activation\NobuActivation.exe [2009-01-16 503976]
    "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
    "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-07-16 39408]
    "WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]
    "Speech Recognition"=C:\Windows\Speech\Common\sapisvr.exe [2008-01-21 49664]

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]
    C:\Windows\system32\VESWinlogon.dll [2009-01-19 98304]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "EnableUIADesktopToggle"=0

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    ======List of files/folders created in the last 1 months======

    2009-08-14 14:39:01 ----A---- C:\Windows\system32\javaws.exe
    2009-08-14 14:39:01 ----A---- C:\Windows\system32\javaw.exe
    2009-08-14 14:39:01 ----A---- C:\Windows\system32\java.exe
    2009-08-14 14:10:44 ----D---- C:\Users\maxime\AppData\Roaming\Malwarebytes
    2009-08-14 14:10:38 ----D---- C:\ProgramData\Malwarebytes
    2009-08-14 14:10:37 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2009-08-14 13:56:50 ----D---- C:\Program Files\trend micro
    2009-08-14 13:56:49 ----D---- C:\rsit
    2009-08-12 23:42:43 ----A---- C:\Windows\system32\kerberos.dll
    2009-08-12 23:42:42 ----A---- C:\Windows\system32\wdigest.dll
    2009-08-12 23:42:42 ----A---- C:\Windows\system32\schannel.dll
    2009-08-12 23:42:42 ----A---- C:\Windows\system32\msv1_0.dll
    2009-08-12 23:42:42 ----A---- C:\Windows\system32\lsasrv.dll
    2009-08-12 23:42:41 ----A---- C:\Windows\system32\lsass.exe
    2009-08-12 23:42:40 ----A---- C:\Windows\system32\secur32.dll
    2009-08-12 10:39:19 ----A---- C:\Windows\system32\atl.dll
    2009-08-12 10:39:15 ----A---- C:\Windows\system32\wkssvc.dll
    2009-08-12 10:39:10 ----A---- C:\Windows\system32\mstscax.dll
    2009-08-12 10:39:07 ----A---- C:\Windows\system32\avifil32.dll
    2009-08-12 10:39:00 ----A---- C:\Windows\system32\wmp.dll
    2009-08-12 10:38:59 ----A---- C:\Windows\system32\wmpdxm.dll
    2009-08-12 10:38:57 ----A---- C:\Windows\system32\spwmp.dll
    2009-08-12 10:38:56 ----A---- C:\Windows\system32\dxmasf.dll
    2009-08-12 10:38:55 ----A---- C:\Windows\system32\wmploc.DLL
    2009-08-11 19:15:00 ----A---- C:\Windows\ntbtlog.txt
    2009-07-29 19:20:49 ----A---- C:\Windows\system32\mshtml.dll
    2009-07-29 19:20:48 ----A---- C:\Windows\system32\occache.dll
    2009-07-29 19:20:47 ----A---- C:\Windows\system32\ieframe.dll
    2009-07-29 19:20:46 ----A---- C:\Windows\system32\urlmon.dll
    2009-07-29 19:20:45 ----A---- C:\Windows\system32\wininet.dll
    2009-07-29 19:20:45 ----A---- C:\Windows\system32\iertutil.dll
    2009-07-29 19:20:45 ----A---- C:\Windows\system32\iedkcs32.dll
    2009-07-29 19:20:44 ----A---- C:\Windows\system32\msfeeds.dll
    2009-07-29 19:20:44 ----A---- C:\Windows\system32\ieUnatt.exe
    2009-07-29 19:20:44 ----A---- C:\Windows\system32\ieaksie.dll
    2009-07-29 19:20:43 ----A---- C:\Windows\system32\mstime.dll
    2009-07-29 19:20:43 ----A---- C:\Windows\system32\jsproxy.dll
    2009-07-29 19:20:43 ----A---- C:\Windows\system32\ieencode.dll
    2009-07-20 22:48:22 ----D---- C:\ProgramData\WindowsSearch
    2009-07-19 11:33:33 ----D---- C:\Program Files\MSXML 4.0
    2009-07-19 11:17:03 ----D---- C:\ProgramData\Blizzard
    2009-07-18 17:52:40 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
    2009-07-18 17:50:56 ----D---- C:\Program Files\World of Warcraft
    2009-07-18 17:49:38 ----A---- C:\Windows\system32\EncDec.dll
    2009-07-18 17:49:37 ----A---- C:\Windows\system32\psisdecd.dll
    2009-07-18 17:46:19 ----A---- C:\Windows\system32\ntkrnlpa.exe
    2009-07-18 17:46:18 ----A---- C:\Windows\system32\rpcss.dll
    2009-07-18 17:46:18 ----A---- C:\Windows\system32\ntoskrnl.exe
    2009-07-18 17:46:16 ----A---- C:\Windows\system32\sdohlp.dll
    2009-07-18 17:46:16 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
    2009-07-18 17:46:16 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
    2009-07-18 17:46:16 ----A---- C:\Windows\system32\iasrecst.dll
    2009-07-18 17:46:15 ----A---- C:\Windows\system32\iashost.exe
    2009-07-18 17:46:15 ----A---- C:\Windows\system32\iasdatastore.dll
    2009-07-18 17:46:15 ----A---- C:\Windows\system32\iasads.dll
    2009-07-18 17:45:43 ----A---- C:\Windows\system32\PortableDeviceApi.dll
    2009-07-18 17:45:35 ----A---- C:\Windows\system32\t2embed.dll
    2009-07-18 17:45:35 ----A---- C:\Windows\system32\fontsub.dll
    2009-07-18 17:45:35 ----A---- C:\Windows\system32\dciman32.dll
    2009-07-18 17:45:35 ----A---- C:\Windows\system32\atmfd.dll
    2009-07-18 17:45:24 ----A---- C:\Windows\system32\winhttp.dll
    2009-07-18 17:45:20 ----A---- C:\Windows\system32\msdtcprx.dll
    2009-07-18 17:45:19 ----A---- C:\Windows\system32\xolehlp.dll
    2009-07-18 17:45:08 ----A---- C:\Windows\system32\localspl.dll
    2009-07-18 17:44:01 ----A---- C:\Windows\system32\kernel32.dll
    2009-07-18 17:44:01 ----A---- C:\Windows\system32\apilogen.dll
    2009-07-18 17:44:01 ----A---- C:\Windows\system32\amxread.dll
    2009-07-18 17:43:56 ----A---- C:\Windows\system32\wersvc.dll
    2009-07-18 17:43:56 ----A---- C:\Windows\system32\Faultrep.dll
    2009-07-18 17:43:13 ----A---- C:\Windows\system32\rpcrt4.dll
    2009-07-17 21:14:37 ----D---- C:\Windows\system32\Adobe
    2009-07-17 21:00:23 ----D---- C:\ProgramData\NOS
    2009-07-17 21:00:23 ----D---- C:\Program Files\NOS
    2009-07-17 17:33:47 ----D---- C:\Users\maxime\AppData\Roaming\InterVideo
    2009-07-17 11:35:48 ----D---- C:\Users\maxime\AppData\Roaming\Mozilla
    2009-07-17 11:35:15 ----D---- C:\Users\maxime\AppData\Roaming\LimeWire
    2009-07-17 11:34:43 ----D---- C:\Program Files\LimeWire
    2009-07-17 11:30:16 ----D---- C:\Program Files\QuickTime
    2009-07-17 11:01:06 ----D---- C:\Program Files\iTunes
    2009-07-16 22:06:33 ----D---- C:\Users\maxime\AppData\Roaming\Apple Computer
    2009-07-16 22:06:22 ----DC---- C:\Windows\system32\DRVSTORE
    2009-07-16 22:06:22 ----A---- C:\Windows\system32\GEARAspi.dll
    2009-07-16 22:06:03 ----D---- C:\Program Files\iPod
    2009-07-16 22:06:01 ----D---- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
    2009-07-16 22:05:33 ----D---- C:\Program Files\Bonjour
    2009-07-16 22:04:58 ----D---- C:\ProgramData\Apple Computer
    2009-07-16 22:03:00 ----D---- C:\ProgramData\Apple
    2009-07-16 22:03:00 ----D---- C:\Program Files\Common Files\Apple
    2009-07-16 20:49:06 ----D---- C:\ProgramData\FLEXnet
    2009-07-16 20:11:38 ----D---- C:\ProgramData\ArcSoft
    2009-07-16 20:11:17 ----D---- C:\Users\maxime\AppData\Roaming\ArcSoft
    2009-07-16 19:33:07 ----D---- C:\Update
    2009-07-16 18:24:41 ----D---- C:\Users\maxime\AppData\Roaming\DivX
    2009-07-16 18:20:04 ----D---- C:\Users\maxime\AppData\Roaming\Macromedia
    2009-07-16 18:20:04 ----D---- C:\Users\maxime\AppData\Roaming\Adobe
    2009-07-16 18:18:04 ----A---- C:\Windows\system32\wups2.dll
    2009-07-16 18:18:04 ----A---- C:\Windows\system32\wucltux.dll
    2009-07-16 18:18:04 ----A---- C:\Windows\system32\wuaueng.dll
    2009-07-16 18:18:04 ----A---- C:\Windows\system32\wuauclt.exe
    2009-07-16 18:17:37 ----A---- C:\Windows\system32\wups.dll
    2009-07-16 18:17:37 ----A---- C:\Windows\system32\wudriver.dll
    2009-07-16 18:17:37 ----A---- C:\Windows\system32\wuapi.dll
    2009-07-16 18:17:28 ----A---- C:\Windows\system32\wuwebv.dll
    2009-07-16 18:17:28 ----A---- C:\Windows\system32\wuapp.exe
    2009-07-16 18:16:31 ----D---- C:\Users\maxime\AppData\Roaming\Google
    2009-07-16 17:59:41 ----D---- C:\VAIO Entertainment
    2009-07-16 17:54:30 ----D---- C:\Users\maxime\AppData\Roaming\Sony Corporation
    2009-07-16 17:54:26 ----D---- C:\Users\maxime\AppData\Roaming\ATI
    2009-07-16 17:53:45 ----D---- C:\Users\maxime\AppData\Roaming\Identities
    2009-07-16 17:50:46 ----SD---- C:\Users\maxime\AppData\Roaming\Microsoft
    2009-07-16 17:50:46 ----D---- C:\Users\maxime\AppData\Roaming\Media Center Programs
    2009-07-16 17:47:13 ----SHD---- C:\ProgramData\Modèles
    2009-07-16 17:47:13 ----SHD---- C:\ProgramData\Menu Démarrer
    2009-07-16 17:47:13 ----SHD---- C:\ProgramData\Favoris
    2009-07-16 17:47:13 ----SHD---- C:\ProgramData\Bureau
    2009-07-16 17:47:13 ----SHD---- C:\Program Files\Fichiers communs
    2009-07-16 17:40:29 ----D---- C:\_FS_SWRINFO
    2009-07-16 17:40:27 ----D---- C:\Documentation
    2009-07-16 17:40:08 ----D---- C:\ProgramData\Roaming
    2009-07-16 17:39:39 ----D---- C:\Program Files\Cisco
    2009-07-16 17:39:38 ----D---- C:\Program Files\Common Files\Intel
    2009-07-16 17:39:37 ----D---- C:\ProgramData\Intel
    2009-07-16 17:38:59 ----D---- C:\Program Files\Microsoft
    2009-07-16 17:38:45 ----D---- C:\Program Files\Windows Live SkyDrive
    2009-07-16 17:38:26 ----D---- C:\Program Files\Windows Live
    2009-07-16 17:37:32 ----D---- C:\Program Files\Common Files\Windows Live
    2009-07-16 17:37:17 ----A---- C:\Windows\system32\gdiplus.dll
    2009-07-16 17:36:55 ----A---- C:\Windows\VAIOUpdt.INI
    2009-07-16 17:33:49 ----A---- C:\Windows\system32\d3dx9_35.dll
    2009-07-16 17:32:47 ----A---- C:\Windows\system32\VESWinlogon.dll
    2009-07-16 17:27:55 ----D---- C:\Program Files\Skype
    2009-07-16 17:27:54 ----D---- C:\Program Files\Common Files\Skype
    2009-07-16 17:27:52 ----D---- C:\ProgramData\Skype
    2009-07-16 17:27:44 ----D---- C:\ProgramData\Uninstall
    2009-07-16 17:27:41 ----D---- C:\ProgramData\Sonic
    2009-07-16 17:27:30 ----D---- C:\Program Files\Roxio
    2009-07-16 17:27:04 ----D---- C:\Program Files\Common Files\Sonic Shared
    2009-07-16 17:26:56 ----D---- C:\Program Files\Common Files\Roxio Shared
    2009-07-16 17:26:40 ----N---- C:\Windows\system32\pxafs.dll
    2009-07-16 17:22:09 ----D---- C:\ProgramData\Symantec
    2009-07-16 17:22:09 ----D---- C:\Program Files\Symantec
    2009-07-16 17:20:41 ----D---- C:\Program Files\Microsoft Office Suite Activation Assistant
    2009-07-16 17:18:19 ----A---- C:\Windows\system32\msonpmon.dll
    2009-07-16 17:17:51 ----D---- C:\Program Files\Microsoft Works
    2009-07-16 17:17:41 ----D---- C:\Program Files\Common Files\DESIGNER
    2009-07-16 17:17:29 ----D---- C:\Windows\PCHEALTH
    2009-07-16 17:17:29 ----D---- C:\Program Files\Microsoft.NET
    2009-07-16 17:15:50 ----D---- C:\Program Files\Microsoft Office
    2009-07-16 17:15:49 ----D---- C:\ProgramData\Microsoft Help
    2009-07-16 17:15:35 ----RHD---- C:\MSOCache
    2009-07-16 17:14:18 ----D---- C:\ProgramData\SiteAdvisor
    2009-07-16 17:10:14 ----D---- C:\Program Files\Common Files\McAfee
    2009-07-16 17:09:50 ----D---- C:\Program Files\McAfee.com
    2009-07-16 17:09:47 ----D---- C:\Program Files\McAfee
    2009-07-16 17:09:43 ----D---- C:\ProgramData\McAfee
    2009-07-16 17:09:37 ----A---- C:\Windows\system32\Mdat_1.2.00.0903160.txt
    2009-07-16 17:09:27 ----A---- C:\Windows\system32\PCDLIB32.DLL
    2009-07-16 17:09:22 ----A---- C:\Windows\system32\ArcSoftKsUFilter.dll
    2009-07-16 17:09:20 ----D---- C:\Program Files\Common Files\ArcSoft
    2009-07-16 17:09:20 ----D---- C:\Program Files\ArcSoft
    2009-07-16 17:09:12 ----D---- C:\ProgramData\Google
    2009-07-16 17:08:41 ----D---- C:\Program Files\Google
    2009-07-16 17:08:20 ----D---- C:\Program Files\Common Files\DivX Shared
    2009-07-16 17:08:19 ----D---- C:\Program Files\DivX
    2009-07-16 17:04:37 ----N---- C:\Windows\system32\pxhpinst.exe
    2009-07-16 17:03:44 ----D---- C:\ProgramData\ATI
    2009-07-16 17:03:04 ----D---- C:\Program Files\ATI Technologies
    2009-07-16 17:02:28 ----D---- C:\Program Files\Common Files\InterVideo
    2009-07-16 17:01:16 ----D---- C:\Program Files\InterVideo
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\xinput1_3.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\xactengine2_6.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\xactengine2_5.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\xactengine2_4.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\x3daudio1_1.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\d3dx9_32.dll
    2009-07-16 17:00:37 ----A---- C:\Windows\system32\d3dx10.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\xinput1_2.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\xinput1_1.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\xactengine2_3.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\xactengine2_2.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\xactengine2_1.dll
    2009-07-16 17:00:36 ----A---- C:\Windows\system32\d3dx9_31.dll
    2009-07-16 17:00:32 ----A---- C:\Windows\system32\xactengine2_0.dll
    2009-07-16 17:00:32 ----A---- C:\Windows\system32\x3daudio1_0.dll
    2009-07-16 17:00:32 ----A---- C:\Windows\system32\d3dx9_30.dll
    2009-07-16 17:00:31 ----A---- C:\Windows\system32\d3dx9_29.dll
    2009-07-16 17:00:31 ----A---- C:\Windows\system32\d3dx9_28.dll
    2009-07-16 17:00:31 ----A---- C:\Windows\system32\d3dx9_27.dll
    2009-07-16 17:00:31 ----A---- C:\Windows\system32\d3dx9_26.dll
    2009-07-16 17:00:30 ----A---- C:\Windows\system32\d3dx9_25.dll
    2009-07-16 17:00:30 ----A---- C:\Windows\system32\d3dx9_24.dll
    2009-07-16 16:58:57 ----D---- C:\ProgramData\eSellerate
    2009-07-16 16:58:56 ----D---- C:\ProgramData\SmartSound Software Inc
    2009-07-16 16:58:52 ----D---- C:\Program Files\SmartSound Software
    2009-07-16 16:56:03 ----D---- C:\Windows\system32\Macromed
    2009-07-16 16:53:33 ----D---- C:\Program Files\Common Files\Macrovision Shared
    2009-07-16 16:53:13 ----D---- C:\Program Files\Common Files\PX Storage Engine
    2009-07-16 16:50:56 ----D---- C:\Windows\Sonysys
    2009-07-16 16:50:49 ----D---- C:\Windows\SoftwareDistribution
    2009-07-16 16:41:46 ----SHD---- C:\System Volume Information

    ======List of files/folders modified in the last 1 months======

    2009-08-14 14:40:55 ----D---- C:\Windows\Temp
    2009-08-14 14:39:07 ----SHD---- C:\Windows\Installer
    2009-08-14 14:39:01 ----D---- C:\Windows\System32
    2009-08-14 14:38:34 ----A---- C:\Windows\system32\deploytk.dll
    2009-08-14 14:29:07 ----D---- C:\Windows\inf
    2009-08-14 14:29:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2009-08-14 14:22:58 ----D---- C:\Windows
    2009-08-14 14:22:28 ----D---- C:\Windows\system32\drivers
    2009-08-14 14:19:51 ----D---- C:\Windows\Tasks
    2009-08-14 14:10:38 ----HD---- C:\ProgramData
    2009-08-14 14:10:37 ----RD---- C:\Program Files
    2009-08-14 14:06:28 ----D---- C:\Windows\system32\Tasks
    2009-08-14 11:21:59 ----D---- C:\Windows\Prefetch
    2009-08-14 11:17:34 ----D---- C:\Windows\system32\WDI
    2009-08-13 03:01:12 ----D---- C:\Windows\winsxs
    2009-08-12 23:42:04 ----D---- C:\Windows\system32\catroot
    2009-08-12 23:42:01 ----D---- C:\Windows\system32\catroot2
    2009-08-12 16:06:27 ----D---- C:\Program Files\Windows Media Player
    2009-08-12 16:04:14 ----D---- C:\Program Files\Windows Mail
    2009-07-30 15:20:15 ----D---- C:\Program Files\Internet Explorer
    2009-07-26 00:07:56 ----D---- C:\Windows\system32\LogFiles
    2009-07-20 17:31:55 ----D---- C:\Windows\Logs
    2009-07-19 21:21:15 ----D---- C:\Windows\Microsoft.NET
    2009-07-19 19:05:23 ----D---- C:\Windows\ehome
    2009-07-19 19:05:18 ----D---- C:\Windows\system32\wbem
    2009-07-19 19:05:17 ----D---- C:\Windows\system32\manifeststore
    2009-07-19 19:05:17 ----D---- C:\Windows\AppPatch
    2009-07-19 11:38:33 ----D---- C:\Program Files\Common Files\microsoft shared
    2009-07-19 11:35:51 ----RSD---- C:\Windows\assembly
    2009-07-18 17:52:40 ----D---- C:\Program Files\Common Files
    2009-07-18 13:33:13 ----SD---- C:\ProgramData\Microsoft
    2009-07-18 11:14:18 ----SD---- C:\Windows\Downloaded Program Files
    2009-07-17 17:47:59 ----D---- C:\Windows\rescache
    2009-07-17 16:22:32 ----D---- C:\Program Files\Java
    2009-07-16 21:18:55 ----D---- C:\Windows\system32\NDF
    2009-07-16 18:36:06 ----D---- C:\Windows\system32\fr-FR
    2009-07-16 18:16:58 ----D---- C:\Windows\system32\restore
    2009-07-16 17:59:41 ----D---- C:\ProgramData\Sony Corporation
    2009-07-16 17:54:02 ----SHD---- C:\$Recycle.Bin
    2009-07-16 17:50:46 ----RD---- C:\Users
    2009-07-16 17:47:13 ----D---- C:\Windows\Debug
    2009-07-16 17:47:13 ----D---- C:\Program Files\Windows NT
    2009-07-16 17:43:26 ----D---- C:\Windows\system32\sysprep
    2009-07-16 17:43:26 ----D---- C:\Windows\Panther
    2009-07-16 17:42:47 ----D---- C:\Program Files\sony
    2009-07-16 17:40:30 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-07-16 17:39:37 ----D---- C:\Program Files\Intel
    2009-07-16 17:34:37 ----RSD---- C:\Windows\Fonts
    2009-07-16 17:33:43 ----D---- C:\Program Files\Common Files\Sony Shared
    2009-07-16 17:16:11 ----D---- C:\Windows\ShellNew
    2009-07-16 17:09:19 ----D---- C:\Program Files\Common Files\InstallShield
    2009-07-16 16:56:30 ----D---- C:\Program Files\Common Files\Adobe
    2009-07-16 16:55:43 ----D---- C:\ProgramData\Adobe
    2009-07-16 16:55:43 ----D---- C:\Program Files\Adobe
    2009-07-16 16:51:03 ----A---- C:\Windows\csup.txt

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 DMICall;Sony DMI Call service; C:\Windows\system32\DRIVERS\DMICall.sys [2008-11-25 10216]
    R1 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2009-03-25 214024]
    R1 MPFP;MPFP; C:\Windows\System32\Drivers\Mpfp.sys [2008-10-23 130424]
    R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2008-01-25 12672]
    R2 regi;regi; \??\C:\Windows\system32\drivers\regi.sys [2007-04-17 11032]
    R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2008-10-23 68608]
    R2 risdptsk;risdptsk; C:\Windows\system32\DRIVERS\risdptsk.sys [2008-10-23 46592]
    R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2008-01-25 8192]
    R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2008-09-30 164400]
    R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect; C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2008-04-24 17920]
    R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-03-11 4304384]
    R3 BthEnum;Pilote de bloc de demande Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-04-17 23040]
    R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
    R3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-17 30208]
    R3 btwaudio;Périphérique audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys [2009-02-10 84008]
    R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2009-02-10 109096]
    R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-02-10 29736]
    R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-02-10 18344]
    R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
    R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
    R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2008-01-25 985600]
    R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2008-01-25 207360]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-01-06 2254880]
    R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2009-03-25 79880]
    R3 mfebopk;McAfee Inc. mfebopk; C:\Windows\system32\drivers\mfebopk.sys [2009-03-25 35272]
    R3 mfesmfk;McAfee Inc. mfesmfk; C:\Windows\system32\drivers\mfesmfk.sys [2009-03-25 40552]
    R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-08-28 3664384]
    R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-04-17 149504]
    R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIV.sys [2009-03-10 153952]
    R3 SFEP;Sony Firmware Extension Parser; C:\Windows\system32\DRIVERS\SFEP.sys [2008-11-19 9344]
    R3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
    R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2008-01-25 659968]
    R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
    R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2008-03-27 298496]
    S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2008-04-17 507904]
    S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
    S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
    S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-01-21 200704]
    S3 mferkdk;McAfee Inc. mferkdk; C:\Windows\system32\drivers\mferkdk.sys [2009-03-25 34216]
    S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
    S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
    S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
    S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2009-07-09 39424]
    S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-06-07 131000]
    S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-21 39936]
    S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
    S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
    S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]
    S4 UIUSys;Conexant Setup API; C:\Windows\system32\DRIVERS\UIUSYS.SYS []
    S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7; c:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-12-08 169312]
    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712]
    R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2009-03-11 729088]
    R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
    R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-01-24 559656]
    R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2008-08-20 860160]
    R2 IviRegMgr;IviRegMgr; c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-04 112152]
    R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [2009-01-23 203280]
    R2 mcmscsvc;McAfee Services; C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe [2009-06-23 797864]
    R2 McNASvc;McAfee Network Agent; c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe [2009-01-09 2482848]
    R2 McProxy;McAfee Proxy Service; c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe [2009-01-09 359952]
    R2 McShield;McAfee Real-time Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [2009-03-25 144704]
    R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2009-03-19 884360]
    R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\McAfee\MSK\MskSrver.exe [2009-01-09 26640]
    R2 NSUService;NSUService; C:\Program Files\sony\Network Utility\NSUService.exe [2008-12-21 303104]
    R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2008-08-20 466944]
    R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [2009-01-06 109088]
    R2 uCamMonitor;CamMonitor; C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
    R2 VAIO Event Service;VAIO Event Service; C:\Program Files\sony\VAIO Event Service\VESMgr.exe [2009-01-19 203624]
    R2 VAIO Power Management;VAIO Power Management; C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2008-12-19 415592]
    R2 VCFw;VAIO Content Folder Watcher; C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2009-01-14 5184872]
    R2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2009-01-19 394536]
    R2 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2009-01-21 192512]
    R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2008-01-25 386560]
    R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-07-13 542496]
    R3 McSysmon;McAfee SystemGuards; C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [2009-03-24 606736]
    R3 Vcsw;VAIO Entertainment UPnP Client Adapter; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [2009-01-21 313264]
    S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2008-08-01 109056]
    S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-07-16 651720]
    S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-07-16 30192]
    S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-19 182768]
    S3 McODS;McAfee Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe [2009-04-01 365072]
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
    S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2009-01-08 114688]
    S3 SOHCImp;VAIO Media plus Content Importer; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2009-02-05 120104]
    S3 SOHDBSvr;VAIO Media plus Database Manager; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [2009-02-05 70952]
    S3 SOHDms;VAIO Media plus Digital Media Server; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe [2009-02-05 390440]
    S3 SOHDs;VAIO Media plus Device Searcher; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDs.exe [2009-02-05 75048]
    S3 SOHPlMgr;VAIO Media plus Playlist Manager; C:\Program Files\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [2009-02-05 91432]
    S3 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [2009-01-21 69632]
    S3 VcmXmlIfHelper;VAIO Content Metadata XML Interface; C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [2009-01-16 83240]

    -----------------EOF-----------------


    désolé
    a c 327 8 Sécurité
    14 Août 2009 14:49:40

    Plus de souci ?
    14 Août 2009 14:51:04

    ben cv pour le momeny est-ce vraiment necessaire d'avoir avast car j'ai vu qu'il n'etait pas vraiment conseillé.
    a c 327 8 Sécurité
    14 Août 2009 14:54:36

    Tu as déjà McAfee, inutile d'installer Avast.
    14 Août 2009 14:56:33

    oki et un grand merci car tout est rentrer a la normalle
    tu me sauve
    a c 327 8 Sécurité
    14 Août 2009 15:12:05

    1/

  • Désinstalle HijackThis.

  • Télécharge ToolsCleaner2 sur ton Bureau.
  • Clique droit sur ToolsCleaner2.exe et choisis Exécuter en tant qu'administrateur.
  • Clique sur Recherche et laisse le scan agir.
  • Clique sur Suppression pour finaliser.
  • Tu peux, si tu le souhaites, te servir des Options Facultatives.
  • Clique sur Quitter pour obtenir le rapport.
  • Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).


    2/

  • Télécharge et installe CCleaner Slim.
  • Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
  • Va dans Nettoyeur, choisis Analyser. Une fois terminé, lance le nettoyage.


    3/

  • Il est nécessaire de désactiver puis réactiver la restauration système pour la purger.


    ==Prévention==

    Conserve MBAM. Il te servira à scanner les fichiers douteux en complément de l'antivirus et scanne le disque dur régulièrement.

    Par rapport au P2P : Lien

    Voici un dossier complet (A lire avec Adobe Reader ou Foxit Reader) : Lien


    ==Problème résolu ?==

    --> Si tu estimes que ton problème est résolu, ajoute [Résolu] au titre. Pour cela :
  • Clique, dans ton premier message, sur le bouton Editer .
  • Ajoute la mention [Résolu] devant le titre.
  • Clique ensuite sur Valider votre message.


    Sois plus vigilant(e) sur Internet ;) 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS