Se connecter / S'enregistrer
Votre question

[resolu]Ouverture pub et prob. google

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
29 Juin 2009 20:16:19

Bonjour,

depuis ce matin j'ai des pubs qui s'ouvrent sur mon ordinateur si quelqu'un pouvais m'aider à les enlever cela serais génial.

de plus, je ne sait pas si cela vient egalement d'un virus ou si c'est general.
depuis ce matin, lorsque je vais sur la page google je tombe sur l'ancienne page, celle avec les onglet actu,etc. . juste au dessus de la barre de recherche et non en haut a gauche. lors des recherches il n'y a pas l'option " en cache" et lorsque je clic sur le lien trouvé lors d'une recherche le site s'ouvre dans un nouvel onglet et non ds le meme.

voilà!
merci par avance à ceux( ou celles :ange:  ) qui pourrons m'aider!

Autres pages sur : resolu ouverture pub prob google

a c 295 8 Sécurité
29 Juin 2009 20:31:26

Bonjour,

  • Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
  • Double-clique sur RSIT.exe afin de lancer le programme.
    (Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)
  • Clique sur Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

    Note : les rapports sont sauvegardés dans le dossier C:\rsit.
    29 Juin 2009 20:36:36

    merci de ta reponse, voici les fichiers :

    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Cyril at 2009-06-29 20:34:54
    Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
    System drive C: has 161 GB (55%) free of 292 GB
    Total RAM: 3581 MB (57% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 20:34:59, on 29/06/2009
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Windows\temp\2803493.tmp
    C:\Program Files\Dell\DellDock\DellDock.exe
    C:\Program Files\DellTPad\Apoint.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Program Files\Protector Suite QL\psqltray.exe
    C:\Program Files\Dell Support Center\bin\sprtcmd.exe
    C:\Windows\system32\conime.exe
    C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\AeroSnap\AeroSnap.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Program Files\Dell\QuickSet\quickset.exe
    C:\Program Files\DellTPad\ApMsgFwd.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\DellTPad\HidFind.exe
    C:\Program Files\DellTPad\Apntex.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    C:\Program Files\Windows Live\Contacts\wlcomm.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Users\Cyril\Downloads\RSIT.exe
    C:\Program Files\trend micro\Cyril.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://bing.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = www-cache.ujf-grenoble.fr:3128
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.ujf-grenoble.fr;*.grenet.fr
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: D - {A5616AF7-5EAD-39DF-827D-E22A15234D04} - C:\Windows\system32\xwr85185.dll (file missing)
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
    O4 - HKLM\..\Run: [PSQLLauncher] "C:\Program Files\Protector Suite QL\launcher.exe" /startup
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
    O4 - HKCU\..\Run: [AeroSnap] C:\Program Files\AeroSnap\AeroSnap.exe
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe
    O4 - Global Startup: BTTray.lnk = ?
    O4 - Global Startup: QuickSet.lnk = C:\Program Files\Dell\QuickSet\quickset.exe
    O4 - Global Startup: VPN Client.lnk = ?
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O13 - Gopher Prefix:
    O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.euro.dell.com/systemprofiler/SysPro.CAB
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O17 - HKLM\System\CCS\Services\Tcpip\..\{1C1CB41C-0E96-4318-B0B6-5858FFABC9A5}: NameServer = 85.255.112.11,85.255.112.139
    O17 - HKLM\System\CCS\Services\Tcpip\..\{8A40A931-B7F2-4F1B-88C5-8C9636785946}: NameServer = 85.255.112.11,85.255.112.139
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.112.11,85.255.112.139
    O17 - HKLM\System\CS1\Services\Tcpip\..\{1C1CB41C-0E96-4318-B0B6-5858FFABC9A5}: NameServer = 85.255.112.11,85.255.112.139
    O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.112.11,85.255.112.139
    O17 - HKLM\System\CS2\Services\Tcpip\..\{1C1CB41C-0E96-4318-B0B6-5858FFABC9A5}: NameServer = 85.255.112.11,85.255.112.139
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.112.11,85.255.112.139
    O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\aestsrv.exe
    O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe
    O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    O23 - Service: Service Google Update (gupdate1c9b78147aef8fa) (gupdate1c9b78147aef8fa) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: O&O Defrag - O&O Software GmbH - C:\Windows\system32\oodag.exe
    O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
    O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\STacSV.exe
    O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
    O23 - Service: Stardock WindowBlinds (WindowBlinds) - Stardock Corporation - C:\Program Files\Stardock\MyColors\VistaSrv.exe

    --
    End of file - 9184 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\GoogleUpdateTaskMachine.job
    C:\Windows\tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5616AF7-5EAD-39DF-827D-E22A15234D04}]
    D - C:\Windows\system32\xwr85185.dll []

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-06-17 41368]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Apoint"=C:\Program Files\DellTPad\Apoint.exe [2007-10-25 167936]
    "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2007-07-24 174616]
    "dscactivate"=C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [2008-03-11 16384]
    "PSQLLauncher"=C:\Program Files\Protector Suite QL\launcher.exe [2007-03-28 49168]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
    "DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-14 206064]
    "SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [2008-02-15 405504]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-06-17 148888]
    "NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-05-27 13781536]
    "NVHotkey"=C:\Windows\system32\nvHotkey.dll [2009-05-27 92704]
    "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
    "DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-14 206064]
    "AeroSnap"=C:\Program Files\AeroSnap\AeroSnap.exe [2008-12-06 886784]
    "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DELL Webcam Manager]
    C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe [2007-07-27 118784]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-12-10 49152]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate]
    C:\Program Files\Samsung\Samsung PC Studio 3\\Update\Copyer.exe [2009-04-07 270336]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEM02Mon.exe]
    C:\Windows\OEM02Mon.exe [2007-05-10 36864]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
    C:\Windows\system32\oodtray.exe [2009-04-08 2553088]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService]
    C:\Program Files\Dell\MediaDirect\PCMService.exe [2008-05-20 184320]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
    C:\Program Files\uTorrent\uTorrent.exe [2009-06-17 287536]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
    C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2007-01-02 210520]

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    QuickSet.lnk - C:\Program Files\Dell\QuickSet\quickset.exe
    VPN Client.lnk - C:\Windows\Installer\{F3C1DE9E-5E16-4BA9-B854-7B53A45E3579}\Icon3E5562ED7.ico

    C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
    Dell Dock.lnk - C:\Program Files\Dell\DellDock\DellDock.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
    C:\Windows\system32\psqlpwd.dll [2007-03-28 90112]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
    "notification packages"=scecli
    psqlpwd

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "EnableUIADesktopToggle"=0
    "DisableCAD"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDrives"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDrives"=
    "BindDirectlyToPropertySetStorage"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{246610c0-22e1-11de-bbc5-001f3ad6a8ec}]
    shell\AutoRun\command - F:\wubi.exe --cdmenu

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ab5ff5d4-3968-11de-865f-0023ae002e39}]
    shell\AutoRun\command - F:\AUTORUN.EXE


    ======File associations======

    .js - edit - C:\Windows\System32\Notepad.exe %1
    .js - open - C:\Windows\System32\WScript.exe "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-06-29 20:33:40 ----D---- C:\Program Files\trend micro
    2009-06-29 16:39:22 ----D---- C:\Windows\BDOSCAN8
    2009-06-29 11:17:29 ----D---- C:\Users\Cyril\AppData\Roaming\Sony Corporation
    2009-06-29 11:13:13 ----A---- C:\Windows\system32\xinput1_3.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\xactengine2_7.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\xactengine2_6.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\xactengine2_5.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\xactengine2_4.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\x3daudio1_1.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\d3dx9_33.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\d3dx9_32.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\d3dx9_31.dll
    2009-06-29 11:13:11 ----A---- C:\Windows\system32\xinput1_2.dll
    2009-06-29 11:13:11 ----A---- C:\Windows\system32\xinput1_1.dll
    2009-06-29 11:13:11 ----A---- C:\Windows\system32\xactengine2_3.dll
    2009-06-29 11:13:11 ----A---- C:\Windows\system32\xactengine2_2.dll
    2009-06-29 11:13:11 ----A---- C:\Windows\system32\xactengine2_1.dll
    2009-06-29 11:13:09 ----A---- C:\Windows\system32\xactengine2_0.dll
    2009-06-29 11:13:09 ----A---- C:\Windows\system32\x3daudio1_0.dll
    2009-06-29 11:13:09 ----A---- C:\Windows\system32\d3dx9_29.dll
    2009-06-29 11:13:08 ----A---- C:\Windows\system32\d3dx9_28.dll
    2009-06-29 11:13:08 ----A---- C:\Windows\system32\d3dx9_27.dll
    2009-06-29 11:13:08 ----A---- C:\Windows\system32\d3dx9_26.dll
    2009-06-29 11:13:08 ----A---- C:\Windows\system32\d3dx9_25.dll
    2009-06-29 11:13:08 ----A---- C:\Windows\system32\d3dx9_24.dll
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\vxblock.dll
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\PxInsI64.exe
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\PxInsA64.exe
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\pxhpinst.exe
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\PxCpyI64.exe
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\PxCpyA64.exe
    2009-06-29 11:10:55 ----D---- C:\Program Files\Sony
    2009-06-29 11:10:15 ----D---- C:\ProgramData\Sony Corporation
    2009-06-29 10:25:30 ----D---- C:\Program Files\1AVCenter
    2009-06-29 10:25:30 ----A---- C:\Windows\system32\mpg4c32.dll
    2009-06-29 10:25:20 ----AD---- C:\ProgramData\TEMP
    2009-06-29 10:13:12 ----D---- C:\ProgramData\AVS4YOU
    2009-06-29 10:13:09 ----D---- C:\Users\Cyril\AppData\Roaming\AVS4YOU
    2009-06-29 10:12:54 ----D---- C:\Program Files\Common Files\AVSMedia
    2009-06-29 10:12:54 ----D---- C:\Program Files\AVS4YOU
    2009-06-27 16:51:02 ----D---- C:\Program Files\UltraVNC
    2009-06-24 21:21:00 ----D---- C:\Users\Cyril\AppData\Roaming\Dream Aquarium
    2009-06-21 14:45:55 ----D---- C:\Program Files\Avira
    2009-06-21 14:13:39 ----D---- C:\ProgramData\Avira
    2009-06-21 10:11:58 ----D---- C:\Windows\system32\AGEIA
    2009-06-21 10:11:58 ----D---- C:\Program Files\AGEIA Technologies
    2009-06-21 10:11:48 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
    2009-06-21 10:10:21 ----D---- C:\NVIDIA
    2009-06-21 09:43:29 ----D---- C:\Program Files\SystemRequirementsLab
    2009-06-21 09:43:24 ----D---- C:\Users\Cyril\AppData\Roaming\SystemRequirementsLab
    2009-06-18 14:32:32 ----D---- C:\Program Files\Hewlett-Packard
    2009-06-18 14:31:48 ----D---- C:\ProgramData\Hewlett-Packard
    2009-06-18 14:29:54 ----A---- C:\Windows\system32\hpz3l5ha.dll
    2009-06-18 14:29:12 ----A---- C:\Windows\system32\hpzids01.dll
    2009-06-18 14:29:12 ----A---- C:\Windows\system32\hppldcoi.dll
    2009-06-18 14:29:11 ----A---- C:\Windows\system32\hpowiax5.dll
    2009-06-18 14:29:11 ----A---- C:\Windows\system32\hpovst12.dll
    2009-06-18 14:29:11 ----A---- C:\Windows\system32\hpotiop5.dll
    2009-06-17 13:27:02 ----D---- C:\Program Files\FileZilla FTP Client
    2009-06-16 16:12:40 ----D---- C:\Windows\pss
    2009-06-16 15:55:46 ----D---- C:\ProgramData\WEBREG
    2009-06-16 14:47:53 ----D---- C:\Program Files\Common Files\Hewlett-Packard
    2009-06-16 14:47:42 ----D---- C:\Program Files\Common Files\HP
    2009-06-16 14:46:33 ----D---- C:\Program Files\HP
    2009-06-16 14:46:32 ----HD---- C:\Config.Msi
    2009-06-16 14:45:17 ----D---- C:\ProgramData\HP
    2009-06-16 14:45:15 ----A---- C:\Windows\system32\SET8A3F.tmp
    2009-06-16 14:45:15 ----A---- C:\Windows\system32\SET8962.tmp
    2009-06-16 14:45:15 ----A---- C:\Windows\system32\hpovst01.dll
    2009-06-16 14:39:35 ----D---- C:\Users\Cyril\AppData\Roaming\HP
    2009-06-13 10:49:43 ----D---- C:\Users\Cyril\AppData\Roaming\Votre Budget 2008
    2009-06-13 10:49:31 ----A---- C:\Windows\system32\msxml3a.dll
    2009-06-13 10:49:21 ----D---- C:\Program Files\Micro Application
    2009-06-10 08:10:35 ----A---- C:\Windows\system32\localspl.dll
    2009-06-10 08:10:33 ----A---- C:\Windows\system32\rpcrt4.dll
    2009-06-10 08:10:33 ----A---- C:\Windows\system32\mshtml.dll
    2009-06-10 08:10:32 ----A---- C:\Windows\system32\iertutil.dll
    2009-06-10 08:10:32 ----A---- C:\Windows\system32\ieframe.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\wininet.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\urlmon.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\jsproxy.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\ieui.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\iesetup.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\iernonce.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\iedkcs32.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\ie4uinit.exe
    2009-06-09 16:23:10 ----A---- C:\Windows\iun6002.exe
    2009-06-08 14:14:14 ----D---- C:\Windows\system32\oodag
    2009-06-08 11:38:15 ----D---- C:\Program Files\OO Software
    2009-06-02 20:15:05 ----D---- C:\Program Files\Aspecto Software
    2009-05-31 19:01:41 ----D---- C:\Windows\system32\Dell

    ======List of files/folders modified in the last 1 months======

    2009-06-29 20:34:47 ----D---- C:\Windows\temp
    2009-06-29 20:34:35 ----D---- C:\Windows\Prefetch
    2009-06-29 20:34:29 ----RD---- C:\Program Files
    2009-06-29 20:34:27 ----D---- C:\Windows
    2009-06-29 19:58:15 ----D---- C:\Windows\System32
    2009-06-29 18:27:10 ----D---- C:\Windows\inf
    2009-06-29 18:27:10 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2009-06-29 18:11:01 ----D---- C:\ProgramData\Roxio
    2009-06-29 18:08:04 ----D---- C:\Users\Cyril\AppData\Roaming\FileZilla
    2009-06-29 16:39:25 ----SD---- C:\Windows\Downloaded Program Files
    2009-06-29 16:20:25 ----D---- C:\Users\Cyril\AppData\Roaming\dvdcss
    2009-06-29 15:51:38 ----D---- C:\Windows\system32\drivers
    2009-06-29 11:30:53 ----D---- C:\Windows\Tasks
    2009-06-29 11:28:28 ----RSD---- C:\Windows\assembly
    2009-06-29 11:14:38 ----D---- C:\Windows\system32\Tasks
    2009-06-29 11:13:13 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-06-29 11:13:09 ----D---- C:\Windows\Microsoft.NET
    2009-06-29 11:10:15 ----HD---- C:\ProgramData
    2009-06-29 11:03:06 ----D---- C:\Program Files\Mozilla Firefox
    2009-06-29 10:27:03 ----A---- C:\Windows\win.ini
    2009-06-29 10:12:54 ----D---- C:\Program Files\Common Files
    2009-06-28 08:46:45 ----D---- C:\Users\Cyril\AppData\Roaming\uTorrent
    2009-06-26 15:53:37 ----D---- C:\Users\Cyril\AppData\Roaming\gtk-2.0
    2009-06-26 09:53:33 ----SHD---- C:\Windows\Installer
    2009-06-26 09:53:19 ----D---- C:\Windows\winsxs
    2009-06-26 09:53:19 ----D---- C:\Program Files\Internet Explorer
    2009-06-26 09:53:01 ----SHD---- C:\System Volume Information
    2009-06-26 09:52:58 ----D---- C:\Windows\system32\catroot2
    2009-06-24 14:41:22 ----D---- C:\Users\Cyril\AppData\Roaming\Spotify
    2009-06-24 09:27:34 ----D---- C:\Windows\system32\catroot
    2009-06-21 10:34:28 ----D---- C:\ProgramData\NVIDIA
    2009-06-18 14:32:33 ----D---- C:\Windows\twain_32
    2009-06-17 13:26:33 ----A---- C:\Windows\system32\javaws.exe
    2009-06-17 13:26:33 ----A---- C:\Windows\system32\javaw.exe
    2009-06-17 13:26:33 ----A---- C:\Windows\system32\java.exe
    2009-06-17 13:26:33 ----A---- C:\Windows\system32\deploytk.dll
    2009-06-17 13:26:30 ----D---- C:\Program Files\Java
    2009-06-16 14:48:47 ----A---- C:\Windows\WININIT.INI
    2009-06-15 17:01:42 ----D---- C:\Windows\system32\Macromed
    2009-06-14 16:05:53 ----SD---- C:\Users\Cyril\AppData\Roaming\Microsoft
    2009-06-13 10:49:32 ----RSD---- C:\Windows\Fonts
    2009-06-11 11:41:07 ----D---- C:\Windows\Debug
    2009-06-10 19:25:24 ----D---- C:\Windows\system32\migration
    2009-06-10 19:25:24 ----D---- C:\Windows\ehome
    2009-06-10 19:24:23 ----D---- C:\ProgramData\Microsoft Help
    2009-06-01 18:51:12 ----A---- C:\Windows\system32\mrt.exe
    2009-05-31 19:01:41 ----D---- C:\Program Files\Dell
    2009-05-31 18:56:48 ----SD---- C:\ProgramData\Microsoft

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [2009-02-13 11608]
    R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
    R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2008-07-21 121872]
    R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-02-13 28376]
    R1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2006-07-24 5632]
    R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
    R2 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\Windows\system32\Drivers\CVPNDRVA.sys [2009-01-13 306811]
    R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
    R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-12-26 164400]
    R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
    R3 DNE;Deterministic Network Enhancer Miniport; C:\Windows\system32\DRIVERS\dne2000.sys [2008-08-28 131856]
    R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2009-04-06 3668480]
    R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-05-27 9850240]
    R3 OEM02Dev;Creative Camera OEM002 Driver; C:\Windows\system32\DRIVERS\OEM02Dev.sys [2007-10-11 235648]
    R3 OEM02Vfx;Creative Camera OEM002 Video VFX Driver; C:\Windows\system32\DRIVERS\OEM02Vfx.sys [2007-03-05 7424]
    R3 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2005-11-16 28928]
    R3 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2005-12-22 51840]
    R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
    R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\stwrt.sys [2008-02-15 330752]
    R3 TcUsb;TC USB Kernel Driver; C:\Windows\System32\Drivers\tcusb.sys [2007-03-28 46992]
    R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
    R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2007-12-06 298496]
    S3 61883;Pilote d'unité 61883; C:\Windows\system32\DRIVERS\61883.sys [2008-01-21 45696]
    S3 a1svhkdu;a1svhkdu; C:\Windows\system32\drivers\a1svhkdu.sys []
    S3 Avc;Périphérique AVC; C:\Windows\system32\DRIVERS\avc.sys [2008-01-21 40448]
    S3 BthEnum;Service d'énumérateur Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
    S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
    S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-04-11 507904]
    S3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-04-11 29696]
    S3 btwaudio;Périphérique audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys [2009-04-15 78128]
    S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2009-04-15 80176]
    S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-04-15 16560]
    S3 catchme;catchme; \??\C:\Users\Cyril\AppData\Local\Temp\catchme.sys []
    S3 CVirtA;Cisco Systems VPN Adapter; C:\Windows\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
    S3 DFUBTUSB;WIDCOMM USB Bluetooth Driver in DFU State; C:\Windows\System32\Drivers\frmupgr.sys []
    S3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-21 131584]
    S3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-21 16384]
    S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-21 36864]
    S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
    S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
    S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2008-01-21 52608]
    S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
    S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
    S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
    S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
    S3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-09-26 2251776]
    S3 ovt530;Webcam Classic; C:\Windows\System32\Drivers\ov530vid.sys [2005-03-15 161792]
    S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
    S3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
    S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
    S3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
    S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
    S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
    S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\aestsrv.exe [2007-09-20 73728]
    R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-04-01 108289]
    R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]
    R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe [2009-01-13 1528608]
    R2 DockLoginService;Dock Login Service; C:\Program Files\Dell\DellDock\DockLogin.exe [2008-12-18 155648]
    R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-07-25 647168]
    R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2007-07-24 354840]
    R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-05-27 211488]
    R2 O&O Defrag;O&O Defrag; C:\Windows\system32\oodag.exe [2009-04-08 1377536]
    R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-07-25 327680]
    R2 sprtsvc_dellsupportcenter;SupportSoft Sprocket Service (dellsupportcenter); C:\Program Files\Dell Support Center\bin\sprtsvc.exe [2008-08-14 201968]
    R2 STacSV;SigmaTel Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\STacSV.exe [2008-02-15 102400]
    R2 WindowBlinds;Stardock WindowBlinds; C:\Program Files\Stardock\MyColors\VistaSrv.exe [2008-12-15 230704]
    R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    S2 gupdate1c9b78147aef8fa;Service Google Update (gupdate1c9b78147aef8fa); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-07 133104]
    S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe []
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
    S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]

    -----------------EOF-----------------

    info.txt logfile of random's system information tool 1.06 2009-04-01 17:59:48

    ======Uninstall list======

    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1A5BA3E-9ABF-4037-820B-6151022B8ACB}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F6366726-BA44-4D6A-8ECE-476E2E616AD1}\setup.exe" -l0x40c
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe"
    Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Reader 9.1-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A91000000001}
    adsl TV-->C:\Program Files\adslTV\Uninstal.exe
    Advanced Audio FX Engine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c /remove
    Advanced Video FX Engine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c /remove
    AeroSnap 0.61-->"C:\Program Files\AeroSnap\unins000.exe"
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    Auslogics BoostSpeed-->"C:\Program Files\Auslogics\Auslogics BoostSpeed\unins000.exe"
    AusLogics Disk Defrag-->"C:\Program Files\Auslogics\AusLogics Disk Defrag\unins000.exe"
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Cisco Systems VPN Client 5.0.04.0300-->MsiExec.exe /X{51FB15F4-AD27-43BC-AD4B-DD0354FB6BBD}
    Defraggler (remove only)-->"C:\Program Files\Defraggler\uninst.exe"
    Dell Dock-->"C:\ProgramData\{5C66460E-8CA0-49BD-B660-B4925E7AFA18}\delldock.exe" REMOVE=TRUE MODIFY=FALSE
    Dell Dock-->C:\ProgramData\{5C66460E-8CA0-49BD-B660-B4925E7AFA18}\delldock.exe
    Dell Resource CD-->MsiExec.exe /X{42929F0F-CE14-47AF-9FC7-FF297A603021}
    Dell Support Center (Support Software)-->MsiExec.exe /X{E3BFEE55-39E2-4BE0-B966-89FE583822C1}
    Dell Touchpad-->C:\Program Files\DellTPad\Uninstap.exe ADDREMOVE
    Dell Webcam Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1A5BA3E-9ABF-4037-820B-6151022B8ACB}\setup.exe" -l0x40c /remove
    Dell Webcam Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F6366726-BA44-4D6A-8ECE-476E2E616AD1}\setup.exe" -l0x40c /remove
    eMule-->"C:\Program Files\eMule\Uninstall.exe"
    FastStone Image Viewer 3.2-->C:\Program Files\FastStone Image Viewer\uninst.exe
    filehippo.com Update Checker-->"C:\Program Files\filehippo.com\uninstall.exe"
    FileZilla Client 3.2.3.1-->C:\Program Files\FileZilla FTP Client\uninstall.exe
    Fingerprint Reader Suite 5.6-->MsiExec.exe /I{A2289997-10A3-48F2-AA03-99180D761661}
    Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
    Google Earth-->MsiExec.exe /X{548EAC70-EE00-11DD-908C-005056806466}
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
    Intel® Matrix Storage Manager-->C:\Windows\system32\imsmudlg.exe -uninstall
    Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
    Kaspersky Internet Security 2009-->MsiExec.exe /I{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}
    Kaspersky Internet Security 2009-->MsiExec.exe /I{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}
    K-Lite Mega Codec Pack 4.6.2-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
    Laptop Integrated Webcam Driver (1.04.01.1011) -->C:\Windows\CtDrvIns.exe -uninstall -script OEM002.uns -plugin OEM02Pin.dll -pluginres OEM02Pin.crl -nodisconprompt -langid 0x040C
    Live! Cam Avatar Creator-->C:\Program Files\InstallShield Installation Information\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}\setup.exe -runfromtemp -l0x040c -removeonly /remove
    Live! Cam Avatar-->C:\Program Files\InstallShield Installation Information\{1D5E29AD-39A9-4D0A-A8B6-46A6FCD8C995}\setup.exe -runfromtemp -l0x040c -removeonly /remove
    Logiciel Intel(R) PROSet/Wireless-->C:\Windows\Installer\iProInst.exe
    Marvell Miniport Driver-->MsiExec.exe /X{C950420B-4182-49EA-850A-A6A2ABF06C6B}
    mCore-->MsiExec.exe /I{F5D7FAB5-A1FD-4DD3-983E-4155B09D7102}
    mDriver-->MsiExec.exe /I{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}
    MediaDirect-->C:\Program Files\InstallShield Installation Information\{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}\Setup.exe -runfromtemp -l0x040c -cluninstall
    Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
    mHelp-->MsiExec.exe /I{8C6BB412-D3A8-4AAE-A01B-35B681789D68}
    Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
    Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
    Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
    Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
    Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
    Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
    Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
    Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
    Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
    Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
    Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
    Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
    Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
    Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
    Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
    Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
    Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
    Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
    Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
    Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
    Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
    Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
    mMHouse-->MsiExec.exe /I{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}
    Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
    Mozilla Firefox (3.0.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    mPfMgr-->MsiExec.exe /I{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    mWMI-->MsiExec.exe /I{63DB9CCD-2B56-4217-9A3D-507AC78320CA}
    neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
    NVIDIA Drivers-->C:\Windows\system32\NVUNINST.EXE UninstallGUI
    Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    OutlookAddinSetup-->MsiExec.exe /I{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}
    Peggle Deluxe 1.0-->C:\Program Files\PopCap Games\Peggle Deluxe\PopUninstall.exe "C:\Program Files\PopCap Games\Peggle Deluxe\Install.log"
    POKATreader-->"C:\Program Files\POKAT\unins000.exe"
    QuickSet-->MsiExec.exe /I{4B6AD248-D3BF-426A-8D64-847288154F13}
    RCT3 Soaked-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EA926717-CE5A-4CB4-AB21-9E6E9565A458}\Setup.exe" -l0x40c
    RICOH R5C83x/84x Flash Media Controller Driver Ver.3.54.06-->"C:\Program Files\InstallShield Installation Information\{59F6A514-9813-47A3-948C-8A155460CC2A}\setup.exe" -runfromtemp -l0x040c anything -removeonly
    RollerCoaster Tycoon® 3-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\Setup.exe" -l0x40c
    Roxio Creator Audio-->MsiExec.exe /I{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
    Roxio Creator Copy-->MsiExec.exe /I{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
    Roxio Creator Data-->MsiExec.exe /I{08E81ABD-79F7-49C2-881F-FD6CB0975693}
    Roxio Creator DE-->C:\ProgramData\Uninstall\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}\setup.exe /x {09760D42-E223-42AD-8C3E-55B47D0DDAC3}
    Roxio Creator DE-->MsiExec.exe /I{ED439A64-F018-4DD4-8BA5-328D85AB09AB}
    Roxio Creator Tools-->MsiExec.exe /I{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}
    Roxio Express Labeler 3-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
    Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
    SAMSUNG Mobile Modem Driver Set-->C:\Windows\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
    Samsung Mobile phone USB driver Software-->C:\Windows\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
    SAMSUNG Mobile USB Modem 1.0 Software-->C:\Windows\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
    SAMSUNG Mobile USB Modem Software-->C:\Windows\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
    Samsung PC Studio 3 USB Driver Installer-->"C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -runfromtemp -l0x040c -removeonly
    Samsung PC Studio 3-->"C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -runfromtemp -l0x040c -removeonly
    Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
    Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
    Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
    Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
    Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
    Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
    Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
    Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
    Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
    SigmaTel Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x40c -remove -removeonly
    Update for Microsoft Office Excel 2007 Help (KB957242)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {49E314EE-81FA-4007-8F1A-8D39BDBB4498}
    Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
    Update for Microsoft Office Outlook 2007 Help (KB957246)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {80E46078-C1C5-4AE8-8744-3EAFC812E118}
    Update for Office 2007 (KB946691)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
    Update for Outlook 2007 Junk Email Filter (kb962871)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {297857BF-4011-449B-BD74-DB64D182821C}
    VLC media player 0.9.8a-->C:\Program Files\adslTV\uninstall.exe
    WIDCOMM Bluetooth Software 6.0.1.3100-->MsiExec.exe /X{A13E07E1-A423-44FB-9DEE-B24C75C1BAF2}
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
    Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
    ZNsoft Free 2007-->"C:\Program Files\ZNsoft Corporation\ZNsoft Free\unins000.exe"
    ZNsoft Optimizer Xp-->"C:\Program Files\ZNsoft Corporation\ZNsoft Optimizer Xp\unins000.exe"

    ======Security center information======

    AV: Kaspersky Internet Security
    FW: Kaspersky Internet Security
    AS: Windows Defender
    AS: Kaspersky Internet Security

    ======System event log======

    Computer Name: PC-de-cyril
    Event Code: 10002
    Message: Le module d’extensibilité WLAN s’est arrêté.

    Chemin d’accès du module : C:\Windows\System32\IWMSSvc.dll

    Record Number: 44504
    Source Name: Microsoft-Windows-WLAN-AutoConfig
    Time Written: 20090401134444.318982-000
    Event Type: Avertissement
    User: AUTORITE NT\SYSTEM

    Computer Name: PC-de-cyril
    Event Code: 4001
    Message: Le Service d’autoconfiguration WLAN s’est arrêté correctement.

    Record Number: 44505
    Source Name: Microsoft-Windows-WLAN-AutoConfig
    Time Written: 20090401134444.412582-000
    Event Type: Avertissement
    User: AUTORITE NT\SYSTEM

    Computer Name: PC-de-cyril
    Event Code: 15016
    Message: Impossible d’initialiser le package de sécurité Kerberos pour l’authentification côté serveur. Le champ de données contient le numéro de l’erreur.
    Record Number: 44517
    Source Name: Microsoft-Windows-HttpEvent
    Time Written: 20090401134534.736181-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-cyril
    Event Code: 1001
    Message: L’initialisation de l’application a échoué. Dernière erreur : 0x80070032
    Record Number: 44525
    Source Name: Microsoft-Windows-LanguagePackSetup
    Time Written: 20090401134558.146181-000
    Event Type: Erreur
    User: AUTORITE NT\SYSTEM

    Computer Name: PC-de-cyril
    Event Code: 7000
    Message: Le service Parallel port driver n'a pas pu démarrer en raison de l'erreur :
    Le service ne peut pas être démarré parce qu'il est désactivé ou qu'aucun périphérique activé ne lui est associé.
    Record Number: 44561
    Source Name: Service Control Manager
    Time Written: 20090401134707.000000-000
    Event Type: Erreur
    User:

    =====Application event log=====

    Computer Name: PC-de-cyril
    Event Code: 10
    Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
    Record Number: 7417
    Source Name: Microsoft-Windows-WMI
    Time Written: 20090401083104.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-cyril
    Event Code: 8209
    Message: Une erreur non spécifiée s’est produite durant la restauration du système : (Windows Update). Informations supplémentaires : .
    Record Number: 7423
    Source Name: System Restore
    Time Written: 20090401083345.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-cyril
    Event Code: 10
    Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
    Record Number: 7455
    Source Name: Microsoft-Windows-WMI
    Time Written: 20090401134706.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-cyril
    Event Code: 513
    Message: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

    Details:
    AddCoreCsiFiles : GetNextFileMapContent() failed.

    System Error:
    Accès refusé.
    .
    Record Number: 7463
    Source Name: Microsoft-Windows-CAPI2
    Time Written: 20090401142512.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-cyril
    Event Code: 513
    Message: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

    Details:
    AddCoreCsiFiles : GetNextFileMapContent() failed.

    System Error:
    Accès refusé.
    .
    Record Number: 7464
    Source Name: Microsoft-Windows-CAPI2
    Time Written: 20090401142512.000000-000
    Event Type: Erreur
    User:

    =====Security event log=====

    Computer Name: PC-de-cyril
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys
    Record Number: 10376
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090401155945.813181-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-cyril
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys
    Record Number: 10377
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090401155945.831181-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-cyril
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys
    Record Number: 10378
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090401155945.849181-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-cyril
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys
    Record Number: 10379
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090401155945.867181-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-cyril
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys
    Record Number: 10380
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090401155945.885181-000
    Event Type: Échec de l'audit
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "DFSTRACINGON"=FALSE
    "FP_NO_HOST_CHECK"=NO
    "NUMBER_OF_PROCESSORS"=2
    "OS"=Windows_NT
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Samsung\Samsung PC Studio 3\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_REVISION"=1706
    "RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\10.0\Roxio Central36\
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
    "USERNAME"=SYSTEM
    "windir"=%SystemRoot%

    -----------------EOF-----------------


    et sinon pour google c'est normal ou pas?

    encore merci
    Contenus similaires
    a c 295 8 Sécurité
    29 Juin 2009 20:46:54

    Tu as des infections avec des rootkits.

  • Désactive l'UAC le temps de la désinfection.

    [#ff0000]/!\ Désactive tes protections résidentes (Antivirus, etc...) /!\[/#f]

  • Télécharge ComboFix ([#ff0000]sUBs[/#f]) sur ton Bureau.
  • Clique droit sur ComboFix.exe (le .exe n'est pas forcément visible) et choisis Exécuter en tant qu'administrateur.
  • Lorsque la recherche sera terminée, un rapport apparaîtra. Poste ce rapport (C:\Combofix.txt) dans ta prochaine réponse.

    Pour t'aider : Un guide et un tutoriel sur l'utilisation de ComboFix

    PS : si ComboFix ne se lance pas, renomme-le en IDN puis relance-le.
    29 Juin 2009 21:16:04

    MERCI DE TON AIDE

    je n'ai plus l'ancien site de google qui s'ouvre, je pense que je n'ai plus rien mais comme je suis pas un pro le rapport :

    ComboFix 09-06-29.01 - Cyril 29/06/2009 21:02.3 - NTFSx86
    Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3581.2450 [GMT 2:00]
    Lancé depuis: c:\users\Cyril\Desktop\idn.exe
    .

    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .

    c:\windows\system32\drivers\MSIVXnkyinmpqvleqxvcrrxxqgvmticevqsmf.sys
    c:\windows\system32\MSIVXcount
    c:\windows\system32\MSIVXjiaoxsejsuwfcsxnhndwnbupcbkbnhfl.dll
    c:\windows\system32\MSIVXyccxokrddmnfnqorsddxxtvoajpcpbev.dll
    c:\windows\Tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job

    .
    ((((((((((((((((((((((((((((( Fichiers créés du 2009-05-28 au 2009-06-29 ))))))))))))))))))))))))))))))))))))
    .

    2009-06-29 19:05 . 2009-06-29 19:05 -------- d-----w- c:\users\Cyril\AppData\Local\temp
    2009-06-29 18:33 . 2009-06-29 18:34 -------- d-----w- c:\program files\trend micro
    2009-06-29 14:39 . 2009-06-29 14:39 -------- d-----w- c:\windows\BDOSCAN8
    2009-06-29 09:17 . 2009-06-29 09:17 -------- d-----w- c:\users\Cyril\AppData\Roaming\Sony Corporation
    2009-06-29 09:11 . 2006-11-02 14:57 118520 ----a-w- c:\windows\system32\PxInsI64.exe
    2009-06-29 09:11 . 2006-10-18 17:43 115960 ----a-w- c:\windows\system32\PxCpyI64.exe
    2009-06-29 09:10 . 2009-06-29 09:10 -------- d-----w- c:\program files\Sony
    2009-06-29 09:10 . 2009-06-29 09:10 -------- d-----w- c:\programdata\Sony Corporation
    2009-06-29 08:25 . 2009-06-29 09:14 -------- d-----w- c:\program files\1AVCenter
    2009-06-29 08:25 . 2006-10-11 04:03 420240 ----a-w- c:\windows\system32\mpg4c32.dll
    2009-06-29 08:13 . 2009-06-29 08:13 -------- d-----w- c:\programdata\AVS4YOU
    2009-06-29 08:13 . 2009-06-29 08:13 -------- d-----w- c:\users\Cyril\AppData\Roaming\AVS4YOU
    2009-06-29 08:12 . 2009-06-29 08:14 -------- d-----w- c:\program files\Common Files\AVSMedia
    2009-06-29 08:12 . 2009-06-29 08:14 -------- d-----w- c:\program files\AVS4YOU
    2009-06-27 14:51 . 2009-06-27 14:51 -------- d-----w- c:\program files\UltraVNC
    2009-06-24 19:21 . 2009-06-24 19:25 -------- d-----w- c:\users\Cyril\AppData\Roaming\Dream Aquarium
    2009-06-21 17:27 . 2009-06-21 17:27 7680 ----a-w- c:\users\Cyril\AppData\Roaming\Thinstall\Vidal CD\400000df00002i\firefox.exe
    2009-06-21 12:45 . 2009-03-30 08:32 96104 ----a-w- c:\windows\system32\drivers\avipbb.sys
    2009-06-21 12:45 . 2009-03-24 14:07 55640 ----a-w- c:\windows\system32\drivers\avgntflt.sys
    2009-06-21 12:45 . 2009-06-21 12:45 -------- d-----w- c:\program files\Avira
    2009-06-21 12:13 . 2009-06-21 12:45 -------- d-----w- c:\programdata\Avira
    2009-06-21 08:11 . 2009-06-21 08:12 -------- d-----w- c:\program files\AGEIA Technologies
    2009-06-21 08:11 . 2009-06-21 08:11 -------- d-----w- c:\windows\system32\AGEIA
    2009-06-21 08:11 . 2009-06-21 08:11 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
    2009-06-21 08:10 . 2009-06-21 08:10 -------- d-----w- C:\NVIDIA
    2009-06-21 07:43 . 2009-06-21 07:43 -------- d-----w- c:\program files\SystemRequirementsLab
    2009-06-21 07:43 . 2009-06-21 07:43 -------- d-----w- c:\users\Cyril\AppData\Roaming\SystemRequirementsLab
    2009-06-21 07:43 . 2009-06-21 07:43 290816 ----a-w- c:\users\Cyril\AppData\Roaming\SystemRequirementsLab\SRLProxy_nvd_4.dll
    2009-06-21 07:43 . 2009-06-21 07:43 290816 ----a-w- c:\users\Cyril\AppData\Roaming\SystemRequirementsLab\SRLProxy_nvd_3.dll
    2009-06-21 07:43 . 2009-06-21 07:43 290816 ----a-w- c:\users\Cyril\AppData\Roaming\SystemRequirementsLab\SRLProxy_nvd_2.dll
    2009-06-21 07:43 . 2009-06-21 07:43 290816 ----a-w- c:\users\Cyril\AppData\Roaming\SystemRequirementsLab\SRLProxy_nvd_1.dll
    2009-06-18 12:32 . 2009-06-18 12:32 -------- d-----w- c:\program files\Hewlett-Packard
    2009-06-18 12:31 . 2009-06-18 12:31 -------- d-----w- c:\programdata\Hewlett-Packard
    2009-06-18 12:29 . 2007-03-15 13:32 118272 ----a-w- c:\windows\system32\hpz3l5ha.dll
    2009-06-18 12:29 . 2009-06-18 12:32 139581 ----a-w- c:\windows\hpoins21.dat
    2009-06-18 12:29 . 2008-01-24 02:37 7262 ------w- c:\windows\hpomdl21.dat
    2009-06-18 12:29 . 2007-12-07 15:55 271704 ----a-w- c:\windows\system32\hpzids01.dll
    2009-06-18 12:29 . 2007-11-02 02:28 364544 ----a-w- c:\windows\system32\hppldcoi.dll
    2009-06-18 12:29 . 2007-11-02 02:28 729088 ----a-w- c:\windows\system32\hpowiax5.dll
    2009-06-18 12:29 . 2007-11-02 02:28 303104 ----a-w- c:\windows\system32\hpovst12.dll
    2009-06-18 12:29 . 2007-11-02 02:28 970752 ----a-w- c:\windows\system32\hpotiop5.dll
    2009-06-17 11:27 . 2009-06-17 11:27 -------- d-----w- c:\program files\FileZilla FTP Client
    2009-06-16 13:55 . 2009-06-16 13:55 -------- d-----w- c:\programdata\WEBREG
    2009-06-16 12:47 . 2009-06-16 12:47 -------- d-----w- c:\program files\Common Files\Hewlett-Packard
    2009-06-16 12:47 . 2009-06-16 12:47 -------- d-----w- c:\program files\Common Files\HP
    2009-06-16 12:46 . 2009-06-16 12:48 -------- d-----w- c:\program files\HP
    2009-06-16 12:45 . 2009-06-16 13:56 164341 ----a-w- c:\windows\hpoins19.dat
    2009-06-16 12:45 . 2009-06-16 12:48 -------- d-----w- c:\programdata\HP
    2009-06-16 12:45 . 2006-12-16 06:19 303104 ----a-w- c:\windows\system32\hpovst01.dll
    2009-06-16 12:45 . 2007-03-13 19:55 26952 ----a-w- c:\windows\hpomdl19.dat
    2009-06-16 12:39 . 2009-06-16 12:58 -------- d-----w- c:\users\Cyril\AppData\Roaming\HP
    2009-06-13 08:49 . 2009-06-29 12:46 -------- d-----w- c:\users\Cyril\AppData\Roaming\Votre Budget 2008
    2009-06-13 08:49 . 2003-05-21 21:50 24576 ----a-w- c:\windows\system32\msxml3a.dll
    2009-06-13 08:49 . 2009-06-13 08:49 -------- d-----w- c:\program files\Micro Application
    2009-06-09 14:23 . 2009-06-09 14:23 737280 ----a-w- c:\windows\iun6002.exe
    2009-06-08 14:01 . 2009-06-08 14:01 -------- d-----w- c:\users\Cyril\AdSigner
    2009-06-08 12:14 . 2009-06-25 17:01 -------- d-----w- c:\windows\system32\oodag
    2009-06-08 09:38 . 2009-06-08 09:38 -------- d-----w- c:\users\Cyril\AppData\Local\O&O
    2009-06-08 09:38 . 2009-06-08 09:38 -------- d-----w- c:\program files\OO Software
    2009-06-02 18:15 . 2009-06-02 18:15 -------- d-----w- c:\program files\Aspecto Software
    2009-05-31 17:08 . 2009-05-31 17:08 -------- d-----w- c:\users\Cyril\AppData\Local\Dell
    2009-05-31 17:01 . 2009-05-31 17:01 -------- d-----w- c:\windows\system32\Dell

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-06-29 19:01 . 2009-04-07 01:37 669566 ----a-w- c:\windows\system32\perfh00C.dat
    2009-06-29 19:01 . 2009-04-07 01:37 123556 ----a-w- c:\windows\system32\perfc00C.dat
    2009-06-29 18:57 . 2009-04-06 16:30 31871 ----a-w- c:\programdata\nvModes.dat
    2009-06-29 18:54 . 2009-04-06 15:47 12 ----a-w- c:\windows\bthservsdp.dat
    2009-06-29 16:11 . 2009-04-15 15:34 -------- d-----w- c:\programdata\Roxio
    2009-06-29 16:08 . 2009-04-07 13:00 -------- d-----w- c:\users\Cyril\AppData\Roaming\FileZilla
    2009-06-29 14:20 . 2009-04-11 14:45 -------- d-----w- c:\users\Cyril\AppData\Roaming\dvdcss
    2009-06-29 09:13 . 2009-04-06 15:59 -------- d--h--w- c:\program files\InstallShield Installation Information
    2009-06-28 06:46 . 2009-04-06 20:21 -------- d-----w- c:\users\Cyril\AppData\Roaming\uTorrent
    2009-06-26 13:53 . 2009-04-27 17:41 -------- d-----w- c:\users\Cyril\AppData\Roaming\gtk-2.0
    2009-06-24 12:41 . 2009-05-20 15:24 -------- d-----w- c:\users\Cyril\AppData\Roaming\Spotify
    2009-06-21 08:34 . 2009-04-06 16:31 -------- d-----w- c:\programdata\NVIDIA
    2009-06-17 11:26 . 2009-04-06 16:36 410984 ----a-w- c:\windows\system32\deploytk.dll
    2009-06-17 11:26 . 2009-04-06 16:24 -------- d-----w- c:\program files\Java
    2009-06-13 09:17 . 2009-04-06 15:56 101032 ----a-w- c:\users\Cyril\AppData\Local\GDIPFONTCACHEV1.DAT
    2009-06-10 17:24 . 2009-04-06 19:35 -------- d-----w- c:\programdata\Microsoft Help
    2009-05-31 17:01 . 2009-04-06 15:58 -------- d-----w- c:\program files\Dell
    2009-05-27 19:16 . 2009-05-27 19:16 -------- d-----w- c:\program files\Bejeweled 2 Deluxe
    2009-05-27 19:16 . 2009-05-27 19:16 720896 ----a-w- c:\windows\iun6002ev.exe
    2009-05-27 14:04 . 2009-05-27 14:04 9850240 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
    2009-05-27 14:04 . 2009-05-27 14:04 663552 ----a-w- c:\windows\system32\nvcuvid.dll
    2009-05-27 14:04 . 2009-05-27 14:04 457248 ----a-w- c:\windows\system32\nvudisp.exe
    2009-05-27 14:04 . 2009-05-27 14:04 4224 ----a-w- c:\windows\system32\drivers\nvBridge.kmd
    2009-05-27 14:04 . 2009-05-27 14:04 3128320 ----a-w- c:\windows\system32\nvwgf2um.dll
    2009-05-27 14:04 . 2009-05-27 14:04 1704960 ----a-w- c:\windows\system32\nvcuda.dll
    2009-05-27 14:04 . 2009-05-27 14:04 143360 ----a-w- c:\windows\system32\nvcod151.dll
    2009-05-27 14:04 . 2009-05-27 14:04 143360 ----a-w- c:\windows\system32\nvcod.dll
    2009-05-27 14:04 . 2009-05-27 14:04 1314816 ----a-w- c:\windows\system32\nvcuvenc.dll
    2009-05-27 14:04 . 2009-05-27 14:04 10366976 ----a-w- c:\windows\system32\nvoglv32.dll
    2009-05-27 14:04 . 2009-02-18 19:45 983552 ----a-w- c:\windows\system32\nvapi.dll
    2009-05-27 14:04 . 2009-02-18 19:45 7593472 ----a-w- c:\windows\system32\nvd3dum.dll
    2009-05-27 09:56 . 2009-04-06 16:14 457248 ----a-w- c:\windows\system32\NVUNINST.EXE
    2009-05-26 21:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
    2009-05-26 21:09 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
    2009-05-26 21:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
    2009-05-26 21:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
    2009-05-26 21:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
    2009-05-26 21:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
    2009-05-26 21:09 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
    2009-05-26 21:09 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
    2009-05-26 18:21 . 2009-05-16 16:56 -------- d-----w- c:\programdata\Kaspersky Lab
    2009-05-25 19:12 . 2009-05-25 13:48 -------- d-----w- c:\program files\RAR Password Cracker
    2009-05-21 16:27 . 2009-05-21 16:27 -------- d-----w- c:\programdata\EyePowerGames
    2009-05-20 15:24 . 2009-05-20 15:24 -------- d-----w- c:\program files\Spotify
    2009-05-19 22:26 . 2009-04-07 13:02 -------- d-----w- c:\program files\Google
    2009-05-19 17:40 . 2009-05-11 13:06 -------- d-----w- c:\program files\EasyPHP 3.0
    2009-05-18 16:06 . 2009-05-03 22:09 -------- d-----w- c:\programdata\Skyline
    2009-05-18 15:09 . 2009-05-18 15:09 -------- d-----w- c:\users\Cyril\AppData\Roaming\Dexpot
    2009-05-12 15:48 . 2009-04-06 15:56 680 ----a-w- c:\users\Cyril\AppData\Local\d3d9caps.dat
    2009-05-11 20:01 . 2009-04-06 19:09 -------- d-----w- c:\users\Cyril\AppData\Roaming\vlc
    2009-05-10 21:25 . 2009-05-10 21:25 -------- d-----w- c:\program files\TryMedia
    2009-05-09 05:50 . 2009-06-10 06:10 915456 ----a-w- c:\windows\system32\wininet.dll
    2009-05-09 05:34 . 2009-06-10 06:10 71680 ----a-w- c:\windows\system32\iesetup.dll
    2009-05-08 11:08 . 2009-05-08 11:05 -------- d-----w- c:\program files\Roxio
    2009-05-08 11:08 . 2009-05-08 11:08 -------- d-----w- c:\program files\Common Files\SureThing Shared
    2009-05-08 11:07 . 2009-05-08 11:07 -------- d-----w- c:\program files\Common Files\Sonic Shared
    2009-05-08 11:07 . 2009-04-15 15:23 -------- d-----w- c:\program files\Common Files\Roxio Shared
    2009-05-08 11:07 . 2009-05-08 11:07 -------- d-----w- c:\program files\Common Files\PX Storage Engine
    2009-05-06 15:04 . 2009-04-06 20:27 -------- d-----w- c:\users\Cyril\AppData\Roaming\Auslogics
    2009-05-05 12:37 . 2009-04-06 19:24 -------- d-----w- c:\users\Cyril\AppData\Roaming\DAEMON Tools Lite
    2009-05-05 12:37 . 2009-05-05 12:37 -------- d-----w- c:\program files\DAEMON Tools Toolbar
    2009-05-05 12:37 . 2009-05-05 12:36 -------- d-----w- c:\program files\DAEMON Tools Lite
    2009-05-05 07:42 . 2009-05-05 07:42 -------- d-----w- c:\program files\Common Files\Deterministic Networks
    2009-05-01 08:03 . 2009-04-06 19:24 721904 ----a-w- c:\windows\system32\drivers\sptd.sys
    2009-04-23 12:15 . 2009-06-10 06:10 784896 ----a-w- c:\windows\system32\rpcrt4.dll
    2009-04-23 12:14 . 2009-06-10 06:10 623616 ----a-w- c:\windows\system32\localspl.dll
    2009-04-21 11:39 . 2009-06-10 06:10 2034688 ----a-w- c:\windows\system32\win32k.sys
    2009-04-14 22:17 . 2009-04-14 22:19 80176 ----a-w- c:\windows\system32\drivers\btwavdt.sys
    2009-04-14 22:17 . 2009-04-14 22:19 78128 ----a-w- c:\windows\system32\drivers\btwaudio.sys
    2009-04-14 22:17 . 2009-04-14 22:19 16560 ----a-w- c:\windows\system32\drivers\btwrchid.sys
    2009-04-14 22:17 . 2009-04-14 22:19 229376 ----a-w- c:\windows\system32\BtwRSupport.dll
    2009-04-13 16:42 . 2009-04-13 16:42 7680 ----a-w- c:\users\Cyril\AppData\Roaming\Thinstall\Vidal CD\4000003000002i\crashreporter.exe
    2009-04-13 16:42 . 2009-04-13 16:42 7680 ----a-w- c:\users\Cyril\AppData\Roaming\Thinstall\Vidal CD\4000004d00002i\firefox.exe
    2009-04-11 12:44 . 2009-04-11 12:44 7680 ----a-w- c:\users\Cyril\AppData\Roaming\Thinstall\Vidal CD\1000000e00002i\rundll32.exe
    2009-04-11 12:42 . 2009-04-11 12:42 7680 ----a-w- c:\users\Cyril\AppData\Roaming\Thinstall\Vidal CD\4000002400003i\java.exe
    2009-04-11 12:41 . 2009-04-11 12:41 7680 ----a-w- c:\users\Cyril\AppData\Roaming\Thinstall\Vidal CD\4000004300002i\VidalCD.exe
    2009-04-11 12:41 . 2009-04-11 12:41 7680 ----a-w- c:\users\Cyril\AppData\Roaming\Thinstall\Vidal CD\4000002400002i\javaw.exe
    2009-04-11 06:33 . 2009-05-26 20:43 986600 ----a-w- c:\windows\system32\winload.exe
    2009-04-11 06:33 . 2009-05-26 20:43 926184 ----a-w- c:\windows\system32\winresume.exe
    2009-04-11 06:33 . 2009-05-26 20:42 292840 ----a-w- c:\windows\system32\drivers\volmgrx.sys
    2009-04-11 06:33 . 2009-05-26 20:43 897000 ----a-w- c:\windows\system32\drivers\tcpip.sys
    2009-04-11 06:33 . 2009-05-26 20:43 614376 ----a-w- c:\windows\system32\ci.dll
    2009-04-11 06:28 . 2009-05-26 20:43 56320 ----a-w- c:\windows\system32\xmlfilter.dll
    2009-04-11 06:27 . 2009-05-26 20:43 441344 ----a-w- c:\windows\system32\SearchIndexer.exe
    2009-04-11 06:22 . 2009-05-26 20:42 7168 ----a-w- c:\windows\system32\f3ahvoas.dll
    2009-04-11 06:21 . 2009-05-26 20:42 37376 ----a-w- c:\windows\system32\cdd.dll
    2009-04-11 05:42 . 2009-05-26 20:42 93696 ----a-w- c:\windows\system32\drivers\bridge.sys
    2009-04-11 05:03 . 2009-05-26 20:43 12240896 ----a-w- c:\windows\system32\NlsLexicons0007.dll
    2009-04-11 05:03 . 2009-05-26 20:43 2644480 ----a-w- c:\windows\system32\NlsLexicons0009.dll
    2009-04-11 04:57 . 2009-05-26 20:42 8147456 ----a-w- c:\windows\system32\wmploc.DLL
    2009-04-11 04:54 . 2009-05-26 20:42 2048 ----a-w- c:\windows\system32\mferror.dll
    2009-04-11 04:51 . 2009-05-26 20:42 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
    2009-04-11 04:47 . 2009-05-26 20:42 273920 ----a-w- c:\windows\system32\drivers\afd.sys
    2009-04-11 04:46 . 2009-05-26 20:42 69120 ----a-w- c:\windows\system32\drivers\rassstp.sys
    2009-04-11 04:46 . 2009-05-26 20:42 121344 ----a-w- c:\windows\system32\drivers\ndiswan.sys
    2009-04-11 04:46 . 2009-05-26 20:42 41472 ----a-w- c:\windows\system32\drivers\raspppoe.sys
    2009-04-11 04:46 . 2009-05-26 20:42 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys
    2009-04-11 04:46 . 2009-05-26 20:42 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
    2009-04-11 04:46 . 2009-05-26 20:42 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
    2009-04-11 04:45 . 2009-05-26 20:42 72192 ----a-w- c:\windows\system32\drivers\tdx.sys
    .

    ((((((((((((((((((((((((((((( SnapShot@2009-05-12_13.50.25 )))))))))))))))))))))))))))))))))))))))))
    .
    + 2009-05-26 20:43 . 2009-04-11 06:28 52224 c:\windows\winsxs\x86_wudfusbcciddriver.inf_31bf3856ad364e35_6.0.6002.18005_none_646528b4fed68d6e\WUDFUsbccidDriver.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 54272 c:\windows\winsxs\x86_wsdscdrv.inf_31bf3856ad364e35_6.0.6002.18005_none_d229bfffc6a32553\WSDScPrx.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 56320 c:\windows\winsxs\x86_wsdprint.inf_31bf3856ad364e35_6.0.6002.18005_none_173ab75eae68bace\WSDPrPxy.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 16896 c:\windows\winsxs\x86_wsdprint.inf_31bf3856ad364e35_6.0.6002.18005_none_173ab75eae68bace\WSDPrint.sys
    + 2009-05-26 20:43 . 2009-02-18 18:39 23408 c:\windows\winsxs\x86_wpf-xamlviewer_31bf3856ad364e35_6.0.6002.18005_none_57f9c58d7a0eaddb\XamlViewer_v0300.exe
    + 2009-05-26 20:43 . 2009-02-18 18:39 94208 c:\windows\winsxs\x86_wpf-windowsformsintegration_31bf3856ad364e35_6.0.6002.18005_none_fc07886f78f1dcd7\WindowsFormsIntegration.dll
    + 2009-05-26 20:42 . 2009-02-18 18:39 98304 c:\windows\winsxs\x86_wpf-uiautomationtypes_31bf3856ad364e35_6.0.6002.18005_none_5efd9a79981257bd\UIAutomationTypes.dll
    + 2009-05-26 20:42 . 2009-02-18 18:39 40960 c:\windows\winsxs\x86_wpf-uiautomationprovider_31bf3856ad364e35_6.0.6002.18005_none_06884a618813ae63\UIAutomationProvider.dll
    + 2009-05-26 20:43 . 2009-02-18 18:39 35680 c:\windows\winsxs\x86_wpf-terminalserverwpfwrapperexe_31bf3856ad364e35_6.0.6002.18005_none_264ab896c8c14f1a\TsWpfWrp.exe
    + 2009-05-26 20:43 . 2009-02-18 18:39 41344 c:\windows\winsxs\x86_wpf-presentationhostproxy_31bf3856ad364e35_6.0.6002.18005_none_2c768fb876f0e8b7\PresentationHostProxy.dll
    + 2009-05-26 20:43 . 2009-02-18 18:39 43904 c:\windows\winsxs\x86_wpf-presentationfontcache_31bf3856ad364e35_6.0.6002.18005_none_07850fdb0f4fdd06\PresentationFontCache.exe
    + 2009-05-26 20:43 . 2009-02-18 18:39 68960 c:\windows\winsxs\x86_wpf-penimc_31bf3856ad364e35_6.0.6002.18005_none_ad9c8bf401cf9f35\PenIMC.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 39936 c:\windows\winsxs\x86_wpdmtp.inf_31bf3856ad364e35_6.0.6002.18005_none_2185beaf83d2688d\WpdUsb.sys
    + 2008-01-21 02:23 . 2008-01-21 02:23 60928 c:\windows\winsxs\x86_wpdmtp.inf_31bf3856ad364e35_6.0.6002.18005_none_2185beaf83d2688d\WpdMtpUS.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 66560 c:\windows\winsxs\x86_wpdmtp.inf_31bf3856ad364e35_6.0.6002.18005_none_2185beaf83d2688d\WpdMtpIP.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 33280 c:\windows\winsxs\x86_wpdmtp.inf_31bf3856ad364e35_6.0.6002.18005_none_2185beaf83d2688d\WpdConns.dll
    + 2009-05-26 20:42 . 2009-04-11 04:42 31616 c:\windows\winsxs\x86_winusb.inf_31bf3856ad364e35_6.0.6002.18005_none_f9e05d9212c3259d\winusb.sys
    + 2009-05-26 20:43 . 2009-04-11 06:27 87552 c:\windows\winsxs\x86_windowssearchengine_31bf3856ad364e35_7.0.6002.18005_none_3d746908b76294a3\SearchFilterHost.exe
    + 2009-05-26 20:43 . 2009-04-11 06:28 71680 c:\windows\winsxs\x86_windowssearchengine_31bf3856ad364e35_7.0.6002.18005_none_3d746908b76294a3\propdefs.dll
    + 2009-05-26 20:43 . 2009-04-11 06:28 43008 c:\windows\winsxs\x86_windowssearchengine_31bf3856ad364e35_7.0.6002.18005_none_3d746908b76294a3\msstrc.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 33280 c:\windows\winsxs\x86_windowssearchengine_31bf3856ad364e35_7.0.6002.18005_none_3d746908b76294a3\mssprxy.dll
    + 2009-05-26 20:43 . 2009-04-11 06:28 87040 c:\windows\winsxs\x86_windowssearchengine_31bf3856ad364e35_7.0.6002.18005_none_3d746908b76294a3\mssitlb.dll
    + 2009-05-26 20:43 . 2009-04-11 06:28 11776 c:\windows\winsxs\x86_windowssearchengine_31bf3856ad364e35_7.0.6002.18005_none_3d746908b76294a3\msshooks.dll
    + 2009-05-26 20:43 . 2009-04-11 06:28 60416 c:\windows\winsxs\x86_windowssearchengine_31bf3856ad364e35_7.0.6002.18005_none_3d746908b76294a3\msscntrs.dll
    + 2009-05-26 20:43 . 2009-04-11 06:28 35328 c:\windows\winsxs\x86_windowssearchengine_31bf3856ad364e35_7.0.6002.18005_none_3d746908b76294a3\msscb.dll
    + 2009-04-06 17:21 . 2008-05-27 04:59 18904 c:\windows\winsxs\x86_windowssearchengine..uredqueryschema.bin_31bf3856ad364e35_7.0.6002.18005_none_8ae0ca49e0ec3b69\StructuredQuerySchemaTrivial.bin
    + 2009-05-26 20:42 . 2009-04-11 06:28 13312 c:\windows\winsxs\x86_windowssearch-wtrservicingsupport_31bf3856ad364e35_7.0.6002.18005_none_1828286a1e96a1f4\WSWTRSvc.exe
    + 2009-05-26 20:42 . 2009-04-11 04:42 73216 c:\windows\winsxs\x86_wdma_usb.inf_31bf3856ad364e35_6.0.6002.18005_none_6f0354adb3fcb0ad\USBAUDIO.sys
    + 2009-05-26 20:43 . 2009-02-18 18:38 18288 c:\windows\winsxs\x86_wcf-m_svc_mon_sup_dll_31bf3856ad364e35_6.0.6002.18005_none_a7c97e5948c03629\ServiceMonikerSupport.dll
    + 2009-05-26 20:43 . 2009-02-18 18:38 99680 c:\windows\winsxs\x86_wcf-infocard_api_dll_31bf3856ad364e35_6.0.6002.18005_none_a5d273d4acc201ce\infocardapi.dll
    + 2009-05-26 20:42 . 2009-04-11 04:42 31616 c:\windows\winsxs\x86_wceusbsh.inf_31bf3856ad364e35_6.0.6002.18005_none_20c50bf85340ec11\winusb.sys
    + 2009-05-26 20:43 . 2009-04-11 04:42 65536 c:\windows\winsxs\x86_usbstor.inf_31bf3856ad364e35_6.0.6002.18005_none_4a71c7c294f4e68f\USBSTOR.SYS
    + 2008-01-21 02:23 . 2008-01-21 02:23 23552 c:\windows\winsxs\x86_usbport.inf_31bf3856ad364e35_6.0.6002.18005_none_bfadd87f00af6ca2\usbuhci.sys
    + 2009-05-26 20:42 . 2009-04-11 04:42 19456 c:\windows\winsxs\x86_usbport.inf_31bf3856ad364e35_6.0.6002.18005_none_bfadd87f00af6ca2\usbohci.sys
    + 2009-05-26 20:42 . 2009-04-11 04:42 39936 c:\windows\winsxs\x86_usbport.inf_31bf3856ad364e35_6.0.6002.18005_none_bfadd87f00af6ca2\usbehci.sys
    + 2008-01-21 02:23 . 2008-01-21 02:23 15872 c:\windows\winsxs\x86_usbport.inf_31bf3856ad364e35_6.0.6002.18005_none_bfadd87f00af6ca2\hcrstco.dll
    + 2009-05-26 20:42 . 2009-04-11 04:38 30208 c:\windows\winsxs\x86_usbccid.inf_31bf3856ad364e35_6.0.6002.18005_none_39242ea8a946a368\usbccid.sys
    + 2008-01-21 02:23 . 2008-01-21 02:23 73216 c:\windows\winsxs\x86_usb.inf_31bf3856ad364e35_6.0.6002.18005_none_cce3e0020b941ebb\usbccgp.sys
    + 2009-05-26 20:42 . 2009-04-11 04:42 31616 c:\windows\winsxs\x86_transfercable.inf_31bf3856ad364e35_6.0.6002.18005_none_628b1c3d8ef9a255\x86\winusb.sys
    + 2009-05-26 20:42 . 2009-04-11 05:06 19968 c:\windows\winsxs\x86_sti.inf_31bf3856ad364e35_6.0.6002.18005_none_5bca4a74dde86c1f\WSDScan.sys
    + 2008-01-21 02:23 . 2008-01-21 02:23 89088 c:\windows\winsxs\x86_sti.inf_31bf3856ad364e35_6.0.6002.18005_none_5bca4a74dde86c1f\wiafbdrv.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 35328 c:\windows\winsxs\x86_sti.inf_31bf3856ad364e35_6.0.6002.18005_none_5bca4a74dde86c1f\usbscan.sys
    + 2008-01-21 02:23 . 2008-01-21 02:23 14848 c:\windows\winsxs\x86_sti.inf_31bf3856ad364e35_6.0.6002.18005_none_5bca4a74dde86c1f\scsiscan.sys
    + 2009-05-26 20:42 . 2009-04-11 04:39 11776 c:\windows\winsxs\x86_sffdisk.inf_31bf3856ad364e35_6.0.6002.18005_none_a627020ee70bbf15\sffp_sd.sys
    + 2009-05-26 20:42 . 2009-04-11 04:39 12288 c:\windows\winsxs\x86_sffdisk.inf_31bf3856ad364e35_6.0.6002.18005_none_a627020ee70bbf15\sffp_mmc.sys
    + 2008-01-21 02:23 . 2008-01-21 02:23 13312 c:\windows\winsxs\x86_sffdisk.inf_31bf3856ad364e35_6.0.6002.18005_none_a627020ee70bbf15\sffdisk.sys
    + 2006-11-02 12:34 . 2006-11-02 12:34 11368 c:\windows\winsxs\x86_security-malware-windows-defender_31bf3856ad364e35_6.0.6002.18005_none_59a829d65550e411\MsMpLics.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 58936 c:\windows\winsxs\x86_security-malware-windows-defender_31bf3856ad364e35_6.0.6002.18005_none_59a829d65550e411\MpRtPlug.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 90680 c:\windows\winsxs\x86_security-malware-windows-defender_31bf3856ad364e35_6.0.6002.18005_none_59a829d65550e411\MpOAV.dll
    + 2006-11-02 12:34 . 2006-11-02 12:34 16488 c:\windows\winsxs\x86_security-malware-windows-defender_31bf3856ad364e35_6.0.6002.18005_none_59a829d65550e411\MpAsDesc.dll
    + 2009-05-26 20:42 . 2009-04-11 04:19 89088 c:\windows\winsxs\x86_sdbus.inf_31bf3856ad364e35_6.0.6002.18005_none_73ce35cfc778dd26\sdbus.sys
    + 2009-05-26 20:43 . 2009-04-11 06:32 82408 c:\windows\winsxs\x86_sbp2.inf_31bf3856ad364e35_6.0.6002.18005_none_47241df8f34504ba\sbp2port.sys
    + 2009-05-26 20:42 . 2009-03-30 04:42 32768 c:\windows\winsxs\x86_regsvcs_b03f5f7f11d50a3a_6.0.6002.18005_none_ea0ad48568496bd5\RegSvcs.exe
    + 2009-05-26 20:42 . 2009-03-30 04:42 53248 c:\windows\winsxs\x86_regasm_b03f5f7f11d50a3a_6.0.6002.18005_none_16efa9df15d67325\RegAsm.exe
    + 2009-05-26 20:42 . 2009-04-11 06:28 69632 c:\windows\winsxs\x86_pnpxassoc_31bf3856ad364e35_6.0.6002.18005_none_346f5d3f6c9701f6\PNPXAssoc.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 17408 c:\windows\winsxs\x86_ntprint.inf_31bf3856ad364e35_6.0.6002.18005_none_3cec160db7d4ac84\I386\PJLMON.DLL
    + 2008-01-21 02:24 . 2008-01-21 02:24 17920 c:\windows\winsxs\x86_networking-mpssvc-svc_31bf3856ad364e35_6.0.6002.18005_none_9bffb484c4fe88e5\wfapigp.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 64000 c:\windows\winsxs\x86_networking-mpssvc-svc_31bf3856ad364e35_6.0.6002.18005_none_9bffb484c4fe88e5\mpsdrv.sys
    + 2008-01-21 02:24 . 2008-01-21 02:24 87552 c:\windows\winsxs\x86_networking-mpssvc-svc_31bf3856ad364e35_6.0.6002.18005_none_9bffb484c4fe88e5\icfupgd.dll
    + 2009-05-26 20:42 . 2009-04-11 04:46 15872 c:\windows\winsxs\x86_netrndis.inf_31bf3856ad364e35_6.0.6002.18005_none_c9ae083642ee6e54\usb8023x.sys
    + 2009-05-26 20:42 . 2009-04-11 04:46 33280 c:\windows\winsxs\x86_netrndis.inf_31bf3856ad364e35_6.0.6002.18005_none_c9ae083642ee6e54\rndismpx.sys
    + 2008-01-21 02:24 . 2008-01-21 02:24 16896 c:\windows\winsxs\x86_netfx-shared_registry_whidbey_31bf3856ad364e35_6.0.6002.18005_none_6862e2e7643773d9\SharedReg12.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 16896 c:\windows\winsxs\x86_netfx-shared_netfx_20_mscorwks_31bf3856ad364e35_6.0.6002.18005_none_8199f0814373a5b3\sbscmp20_mscorwks.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 16896 c:\windows\winsxs\x86_netfx-shared_netfx_20_mscorlib_b03f5f7f11d50a3a_6.0.6002.18005_none_54ad0b7a61344e8c\sbscmp20_mscorlib.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 16896 c:\windows\winsxs\x86_netfx-sbscmp10_dll_31bf3856ad364e35_6.0.6002.18005_none_76f179ae021db881\sbscmp10.dll
    + 2009-05-26 20:43 . 2009-03-30 04:42 85320 c:\windows\winsxs\x86_netfx-perfcounter_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_29b27e22fffa4776\PerfCounter.dll
    + 2009-05-26 20:43 . 2009-03-30 04:42 97592 c:\windows\winsxs\x86_netfx-ngen_exe_b03f5f7f11d50a3a_6.0.6002.18005_none_779867b84af56065\ngen.exe
    + 2009-05-26 20:42 . 2009-03-30 04:42 79696 c:\windows\winsxs\x86_netfx-netfxsbs10_exe_31bf3856ad364e35_6.0.6002.18005_none_3d7a6880ab163624\NETFXSBS10.exe
    + 2009-05-26 20:43 . 2009-03-30 04:42 66368 c:\windows\winsxs\x86_netfx-mscorsvw_exe_b03f5f7f11d50a3a_6.0.6002.18005_none_1fd1ab49e8ca6ebb\mscorsvw.exe
    + 2009-05-26 20:43 . 2009-03-30 04:42 74048 c:\windows\winsxs\x86_netfx-mscorsec_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_118cda1df5183636\mscorsec.dll
    + 2009-05-26 20:43 . 2009-03-30 04:42 93504 c:\windows\winsxs\x86_netfx-mscormmc_dll_rtm_31bf3856ad364e35_6.0.6002.18005_none_a96e1e1ec6870b85\mscormmc.dll
    + 2009-05-26 20:43 . 2009-03-30 04:42 90960 c:\windows\winsxs\x86_netfx-mscorld_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_c2ba992d4a006fcd\mscorld.dll
    + 2009-05-26 20:42 . 2009-03-30 04:42 80720 c:\windows\winsxs\x86_netfx-mscories_dll_31bf3856ad364e35_6.0.6002.18005_none_c00e966deeec7579\mscories.dll
    + 2009-05-26 20:42 . 2009-03-30 04:42 43344 c:\windows\winsxs\x86_netfx-mscorie_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_ea720753707d6a51\mscorie.dll
    + 2009-05-26 20:43 . 2009-03-30 04:42 80208 c:\windows\winsxs\x86_netfx-mscordbc_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_6ccb593bc60a1852\mscordbc.dll
    + 2009-05-26 20:42 . 2009-03-30 04:42 15688 c:\windows\winsxs\x86_netfx-fusion_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_02ace91f0aebe7d3\fusion.dll
    + 2009-05-26 20:42 . 2009-03-30 04:42 33080 c:\windows\winsxs\x86_netfx-dw_b03f5f7f11d50a3a_6.0.6002.18005_none_cd77f4151b8ac157\dw20.exe
    + 2009-05-26 20:42 . 2009-03-30 04:42 93512 c:\windows\winsxs\x86_netfx-dfshim_dll_31bf3856ad364e35_6.0.6002.18005_none_7a6b6f7c5a1bb639\dfshim.dll
    + 2009-05-26 20:43 . 2009-03-30 04:42 59720 c:\windows\winsxs\x86_netfx-dfdll_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_882bc28c54dfc639\dfdll.dll
    + 2009-05-26 20:42 . 2009-03-30 04:42 32064 c:\windows\winsxs\x86_netfx-cvtres_for_vc_and_vb_b03f5f7f11d50a3a_6.0.6002.18005_none_e59ba05e346044a2\cvtres.exe
    + 2009-05-26 20:43 . 2009-03-30 04:42 77112 c:\windows\winsxs\x86_netfx-csharp_compiler_csc_b03f5f7f11d50a3a_6.0.6002.18005_none_fe5428b22d6c0e79\csc.exe
    + 2009-05-26 20:43 . 2009-03-30 04:42 86360 c:\windows\winsxs\x86_netfx-corperfmonext_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_b2c317a7c345a801\CORPerfMonExt.dll
    + 2009-05-26 20:42 . 2009-03-30 04:42 30528 c:\windows\winsxs\x86_netfx-aspnet_wp_exe_b03f5f7f11d50a3a_6.0.6002.18005_none_c4c45c1c8c9acff0\aspnet_wp.exe
    + 2009-05-26 20:42 . 2009-03-30 04:42 31048 c:\windows\winsxs\x86_netfx-aspnet_state_exe_b03f5f7f11d50a3a_6.0.6002.18005_none_80f871a1c32de056\aspnet_state.exe
    + 2009-05-26 20:42 . 2009-03-30 04:42 30024 c:\windows\winsxs\x86_netfx-aspnet_regiis_exe_b03f5f7f11d50a3a_6.0.6002.18005_none_120341a3224c03b8\aspnet_regiis.exe
    + 2009-05-26 20:42 . 2009-03-30 04:42 30552 c:\windows\winsxs\x86_netfx-aspnet_perf_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_dd85cceefd0a877e\Aspnet_perf.dll
    + 2009-05-26 20:42 . 2009-03-30 04:42 94544 c:\windows\winsxs\x86_netfx-aspnet_mmc_asp_ext_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_909e22e3d3759899\MmcAspExt.dll
    + 2009-05-26 20:42 . 2009-03-30 04:42 14168 c:\windows\winsxs\x86_netfx-aspnet_isapi_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_dd58f4996955bca7\aspnet_isapi.dll
    + 2009-05-26 20:42 . 2009-03-30 04:42 18760 c:\windows\winsxs\x86_netfx-aspnet_filter_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_d52bb06f58344ba9\aspnet_filter.dll
    + 2009-05-26 20:43 . 2009-03-30 04:42 55616 c:\windows\winsxs\x86_netfx-applaunch_exe_b03f5f7f11d50a3a_6.0.6002.18005_none_c512442c6b4566d7\AppLaunch.exe
    + 2009-05-26 20:43 . 2009-03-30 04:42 95544 c:\windows\winsxs\x86_netfx-_vc_assembly_linker_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_38d775cdebe1fba0\alink.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 20024 c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\viaide.sys
    + 2009-05-26 20:42 . 2009-04-11 06:32 43496 c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\pciidex.sys
    + 2009-05-26 20:42 . 2009-04-11 06:32 14312 c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\pciide.sys
    + 2009-05-26 20:42 . 2009-04-11 06:32 27112 c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\msahci.sys
    + 2008-01-21 02:23 . 2008-01-21 02:23 17976 c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\intelide.sys
    + 2008-01-21 02:23 . 2008-01-21 02:23 19000 c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\cmdide.sys
    + 2009-05-26 20:42 . 2009-04-11 06:32 19944 c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
    + 2008-01-21 02:23 . 2008-01-21 02:23 17976 c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\amdide.sys
    + 2008-01-21 02:23 . 2008-01-21 02:23 17464 c:\windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\aliide.sys
    + 2009-05-26 20:42 . 2009-04-11 06:32 93160 c:\windows\winsxs\x86_msdsm.inf_31bf3856ad364e35_6.0.6002.18005_none_cc32bbc0d8ad5cc9\msdsm.sys
    + 2009-05-26 20:42 . 2009-03-30 04:42 69632 c:\windows\winsxs\x86_msbuild_b03f5f7f11d50a3a_6.0.6002.18005_none_810e9dd9b189c19e\MSBuild.exe
    + 2009-05-26 20:43 . 2009-04-11 06:28 40960 c:\windows\winsxs\x86_microsoft.windows.h..uetooth-driverclass_31bf3856ad364e35_6.1.6002.18005_none_4eff3095feca167f\bthserv.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 45568 c:\windows\winsxs\x86_microsoft.windows.h..uetooth-driverclass_31bf3856ad364e35_6.1.6002.18005_none_4eff3095feca167f\bthci.dll
    + 2009-06-16 12:48 . 2009-06-16 12:48 49152 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.91_none_0e9c342f74fd2e58\mfc80KOR.dll
    + 2009-06-16 12:48 . 2009-06-16 12:48 49152 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.91_none_0e9c342f74fd2e58\mfc80JPN.dll
    + 2009-06-16 12:48 . 2009-06-16 12:48 61440 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.91_none_0e9c342f74fd2e58\mfc80ITA.dll
    + 2009-06-16 12:48 . 2009-06-16 12:48 61440 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.91_none_0e9c342f74fd2e58\mfc80FRA.dll
    + 2009-06-16 12:48 . 2009-06-16 12:48 61440 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.91_none_0e9c342f74fd2e58\mfc80ESP.dll
    + 2009-06-16 12:48 . 2009-06-16 12:48 57344 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.91_none_0e9c342f74fd2e58\mfc80ENU.dll
    + 2009-06-16 12:48 . 2009-06-16 12:48 65536 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.91_none_0e9c342f74fd2e58\mfc80DEU.dll
    + 2009-06-16 12:48 . 2009-06-16 12:48 45056 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.91_none_0e9c342f74fd2e58\mfc80CHT.dll
    + 2009-06-16 12:48 . 2009-06-16 12:48 40960 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.91_none_0e9c342f74fd2e58\mfc80CHS.dll
    + 2009-06-16 12:47 . 2009-06-16 12:47 57344 c:\windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.91_none_d6c3f1519bae0514\mfcm80u.dll
    + 2009-06-16 12:47 . 2009-06-16 12:47 69632 c:\windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.91_none_d6c3f1519bae0514\mfcm80.dll
    + 2009-06-16 12:47 . 2009-06-16 12:47 96256 c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.91_none_dc9917e997f80c63\ATL80.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 20992 c:\windows\winsxs\x86_microsoft-windows-wsd-challengecomponent_31bf3856ad364e35_6.0.6002.18005_none_2663224fa076d2c5\wsdchngr.dll
    + 2009-05-26 20:42 . 2009-02-25 01:16 90112 c:\windows\winsxs\x86_microsoft-windows-wpfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_568243ff806b0777\WindowsBase.resources.dll
    + 2009-05-26 20:42 . 2009-02-25 01:16 10240 c:\windows\winsxs\x86_microsoft-windows-wpfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_568243ff806b0777\UIAutomationTypes.resources.dll
    + 2009-05-26 20:42 . 2009-02-25 01:16 12288 c:\windows\winsxs\x86_microsoft-windows-wpfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_568243ff806b0777\UIAutomationClientsideProviders.resources.dll
    + 2009-05-26 20:42 . 2009-02-25 01:16 61440 c:\windows\winsxs\x86_microsoft-windows-wpfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_568243ff806b0777\System.Speech.resources.dll
    + 2009-05-26 20:42 . 2009-02-25 01:16 28672 c:\windows\winsxs\x86_microsoft-windows-wpfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_568243ff806b0777\System.Printing.resources.dll
    + 2009-05-26 20:42 . 2009-02-25 01:16 40960 c:\windows\winsxs\x86_microsoft-windows-wpfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_568243ff806b0777\ReachFramework.resources.dll
    + 2009-05-26 20:42 . 2009-02-25 01:16 53248 c:\windows\winsxs\x86_microsoft-windows-wpfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_568243ff806b0777\PresentationBuildTasks.resources.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 94720 c:\windows\winsxs\x86_microsoft-windows-wpd-portabledeviceapi_31bf3856ad364e35_6.0.6002.18005_none_4cec3f51e92bbb79\PortableDeviceClassExtension.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 47104 c:\windows\winsxs\x86_microsoft-windows-wmiperf_31bf3856ad364e35_6.0.6002.18005_none_a1858d34af79a11c\WmiPerfInst.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 91136 c:\windows\winsxs\x86_microsoft-windows-wmiperf_31bf3856ad364e35_6.0.6002.18005_none_a1858d34af79a11c\WmiPerfClass.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 61952 c:\windows\winsxs\x86_microsoft-windows-wmi-text-encoding_31bf3856ad364e35_6.0.6002.18005_none_bb6ce01939326381\wmi2xml.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 36864 c:\windows\winsxs\x86_microsoft-windows-wmi-snmp-provider_31bf3856ad364e35_6.0.6002.18005_none_aca6f795c3e189c2\snmpthrd.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 35840 c:\windows\winsxs\x86_microsoft-windows-wmi-krnlprov-provider_31bf3856ad364e35_6.0.6002.18005_none_e59c3d0bf238b906\KrnlProv.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 83968 c:\windows\winsxs\x86_microsoft-windows-wmi-core_31bf3856ad364e35_6.0.6002.18005_none_bb3f7c211cba6b3f\wmiutils.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 74752 c:\windows\winsxs\x86_microsoft-windows-wmi-core_31bf3856ad364e35_6.0.6002.18005_none_bb3f7c211cba6b3f\WMICOOKR.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 49152 c:\windows\winsxs\x86_microsoft-windows-wmi-core_31bf3856ad364e35_6.0.6002.18005_none_bb3f7c211cba6b3f\wbemsvc.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 30208 c:\windows\winsxs\x86_microsoft-windows-wmi-core_31bf3856ad364e35_6.0.6002.18005_none_bb3f7c211cba6b3f\wbemprox.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 37888 c:\windows\winsxs\x86_microsoft-windows-wmi-core_31bf3856ad364e35_6.0.6002.18005_none_bb3f7c211cba6b3f\unsecapp.exe
    + 2009-05-26 20:42 . 2009-04-11 06:28 57856 c:\windows\winsxs\x86_microsoft-windows-wmi-core_31bf3856ad364e35_6.0.6002.18005_none_bb3f7c211cba6b3f\NCProv.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 19968 c:\windows\winsxs\x86_microsoft-windows-wmi-core_31bf3856ad364e35_6.0.6002.18005_none_bb3f7c211cba6b3f\mofcomp.exe
    + 2009-05-26 20:42 . 2009-04-11 06:28 90112 c:\windows\winsxs\x86_microsoft-windows-wmi-core-svc_31bf3856ad364e35_6.0.6002.18005_none_a29e34dbf412e9da\WmiApRpl.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 77824 c:\windows\winsxs\x86_microsoft-windows-wmi-core-svc_31bf3856ad364e35_6.0.6002.18005_none_a29e34dbf412e9da\WinMgmt.exe
    + 2009-05-26 20:42 . 2009-04-11 06:28 68096 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18005_none_9e2fbb5f0207ec84\wlanhlp.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 64512 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18005_none_9e2fbb5f0207ec84\wlanapi.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 15181 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18005_none_9e2fbb5f0207ec84\gatherWirelessInfo.vbs
    + 2009-05-26 20:42 . 2009-04-11 06:28 83456 c:\windows\winsxs\x86_microsoft-windows-wlangpclient_31bf3856ad364e35_6.0.6002.18005_none_ba90c039cdbb04a6\wlgpclnt.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 31232 c:\windows\winsxs\x86_microsoft-windows-whea-troubleshooter_31bf3856ad364e35_6.0.6002.18005_none_b84486b94895774d\whealogr.dll
    + 2009-05-26 20:43 . 2009-04-11 06:28 61440 c:\windows\winsxs\x86_microsoft-windows-webdavredir-davclient_31bf3856ad364e35_6.0.6002.18005_none_95b8e24b4f6105d0\davclnt.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 69120 c:\windows\winsxs\x86_microsoft-windows-wcn-config-registrar_31bf3856ad364e35_6.0.6002.18005_none_2f082cdcbf0b91f1\fdWCN.dll
    + 2009-05-26 20:42 . 2009-02-18 18:41 38760 c:\windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_4538a9dc2994090c\WsatConfig.resources.dll
    + 2009-05-26 20:42 . 2009-02-18 18:41 36864 c:\windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_4538a9dc2994090c\System.ServiceModel.Install.Resources.dll
    + 2009-05-26 20:42 . 2009-02-18 18:41 12288 c:\windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_4538a9dc2994090c\System.IO.Log.Resources.dll
    + 2009-05-26 20:42 . 2009-02-18 18:41 57344 c:\windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_4538a9dc2994090c\System.IdentityModel.Selectors.Resources.dll
    + 2009-05-26 20:42 . 2009-02-18 18:41 65536 c:\windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_4538a9dc2994090c\System.IdentityModel.Resources.dll
    + 2009-05-26 20:42 . 2009-02-18 18:41 17256 c:\windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_4538a9dc2994090c\SMSvcHost.resources.dll
    + 2009-05-26 20:42 . 2009-02-18 18:41 34672 c:\windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_4538a9dc2994090c\ServiceModelReg.resources.dll
    + 2009-05-26 20:42 . 2009-02-18 18:41 19456 c:\windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_4538a9dc2994090c\Microsoft.Transactions.Bridge.Resources.dll
    + 2009-05-26 20:42 . 2009-02-18 18:41 42856 c:\windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.0.6002.18005_fr-fr_4538a9dc2994090c\ComSvcConfig.resources.dll
    + 2009-05-26 20:42 . 2009-04-11 04:22 33280 c:\windows\winsxs\x86_microsoft-windows-watchdog_31bf3856ad364e35_6.0.6002.18005_none_62546148a69ddcfd\watchdog.sys
    + 2006-11-02 08:48 . 2006-11-02 09:46 41984 c:\windows\winsxs\x86_microsoft-windows-wab-core_31bf3856ad364e35_6.0.6002.18005_none_570ee68146eaef3c\wabimp.dll
    + 2006-11-02 08:48 . 2006-11-02 09:45 66048 c:\windows\winsxs\x86_microsoft-windows-wab-app_31bf3856ad364e35_6.0.6002.18005_none_4494d68cd4b469ae\wabmig.exe
    + 2006-11-02 08:48 . 2006-11-02 09:46 33280 c:\windows\winsxs\x86_microsoft-windows-wab-app_31bf3856ad364e35_6.0.6002.18005_none_4494d68cd4b469ae\wabfind.dll
    + 2008-01-21 02:25 . 2008-01-21 02:25 32768 c:\windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6002.18005_none_a23e523a31a1ed4c\wups2.dll
    + 2008-01-21 02:25 . 2008-01-21 02:25 43008 c:\windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6002.18005_none_a23e523a31a1ed4c\wuauclt.exe
    + 2006-11-02 12:34 . 2006-11-02 12:34 12800 c:\windows\winsxs\x86_microsoft-windows-w..sition-coreservices_31bf3856ad364e35_6.0.6002.18005_none_347fb41db0752753\wiatrace.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 32768 c:\windows\winsxs\x86_microsoft-windows-w..sition-coreservices_31bf3856ad364e35_6.0.6002.18005_none_347fb41db0752753\wiarpc.dll
    + 2008-01-21 02:25 . 2008-01-21 02:25 23040 c:\windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6002.18005_none_884f8c864562464f\wups.dll
    + 2008-01-21 02:25 . 2008-01-21 02:25 80384 c:\windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6002.18005_none_884f8c864562464f\wudriver.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 13312 c:\windows\winsxs\x86_microsoft-windows-w..for-management-core_31bf3856ad364e35_6.0.6002.18005_none_cc50ee6baa2997a1\WsmRes.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 54784 c:\windows\winsxs\x86_microsoft-windows-w..for-management-core_31bf3856ad364e35_6.0.6002.18005_none_cc50ee6baa2997a1\WsmProv.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 30720 c:\windows\winsxs\x86_microsoft-windows-w..for-management-core_31bf3856ad364e35_6.0.6002.18005_none_cc50ee6baa2997a1\WSManHTTPConfig.exe
    + 2008-01-21 02:24 . 2008-01-21 02:24 69120 c:\windows\winsxs\x86_microsoft-windows-vssapi_31bf3856ad364e35_6.0.6002.18005_none_d6d2575c7ee3769a\vsstrace.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 19968 c:\windows\winsxs\x86_microsoft-windows-vssapi_31bf3856ad364e35_6.0.6002.18005_none_d6d2575c7ee3769a\eventcls.dll
    + 2008-01-21 02:25 . 2008-01-21 02:25 19968 c:\windows\winsxs\x86_microsoft-windows-virtualdiskservice_31bf3856ad364e35_6.0.6002.18005_none_6cd64babf7d06785\vdsldr.exe
    + 2008-01-21 02:25 . 2008-01-21 02:25 37888 c:\windows\winsxs\x86_microsoft-windows-virtualdiskservice_31bf3856ad364e35_6.0.6002.18005_none_6cd64babf7d06785\vds_ps.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 20480 c:\windows\winsxs\x86_microsoft-windows-version_31bf3856ad364e35_6.0.6002.18005_none_16e9c83b4e078740\version.dll
    + 2009-05-26 20:43 . 2009-04-11 06:27 57856 c:\windows\winsxs\x86_microsoft-windows-v..ck-uninstallremoval_31bf3856ad364e35_6.0.6002.18005_none_825070d3d8da2dcc\compcln.exe
    + 2009-05-26 20:42 . 2009-04-11 06:28 98816 c:\windows\winsxs\x86_microsoft-windows-userpowermanagement_31bf3856ad364e35_6.0.6002.18005_none_a505176cf9fa2abd\powrprof.dll
    + 2009-05-26 20:42 . 2009-04-11 04:42 25856 c:\windows\winsxs\x86_microsoft-windows-usbcamd_31bf3856ad364e35_6.0.6002.18005_none_a173da9c755cd9a9\USBCAMD2.sys
    + 2009-05-26 20:42 . 2009-04-11 04:42 25856 c:\windows\winsxs\x86_microsoft-windows-usbcamd_31bf3856ad364e35_6.0.6002.18005_none_a173da9c755cd9a9\USBCAMD.sys
    + 2006-11-02 08:58 . 2006-11-02 09:46 34816 c:\windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.0.6002.18005_none_f6ed1a9a1bcc8805\uicom.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 15360 c:\windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.0.6002.18005_none_f6ed1a9a1bcc8805\serialui.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 39424 c:\windows\winsxs\x86_microsoft-windows-trustedinstaller_31bf3856ad364e35_6.0.6002.18005_none_92f8ac904a488147\TrustedInstaller.exe
    + 2009-05-26 20:42 . 2009-04-11 06:27 44032 c:\windows\winsxs\x86_microsoft-windows-trustedinstaller_31bf3856ad364e35_6.0.6002.18005_none_92f8ac904a488147\cbsra.exe
    + 2009-05-26 20:42 . 2009-04-11 06:28 38400 c:\windows\winsxs\x86_microsoft-windows-terminalservices-theme_31bf3856ad364e35_6.0.6002.18005_none_d7d188e877f12210\TSTheme.exe
    + 2009-05-26 20:43 . 2009-04-11 06:28 71168 c:\windows\winsxs\x86_microsoft-windows-telnet-server-tlntsvr_31bf3856ad364e35_6.0.6002.18005_none_c0b01f5fedf47482\tlntsvr.exe
    + 2009-05-26 20:43 . 2009-04-11 06:28 70656 c:\windows\winsxs\x86_microsoft-windows-telnet-client_31bf3856ad364e35_6.0.6002.18005_none_ba1d0a71222c35d2\telnet.exe
    + 2009-05-26 20:42 . 2009-04-11 04:45 72192 c:\windows\winsxs\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.0.6002.18005_none_ec294157d9377403\tdx.sys
    + 2008-01-21 02:24 . 2008-01-21 02:24 22528 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6002.18005_none_63710ee88c7b7604\netiougc.exe
    + 2008-01-21 02:24 . 2008-01-21 02:24 49664 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6002.18005_none_63710ee88c7b7604\netiomig.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18005_none_34b26cb64bffedff\ROUTE.EXE
    + 2006-11-02 08:58 . 2006-11-02 09:45 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18005_none_34b26cb64bffedff\NETSTAT.EXE
    + 2006-11-02 08:58 . 2006-11-02 09:45 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18005_none_34b26cb64bffedff\MRINFO.EXE
    + 2006-11-02 08:58 . 2006-11-02 09:45 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18005_none_34b26cb64bffedff\finger.exe
    + 2006-11-02 08:58 . 2006-11-02 09:44 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18005_none_34b26cb64bffedff\ARP.EXE
    + 2009-05-26 20:42 . 2009-04-11 06:28 47104 c:\windows\winsxs\x86_microsoft-windows-tabletpc-journal_31bf3856ad364e35_6.0.6002.18005_none_199d015da1ba0131\NBMapTIP.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 53248 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.18005_none_31d980c8c2ca01c9\tsgqec.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 67584 c:\windows\winsxs\x86_microsoft-windows-t..rvices-registryapis_31bf3856ad364e35_6.0.6002.18005_none_a63da0de1f1d789f\regapi.dll
    + 2006-11-02 12:35 . 2006-11-02 12:35 68096 c:\windows\winsxs\x86_microsoft-windows-t..platform-input-core_31bf3856ad364e35_6.0.6002.18005_none_d2fbc584d9efb14a\TabSvc.dll
    + 2006-11-02 12:35 . 2006-11-02 12:35 19456 c:\windows\winsxs\x86_microsoft-windows-t..nputpersonalization_31bf3856ad364e35_6.0.6002.18005_none_41978c01c3760094\TabIpsps.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 69120 c:\windows\winsxs\x86_microsoft-windows-t..nputpersonalization_31bf3856ad364e35_6.0.6002.18005_none_41978c01c3760094\IpsPlugin.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 42496 c:\windows\winsxs\x86_microsoft-windows-t..nputpersonalization_31bf3856ad364e35_6.0.6002.18005_none_41978c01c3760094\IpsMigrationPlugin.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 66048 c:\windows\winsxs\x86_microsoft-windows-t..nalservices-sysprep_31bf3856ad364e35_6.0.6002.18005_none_33850f5d456366c5\tssysprep.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 63488 c:\windows\winsxs\x86_microsoft-windows-t..minalservicesclient_31bf3856ad364e35_6.0.6002.18005_none_4fc7c6a11e395b4a\tscupgrd.exe
    + 2009-05-26 20:42 . 2009-04-11 06:28 19456 c:\windows\winsxs\x86_microsoft-windows-t..mework-msctfmonitor_31bf3856ad364e35_6.0.6002.18005_none_87278fc545db0c65\MsCtfMonitor.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 85504 c:\windows\winsxs\x86_microsoft-windows-t..esframework-msctfui_31bf3856ad364e35_6.0.6002.18005_none_92f60bbcd34865d1\msctfui.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 10752 c:\windows\winsxs\x86_microsoft-windows-t..chxreadingstringime_31bf3856ad364e35_6.0.6002.18005_none_11a0c8d6ee137a2f\CHxReadingStringIME.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 31232 c:\windows\winsxs\x86_microsoft-windows-t..cesframework-msimtf_31bf3856ad364e35_6.0.6002.18005_none_d370fd68e7be1c7e\msimtf.dll
    + 2009-05-26 20:43 . 2009-04-11 06:28 84992 c:\windows\winsxs\x86_microsoft-windows-t..cesframework-msctfp_31bf3856ad364e35_6.0.6002.18005_none_ccc8d878ec130fe3\msctfp.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 84992 c:\windows\winsxs\x86_microsoft-windows-t..ces-serverlicensing_31bf3856ad364e35_6.0.6002.18005_none_f3b4efea329a398a\mstlsapi.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 91648 c:\windows\winsxs\x86_microsoft-windows-t..-platform-libraries_31bf3856ad364e35_6.0.6002.18005_none_ec5c63f1986ff65e\IPHLPAPI.DLL
    + 2008-01-21 02:25 . 2008-01-21 02:25 14848 c:\windows\winsxs\x86_microsoft-windows-systemrestore-main_31bf3856ad364e35_6.0.6002.18005_none_48cb48f3b060c975\srdelayed.exe
    + 2008-01-21 02:25 . 2008-01-21 02:25 40960 c:\windows\winsxs\x86_microsoft-windows-systemrestore-main_31bf3856ad364e35_6.0.6002.18005_none_48cb48f3b060c975\srclient.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 11776 c:\windows\winsxs\x86_microsoft-windows-sysprep-spwinsat_31bf3856ad364e35_6.0.6002.18005_none_551ffa0d7aa481b0\spwinsat.dll
    + 2009-05-26 20:43 . 2009-04-11 06:28 26112 c:\windows\winsxs\x86_microsoft-windows-syshiper_31bf3856ad364e35_6.0.6002.18005_none_77fb27ec5025e18b\syshiper.exe
    + 2009-05-26 20:42 . 2009-04-11 04:42 52992 c:\windows\winsxs\x86_microsoft-windows-streamclass_31bf3856ad364e35_6.0.6002.18005_none_60500ebd34c47ac8\stream.sys
    + 2009-05-26 20:42 . 2009-04-11 06:28 55808 c:\windows\winsxs\x86_microsoft-windows-storprop_31bf3856ad364e35_6.0.6002.18005_none_283e2d832e0b80a9\Storprop.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 28160 c:\windows\winsxs\x86_microsoft-windows-spp-main_31bf3856ad364e35_6.0.6002.18005_none_e6326fcda9fe9b59\sxproxy.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 99328 c:\windows\winsxs\x86_microsoft-windows-speechengine_31bf3856ad364e35_6.0.6002.18005_none_f0a9964297040c1c\spsrx.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 43520 c:\windows\winsxs\x86_microsoft-windows-speechcommon_31bf3856ad364e35_6.0.6002.18005_none_d7edc1a2cfccb087\SCGMigPlugin.dll
    + 2006-11-02 12:34 . 2006-11-02 12:34 16384 c:\windows\winsxs\x86_microsoft-windows-speech-userexperience_31bf3856ad364e35_6.0.6002.18005_none_1df5691748ee6b08\SpeechUXPS.DLL
    + 2009-05-26 20:42 . 2009-04-11 06:28 50688 c:\windows\winsxs\x86_microsoft-windows-snmp-winsnmp-api_31bf3856ad364e35_6.0.6002.18005_none_e238f61dbfc43dba\wsnmp32.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 47616 c:\windows\winsxs\x86_microsoft-windows-snmp-agent-service_31bf3856ad364e35_6.0.6002.18005_none_f9205a735564a418\snmp.exe
    + 2009-05-26 20:42 . 2009-04-11 06:28 64000 c:\windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18005_none_ae26210916536b06\smss.exe
    + 2009-05-26 20:42 . 2009-04-11 04:15 98816 c:\windows\winsxs\x86_microsoft-windows-smbserver-common_31bf3856ad364e35_6.0.6002.18005_none_05c1a7400d48e203\srvnet.sys
    + 2009-05-26 20:42 . 2009-04-11 06:28 83456 c:\windows\winsxs\x86_microsoft-windows-smbhelperclasses_31bf3856ad364e35_6.0.6002.18005_none_ec289e8bd3444ca6\SMBHelperClass.dll
    + 2009-05-26 20:42 . 2009-04-11 04:14 79360 c:\windows\winsxs\x86_microsoft-windows-smb20-minirdr_31bf3856ad364e35_6.0.6002.18005_none_8cc66ea786e7ac42\mrxsmb20.sys
    + 2009-05-26 20:42 . 2009-04-11 06:28 95232 c:\windows\winsxs\x86_microsoft-windows-smartcardsubsystem_31bf3856ad364e35_6.0.6002.18005_none_19e8b8b06714b3ae\SCardSvr.dll
    + 2006-11-02 08:43 . 2006-11-02 09:46 66560 c:\windows\winsxs\x86_microsoft-windows-smartcardsubsystem_31bf3856ad364e35_6.0.6002.18005_none_19e8b8b06714b3ae\SCardDlg.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 40448 c:\windows\winsxs\x86_microsoft-windows-smartcardsubsystem_31bf3856ad364e35_6.0.6002.18005_none_19e8b8b06714b3ae\certprop.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 11776 c:\windows\winsxs\x86_microsoft-windows-sidebar_31bf3856ad364e35_6.0.6002.18005_none_d0c824c923c9e622\sbunattend.exe
    + 2006-11-02 12:35 . 2006-11-02 12:35 66048 c:\windows\winsxs\x86_microsoft-windows-sidebar_31bf3856ad364e35_6.0.6002.18005_none_d0c824c923c9e622\sbdrop.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 79872 c:\windows\winsxs\x86_microsoft-windows-shmig_31bf3856ad364e35_6.0.6002.18005_none_6189f2a77440c81c\shmig.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 62976 c:\windows\winsxs\x86_microsoft-windows-setup-component_31bf3856ad364e35_6.0.6002.18005_none_3417f75aaa6413e3\windeploy.exe
    + 2008-01-21 02:24 . 2008-01-21 02:24 47616 c:\windows\winsxs\x86_microsoft-windows-setup-component_31bf3856ad364e35_6.0.6002.18005_none_3417f75aaa6413e3\wdsutil.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 94720 c:\windows\winsxs\x86_microsoft-windows-setup-component_31bf3856ad364e35_6.0.6002.18005_none_3417f75aaa6413e3\sysprep.exe
    + 2008-01-21 02:24 . 2008-01-21 02:24 54272 c:\windows\winsxs\x86_microsoft-windows-setup-component_31bf3856ad364e35_6.0.6002.18005_none_3417f75aaa6413e3\spprgrss.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 42496 c:\windows\winsxs\x86_microsoft-windows-setup-component_31bf3856ad364e35_6.0.6002.18005_none_3417f75aaa6413e3\oobeldr.exe
    + 2008-01-21 02:24 . 2008-01-21 02:24 31232 c:\windows\winsxs\x86_microsoft-windows-setup-component_31bf3856ad364e35_6.0.6002.18005_none_3417f75aaa6413e3\diagER.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 52736 c:\windows\winsxs\x86_microsoft-windows-setup-component_31bf3856ad364e35_6.0.6002.18005_none_3417f75aaa6413e3\audit.exe
    + 2009-05-26 20:42 . 2009-04-11 06:28 13312 c:\windows\winsxs\x86_microsoft-windows-servicepackcoordinator_31bf3856ad364e35_6.0.6002.18005_none_36ac9b2124b2bf26\spcmsg.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 69632 c:\windows\winsxs\x86_microsoft-windows-sendmail_31bf3856ad364e35_6.0.6002.18005_none_5cd4f36d1924f929\sendmail.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 61440 c:\windows\winsxs\x86_microsoft-windows-securitycenter-core_31bf3856ad364e35_6.0.6002.18005_none_1c2bd6beaf3aa18d\wscsvc.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 17920 c:\windows\winsxs\x86_microsoft-windows-securitycenter-core_31bf3856ad364e35_6.0.6002.18005_none_1c2bd6beaf3aa18d\wscisvif.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 33280 c:\windows\winsxs\x86_microsoft-windows-securitycenter-core_31bf3856ad364e35_6.0.6002.18005_none_1c2bd6beaf3aa18d\wscapi.dll
    + 2009-05-26 20:43 . 2009-04-11 06:28 67584 c:\windows\winsxs\x86_microsoft-windows-security-licensing-wmi_31bf3856ad364e35_6.0.6002.18005_none_50382e6ff6c7e8f5\slwmi.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 12288 c:\windows\winsxs\x86_microsoft-windows-security-licensing-wga_31bf3856ad364e35_6.0.6002.18005_none_5032e2f3f6cc83e3\slwga.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 42496 c:\windows\winsxs\x86_microsoft-windows-security-licensing-slc_31bf3856ad364e35_6.0.6002.18005_none_5062f685f6a7c614\slcinst.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 29184 c:\windows\winsxs\x86_microsoft-windows-search-profilenotify_31bf3856ad364e35_7.0.6002.18005_none_da55184c8a60e444\wsepno.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 36864 c:\windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6002.18005_none_4a53cc21fd7bbcc7\wshcon.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 32768 c:\windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6002.18005_none_4a53cc21fd7bbcc7\dispex.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 88064 c:\windows\winsxs\x86_microsoft-windows-scanprofiles_31bf3856ad364e35_6.0.6002.18005_none_4952ad655043b399\wiascanprofiles.dll
    + 2008-01-21 02:23 . 2008-01-21 02:23 98816 c:\windows\winsxs\x86_microsoft-windows-safedocs-main_31bf3856ad364e35_6.0.6002.18005_none_26f5355863ea5f18\sdshext.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 60928 c:\windows\winsxs\x86_microsoft-windows-s..ty-licensing-slc-ux_31bf3856ad364e35_6.0.6002.18005_none_8c636822b2598b6a\SLUINotify.dll
    + 2009-05-26 20:42 . 2009-02-18 18:39 92918 c:\windows\winsxs\x86_microsoft-windows-s..ity-licensing-tools_31bf3856ad364e35_6.0.6002.18005_none_c7357f7a65060ad7\slmgr.vbs
    + 2009-05-26 20:42 . 2009-04-11 06:28 90112 c:\windows\winsxs\x86_microsoft-windows-s..ing-shell-extension_31bf3856ad364e35_6.0.6002.18005_none_0c6d503021655122\wshext.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 79872 c:\windows\winsxs\x86_microsoft-windows-s..entication-usermode_31bf3856ad364e35_6.0.6002.18005_none_3c0d3c3f7176376a\authz.dll
    + 2009-05-26 20:42 . 2009-04-11 04:46 15872 c:\windows\winsxs\x86_microsoft-windows-rndis-usb-microport_31bf3856ad364e35_6.0.6002.18005_none_c6d83e044fcd06f5\usb8023.sys
    + 2009-05-26 20:42 . 2009-04-11 04:46 33280 c:\windows\winsxs\x86_microsoft-windows-rndis-miniport_31bf3856ad364e35_6.0.6002.18005_none_e31a28b989072805\RNDISMP.sys
    + 2006-11-02 08:57 . 2006-11-02 09:46 14848 c:\windows\winsxs\x86_microsoft-windows-rmcast_31bf3856ad364e35_6.0.6002.18005_none_5669453d850ccabc\wshrm.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 69632 c:\windows\winsxs\x86_microsoft-windows-rastapi_31bf3856ad364e35_6.0.6002.18005_none_10cfa36576fecc90\rastapi.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 36352 c:\windows\winsxs\x86_microsoft-windows-rasrtutils_31bf3856ad364e35_6.0.6002.18005_none_0f010d1ce79c5ae9\rtutils.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 29696 c:\windows\winsxs\x86_microsoft-windows-rasifmon_31bf3856ad364e35_6.0.6002.18005_none_ccbb42deea504b23\ifmon.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 47616 c:\windows\winsxs\x86_microsoft-windows-rasconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_610bb87d5da7583b\cmutil.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 14336 c:\windows\winsxs\x86_microsoft-windows-rasconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_610bb87d5da7583b\cmstplua.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 84992 c:\windows\winsxs\x86_microsoft-windows-rasconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_610bb87d5da7583b\cmstp.exe
    + 2008-01-21 02:24 . 2008-01-21 02:24 26112 c:\windows\winsxs\x86_microsoft-windows-rasconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_610bb87d5da7583b\cmpbk32.dll
    + 2009-05-26 20:42 . 2009-04-11 06:27 49152 c:\windows\winsxs\x86_microsoft-windows-rasconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_610bb87d5da7583b\cmmon32.exe
    + 2008-01-21 02:24 . 2008-01-21 02:24 56320 c:\windows\winsxs\x86_microsoft-windows-rasconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_610bb87d5da7583b\cmmigr.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 32768 c:\windows\winsxs\x86_microsoft-windows-rasconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_610bb87d5da7583b\cmlua.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 72704 c:\windows\winsxs\x86_microsoft-windows-rasconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_610bb87d5da7583b\cmdl32.exe
    + 2008-01-21 02:24 . 2008-01-21 02:24 31232 c:\windows\winsxs\x86_microsoft-windows-rasconnectionmanager_31bf3856ad364e35_6.0.6002.18005_none_610bb87d5da7583b\cmcfg32.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 39424 c:\windows\winsxs\x86_microsoft-windows-rasclienttools_31bf3856ad364e35_6.0.6002.18005_none_713248d4a5d30dec\rasphone.exe
    + 2009-05-26 20:42 . 2009-04-11 06:27 16896 c:\windows\winsxs\x86_microsoft-windows-rasclienttools_31bf3856ad364e35_6.0.6002.18005_none_713248d4a5d30dec\rasdial.exe
    + 2008-01-21 02:24 . 2008-01-21 02:24 62464 c:\windows\winsxs\x86_microsoft-windows-rasbase_31bf3856ad364e35_6.0.6002.18005_none_0fcbe0ed77911065\wanarp.sys
    + 2006-11-02 08:58 . 2006-11-02 09:46 22016 c:\windows\winsxs\x86_microsoft-windows-rasbase_31bf3856ad364e35_6.0.6002.18005_none_0fcbe0ed77911065\rasser.dll
    + 2006-11-02 08:58 . 2006-11-02 09:46 32768 c:\windows\winsxs\x86_microsoft-windows-rasbase_31bf3856ad364e35_6.0.6002.18005_none_0fcbe0ed77911065\rasmxs.dll
    + 2009-05-26 20:42 . 2009-04-11 06:28 52736 c:\windows\winsxs\x86_microsoft-windows-rasbase_31bf3856ad364e35_6.0.6002.18005_none_0fcbe0ed77911065\rasdiag.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 81408 c:\windows\winsxs\x86_microsoft-windows-rasbase_31bf3856ad364e35_6.0.6002.18005_none_0fcbe0ed77911065\rascfg.dll
    + 2008-01-21 02:24 . 2008-01-21 02:24 49664 c:\windows\winsxs\x86_microsoft-windows-rasbase_31bf3856ad364e35_6.0.6002.18005_none_0fcbe0ed77911065\ndproxy.sys
    + 2008-01-21 02:24 . 2008-01-21 02:24 20992 c:\windows\winsxs\x86_microsoft-windows-rasbase_31bf3856ad364e35_6.0.6002.18005_none_0fcbe0ed77911065\ndistapi.sys
    + 2009-05-26 20:42 . 2009-04-11 04:46 69120 c:\windows\winsxs\x86_microsoft-windows-rasbase-rassstp_31bf3856ad364e35_6.0.6002.18005_none_9bbd28fee50e4840\rassstp.sys
    + 2009-05-26 20:42 . 2009-04-11 04:46 41472 c:\windows\winsxs\x86_microsoft-windows-rasbase-raspppoe_31bf3856ad364e35_6.0.6002.18005_none_581efd2c97b9a460\raspppoe.sys
    + 2009-05-26 20:43 . 2009-04-11 06:27 61952 c:\windows\winsxs\x86_microsoft-windows-r..-commandline-editor_31bf3856ad364e35_6.0.6002.18005_none_337fad0927d14431\reg.exe
    + 2006-11-02 08:57 . 2006-11-02 09:46 13824 c:\windows\winsxs\x86_microsoft-windows-qos_31bf3856ad364e35_6.0.6002.18005_none_b036e19c54c66d2f\wshqos.dll
    + 2006-11-02 08:57 . 2006-11-02 09:46 33280 c:\windows\winsxs\x86_microsoft-windows-qos_31b
    a c 295 8 Sécurité
    29 Juin 2009 21:18:26

  • Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
  • Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
  • Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
  • Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
  • Sélectionne Exécuter un examen rapide.
  • Clique sur Rechercher. L'analyse démarre.
  • A la fin de l'analyse, un message s'affiche :
    Citation :
    L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

  • Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
  • Ferme tes navigateurs.
  • Si des malwares ont été détectés, clique sur Afficher les résultats.
  • Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
  • MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
    29 Juin 2009 21:33:44

    VOICI LE DERNIER RAPPORT

    Malwarebytes' Anti-Malware 1.38
    Version de la base de données: 2352
    Windows 6.0.6002 Service Pack 2

    29/06/2009 21:32:39
    mbam-log-2009-06-29 (21-32-39).txt

    Type de recherche: Examen rapide
    Eléments examinés: 79860
    Temps écoulé: 2 minute(s), 55 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 0

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    (Aucun élément nuisible détecté)
    a c 295 8 Sécurité
    29 Juin 2009 21:53:11

  • Désinstalle Java 6 Update 7 et Java 6 Update 13.

  • Mets à jour Java.

  • Mets à jour Adobe Reader.

  • Refais un scan RSIT et poste le rapport log.
    29 Juin 2009 22:27:51

    ALORS VOICI LES 2 AUTRES RAPPORTS


    Logfile of random's system information tool 1.06 (written by random/random)
    Run by Cyril at 2009-06-29 22:26:46
    Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
    System drive C: has 161 GB (55%) free of 292 GB
    Total RAM: 3581 MB (62% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 22:26:52, on 29/06/2009
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Dell\DellDock\DellDock.exe
    C:\Program Files\DellTPad\Apoint.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Program Files\Protector Suite QL\psqltray.exe
    C:\Program Files\Dell Support Center\bin\sprtcmd.exe
    C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\AeroSnap\AeroSnap.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Program Files\Dell\QuickSet\quickset.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\DellTPad\ApMsgFwd.exe
    C:\Program Files\DellTPad\Apntex.exe
    C:\Program Files\DellTPad\HidFind.exe
    C:\Windows\system32\conime.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Users\Cyril\Downloads\RSIT.exe
    C:\Program Files\trend micro\Cyril.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://bing.fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = www-cache.ujf-grenoble.fr:3128
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.ujf-grenoble.fr;*.grenet.fr
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: (no name) - {A5616AF7-5EAD-39DF-827D-E22A15234D04} - (no file)
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
    O4 - HKLM\..\Run: [PSQLLauncher] "C:\Program Files\Protector Suite QL\launcher.exe" /startup
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
    O4 - HKCU\..\Run: [AeroSnap] C:\Program Files\AeroSnap\AeroSnap.exe
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe
    O4 - Global Startup: BTTray.lnk = ?
    O4 - Global Startup: QuickSet.lnk = C:\Program Files\Dell\QuickSet\quickset.exe
    O4 - Global Startup: VPN Client.lnk = ?
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O13 - Gopher Prefix:
    O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.euro.dell.com/systemprofiler/SysPro.CAB
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
    O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\aestsrv.exe
    O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
    O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe
    O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    O23 - Service: Service Google Update (gupdate1c9b78147aef8fa) (gupdate1c9b78147aef8fa) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
    O23 - Service: O&O Defrag - O&O Software GmbH - C:\Windows\system32\oodag.exe
    O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
    O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\STacSV.exe
    O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
    O23 - Service: Stardock WindowBlinds (WindowBlinds) - Stardock Corporation - C:\Program Files\Stardock\MyColors\VistaSrv.exe

    --
    End of file - 8301 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\GoogleUpdateTaskMachine.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5616AF7-5EAD-39DF-827D-E22A15234D04}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-06-29 41368]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Apoint"=C:\Program Files\DellTPad\Apoint.exe [2007-10-25 167936]
    "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2007-07-24 174616]
    "dscactivate"=C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [2008-03-11 16384]
    "PSQLLauncher"=C:\Program Files\Protector Suite QL\launcher.exe [2007-03-28 49168]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
    "DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-14 206064]
    "SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [2008-02-15 405504]
    "NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-05-27 13781536]
    "NVHotkey"=C:\Windows\system32\nvHotkey.dll [2009-05-27 92704]
    "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-06-29 148888]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent []

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
    "DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-14 206064]
    "AeroSnap"=C:\Program Files\AeroSnap\AeroSnap.exe [2008-12-06 886784]
    "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DELL Webcam Manager]
    C:\Program Files\Dell\Dell Webcam Manager\DellWMgr.exe [2007-07-27 118784]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-12-10 49152]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate]
    C:\Program Files\Samsung\Samsung PC Studio 3\\Update\Copyer.exe [2009-04-07 270336]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEM02Mon.exe]
    C:\Windows\OEM02Mon.exe [2007-05-10 36864]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
    C:\Windows\system32\oodtray.exe [2009-04-08 2553088]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService]
    C:\Program Files\Dell\MediaDirect\PCMService.exe [2008-05-20 184320]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
    C:\Program Files\uTorrent\uTorrent.exe [2009-06-17 287536]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
    C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2007-01-02 210520]

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    QuickSet.lnk - C:\Program Files\Dell\QuickSet\quickset.exe
    VPN Client.lnk - C:\Windows\Installer\{F3C1DE9E-5E16-4BA9-B854-7B53A45E3579}\Icon3E5562ED7.ico

    C:\Users\Cyril\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
    Dell Dock.lnk - C:\Program Files\Dell\DellDock\DellDock.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
    C:\Windows\system32\psqlpwd.dll [2007-03-28 90112]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
    "notification packages"=scecli
    psqlpwd

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "EnableUIADesktopToggle"=0
    "DisableCAD"=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDrives"=0

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDrives"=
    "BindDirectlyToPropertySetStorage"=

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    ======File associations======

    .js - edit - C:\Windows\System32\Notepad.exe %1
    .js - open - C:\Windows\System32\WScript.exe "%1" %*

    ======List of files/folders created in the last 1 months======

    2009-06-29 22:23:20 ----A---- C:\Windows\system32\javaws.exe
    2009-06-29 22:23:20 ----A---- C:\Windows\system32\javaw.exe
    2009-06-29 22:23:20 ----A---- C:\Windows\system32\java.exe
    2009-06-29 22:23:08 ----D---- C:\Program Files\Java
    2009-06-29 21:21:00 ----D---- C:\Users\Cyril\AppData\Roaming\Malwarebytes
    2009-06-29 21:20:55 ----D---- C:\ProgramData\Malwarebytes
    2009-06-29 21:07:27 ----D---- C:\Windows\temp
    2009-06-29 21:07:25 ----SHD---- C:\$RECYCLE.BIN
    2009-06-29 21:07:24 ----A---- C:\ComboFix.txt
    2009-06-29 21:01:38 ----SD---- C:\idn
    2009-06-29 20:53:19 ----A---- C:\Windows\PEV.exe
    2009-06-29 20:33:40 ----D---- C:\Program Files\trend micro
    2009-06-29 16:39:22 ----D---- C:\Windows\BDOSCAN8
    2009-06-29 11:17:29 ----D---- C:\Users\Cyril\AppData\Roaming\Sony Corporation
    2009-06-29 11:13:13 ----A---- C:\Windows\system32\xinput1_3.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\xactengine2_7.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\xactengine2_6.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\xactengine2_5.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\xactengine2_4.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\x3daudio1_1.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\d3dx9_33.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\d3dx9_32.dll
    2009-06-29 11:13:12 ----A---- C:\Windows\system32\d3dx9_31.dll
    2009-06-29 11:13:11 ----A---- C:\Windows\system32\xinput1_2.dll
    2009-06-29 11:13:11 ----A---- C:\Windows\system32\xinput1_1.dll
    2009-06-29 11:13:11 ----A---- C:\Windows\system32\xactengine2_3.dll
    2009-06-29 11:13:11 ----A---- C:\Windows\system32\xactengine2_2.dll
    2009-06-29 11:13:11 ----A---- C:\Windows\system32\xactengine2_1.dll
    2009-06-29 11:13:09 ----A---- C:\Windows\system32\xactengine2_0.dll
    2009-06-29 11:13:09 ----A---- C:\Windows\system32\x3daudio1_0.dll
    2009-06-29 11:13:09 ----A---- C:\Windows\system32\d3dx9_29.dll
    2009-06-29 11:13:08 ----A---- C:\Windows\system32\d3dx9_28.dll
    2009-06-29 11:13:08 ----A---- C:\Windows\system32\d3dx9_27.dll
    2009-06-29 11:13:08 ----A---- C:\Windows\system32\d3dx9_26.dll
    2009-06-29 11:13:08 ----A---- C:\Windows\system32\d3dx9_25.dll
    2009-06-29 11:13:08 ----A---- C:\Windows\system32\d3dx9_24.dll
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\vxblock.dll
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\PxInsI64.exe
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\PxInsA64.exe
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\pxhpinst.exe
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\PxCpyI64.exe
    2009-06-29 11:11:02 ----A---- C:\Windows\system32\PxCpyA64.exe
    2009-06-29 11:10:55 ----D---- C:\Program Files\Sony
    2009-06-29 11:10:15 ----D---- C:\ProgramData\Sony Corporation
    2009-06-29 10:25:30 ----D---- C:\Program Files\1AVCenter
    2009-06-29 10:25:30 ----A---- C:\Windows\system32\mpg4c32.dll
    2009-06-29 10:25:20 ----AD---- C:\ProgramData\TEMP
    2009-06-29 10:13:12 ----D---- C:\ProgramData\AVS4YOU
    2009-06-29 10:13:09 ----D---- C:\Users\Cyril\AppData\Roaming\AVS4YOU
    2009-06-29 10:12:54 ----D---- C:\Program Files\Common Files\AVSMedia
    2009-06-29 10:12:54 ----D---- C:\Program Files\AVS4YOU
    2009-06-27 16:51:02 ----D---- C:\Program Files\UltraVNC
    2009-06-24 21:21:00 ----D---- C:\Users\Cyril\AppData\Roaming\Dream Aquarium
    2009-06-21 14:45:55 ----D---- C:\Program Files\Avira
    2009-06-21 14:13:39 ----D---- C:\ProgramData\Avira
    2009-06-21 10:11:58 ----D---- C:\Windows\system32\AGEIA
    2009-06-21 10:11:58 ----D---- C:\Program Files\AGEIA Technologies
    2009-06-21 10:11:48 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
    2009-06-21 10:10:21 ----D---- C:\NVIDIA
    2009-06-21 09:43:29 ----D---- C:\Program Files\SystemRequirementsLab
    2009-06-21 09:43:24 ----D---- C:\Users\Cyril\AppData\Roaming\SystemRequirementsLab
    2009-06-18 14:32:32 ----D---- C:\Program Files\Hewlett-Packard
    2009-06-18 14:31:48 ----D---- C:\ProgramData\Hewlett-Packard
    2009-06-18 14:29:54 ----A---- C:\Windows\system32\hpz3l5ha.dll
    2009-06-18 14:29:12 ----A---- C:\Windows\system32\hpzids01.dll
    2009-06-18 14:29:12 ----A---- C:\Windows\system32\hppldcoi.dll
    2009-06-18 14:29:11 ----A---- C:\Windows\system32\hpowiax5.dll
    2009-06-18 14:29:11 ----A---- C:\Windows\system32\hpovst12.dll
    2009-06-18 14:29:11 ----A---- C:\Windows\system32\hpotiop5.dll
    2009-06-17 13:27:02 ----D---- C:\Program Files\FileZilla FTP Client
    2009-06-16 16:12:40 ----D---- C:\Windows\pss
    2009-06-16 15:55:46 ----D---- C:\ProgramData\WEBREG
    2009-06-16 14:47:53 ----D---- C:\Program Files\Common Files\Hewlett-Packard
    2009-06-16 14:47:42 ----D---- C:\Program Files\Common Files\HP
    2009-06-16 14:46:33 ----D---- C:\Program Files\HP
    2009-06-16 14:46:32 ----HD---- C:\Config.Msi
    2009-06-16 14:45:17 ----D---- C:\ProgramData\HP
    2009-06-16 14:45:15 ----A---- C:\Windows\system32\SET8A3F.tmp
    2009-06-16 14:45:15 ----A---- C:\Windows\system32\SET8962.tmp
    2009-06-16 14:45:15 ----A---- C:\Windows\system32\hpovst01.dll
    2009-06-16 14:39:35 ----D---- C:\Users\Cyril\AppData\Roaming\HP
    2009-06-13 10:49:43 ----D---- C:\Users\Cyril\AppData\Roaming\Votre Budget 2008
    2009-06-13 10:49:31 ----A---- C:\Windows\system32\msxml3a.dll
    2009-06-13 10:49:21 ----D---- C:\Program Files\Micro Application
    2009-06-10 08:10:35 ----A---- C:\Windows\system32\localspl.dll
    2009-06-10 08:10:33 ----A---- C:\Windows\system32\rpcrt4.dll
    2009-06-10 08:10:33 ----A---- C:\Windows\system32\mshtml.dll
    2009-06-10 08:10:32 ----A---- C:\Windows\system32\iertutil.dll
    2009-06-10 08:10:32 ----A---- C:\Windows\system32\ieframe.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\wininet.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\urlmon.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\jsproxy.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\ieui.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\iesetup.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\iernonce.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\iedkcs32.dll
    2009-06-10 08:10:31 ----A---- C:\Windows\system32\ie4uinit.exe
    2009-06-09 16:23:10 ----A---- C:\Windows\iun6002.exe
    2009-06-08 14:14:14 ----D---- C:\Windows\system32\oodag
    2009-06-08 11:38:15 ----D---- C:\Program Files\OO Software
    2009-06-02 20:15:05 ----D---- C:\Program Files\Aspecto Software
    2009-05-31 19:01:41 ----D---- C:\Windows\system32\Dell

    ======List of files/folders modified in the last 1 months======

    2009-06-29 22:26:29 ----SHD---- C:\Windows\Installer
    2009-06-29 22:25:57 ----D---- C:\ProgramData\Adobe
    2009-06-29 22:25:50 ----D---- C:\Windows\System32
    2009-06-29 22:23:30 ----SHD---- C:\System Volume Information
    2009-06-29 22:23:12 ----A---- C:\Windows\system32\deploytk.dll
    2009-06-29 22:23:08 ----RD---- C:\Program Files
    2009-06-29 22:20:02 ----D---- C:\Program Files\Common Files
    2009-06-29 21:34:25 ----D---- C:\Windows\system32\drivers
    2009-06-29 21:20:55 ----HD---- C:\ProgramData
    2009-06-29 21:19:20 ----D---- C:\Windows\inf
    2009-06-29 21:19:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2009-06-29 21:12:39 ----HD---- C:\Windows\system32\GroupPolicy
    2009-06-29 21:10:20 ----D---- C:\Program Files\Mozilla Firefox
    2009-06-29 21:07:28 ----D---- C:\Windows\system32\fr-FR
    2009-06-29 21:07:28 ----D---- C:\Qoobox
    2009-06-29 21:07:27 ----D---- C:\Windows
    2009-06-29 21:06:06 ----A---- C:\Windows\system.ini
    2009-06-29 21:05:32 ----D---- C:\Windows\Tasks
    2009-06-29 21:04:15 ----D---- C:\Windows\AppPatch
    2009-06-29 20:57:10 ----D---- C:\Windows\Prefetch
    2009-06-29 18:11:01 ----D---- C:\ProgramData\Roxio
    2009-06-29 18:08:04 ----D---- C:\Users\Cyril\AppData\Roaming\FileZilla
    2009-06-29 16:39:25 ----SD---- C:\Windows\Downloaded Program Files
    2009-06-29 16:20:25 ----D---- C:\Users\Cyril\AppData\Roaming\dvdcss
    2009-06-29 11:28:28 ----RSD---- C:\Windows\assembly
    2009-06-29 11:14:38 ----D---- C:\Windows\system32\Tasks
    2009-06-29 11:13:13 ----HD---- C:\Program Files\InstallShield Installation Information
    2009-06-29 11:13:09 ----D---- C:\Windows\Microsoft.NET
    2009-06-29 10:27:03 ----A---- C:\Windows\win.ini
    2009-06-28 08:46:45 ----D---- C:\Users\Cyril\AppData\Roaming\uTorrent
    2009-06-26 15:53:37 ----D---- C:\Users\Cyril\AppData\Roaming\gtk-2.0
    2009-06-26 09:53:19 ----D---- C:\Windows\winsxs
    2009-06-26 09:53:19 ----D---- C:\Program Files\Internet Explorer
    2009-06-26 09:52:58 ----D---- C:\Windows\system32\catroot2
    2009-06-24 14:41:22 ----D---- C:\Users\Cyril\AppData\Roaming\Spotify
    2009-06-24 09:27:34 ----D---- C:\Windows\system32\catroot
    2009-06-21 10:34:28 ----D---- C:\ProgramData\NVIDIA
    2009-06-18 14:32:33 ----D---- C:\Windows\twain_32
    2009-06-16 14:48:47 ----A---- C:\Windows\WININIT.INI
    2009-06-15 17:01:42 ----D---- C:\Windows\system32\Macromed
    2009-06-14 16:05:53 ----SD---- C:\Users\Cyril\AppData\Roaming\Microsoft
    2009-06-13 10:49:32 ----RSD---- C:\Windows\Fonts
    2009-06-11 11:41:07 ----D---- C:\Windows\Debug
    2009-06-10 19:25:24 ----D---- C:\Windows\system32\migration
    2009-06-10 19:25:24 ----D---- C:\Windows\ehome
    2009-06-10 19:24:23 ----D---- C:\ProgramData\Microsoft Help
    2009-06-01 18:51:12 ----A---- C:\Windows\system32\mrt.exe
    2009-05-31 19:01:41 ----D---- C:\Program Files\Dell
    2009-05-31 18:56:48 ----SD---- C:\ProgramData\Microsoft

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [2009-02-13 11608]
    R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
    R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2008-07-21 121872]
    R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-02-13 28376]
    R1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2006-07-24 5632]
    R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
    R2 CVPNDRVA;Cisco Systems Inc. IPSec Driver; \??\C:\Windows\system32\Drivers\CVPNDRVA.sys [2009-01-13 306811]
    R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
    R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-12-26 164400]
    R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
    R3 DNE;Deterministic Network Enhancer Miniport; C:\Windows\system32\DRIVERS\dne2000.sys [2008-08-28 131856]
    R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2009-04-06 3668480]
    R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-05-27 9850240]
    R3 OEM02Dev;Creative Camera OEM002 Driver; C:\Windows\system32\DRIVERS\OEM02Dev.sys [2007-10-11 235648]
    R3 OEM02Vfx;Creative Camera OEM002 Video VFX Driver; C:\Windows\system32\DRIVERS\OEM02Vfx.sys [2007-03-05 7424]
    R3 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2005-11-16 28928]
    R3 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2005-12-22 51840]
    R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
    R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\stwrt.sys [2008-02-15 330752]
    R3 TcUsb;TC USB Kernel Driver; C:\Windows\System32\Drivers\tcusb.sys [2007-03-28 46992]
    R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
    R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2007-12-06 298496]
    S3 61883;Pilote d'unité 61883; C:\Windows\system32\DRIVERS\61883.sys [2008-01-21 45696]
    S3 aa5wca4s;aa5wca4s; C:\Windows\system32\drivers\aa5wca4s.sys []
    S3 Avc;Périphérique AVC; C:\Windows\system32\DRIVERS\avc.sys [2008-01-21 40448]
    S3 BthEnum;Service d'énumérateur Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
    S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
    S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-04-11 507904]
    S3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-04-11 29696]
    S3 btwaudio;Périphérique audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys [2009-04-15 78128]
    S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2009-04-15 80176]
    S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-04-15 16560]
    S3 catchme;catchme; \??\C:\Users\Cyril\AppData\Local\Temp\catchme.sys []
    S3 CVirtA;Cisco Systems VPN Adapter; C:\Windows\system32\DRIVERS\CVirtA.sys [2007-01-18 5275]
    S3 DFUBTUSB;WIDCOMM USB Bluetooth Driver in DFU State; C:\Windows\System32\Drivers\frmupgr.sys []
    S3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-21 131584]
    S3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-21 16384]
    S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-21 36864]
    S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
    S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
    S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2008-01-21 52608]
    S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
    S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
    S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
    S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
    S3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-09-26 2251776]
    S3 ovt530;Webcam Classic; C:\Windows\System32\Drivers\ov530vid.sys [2005-03-15 161792]
    S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
    S3 usbaudio;Pilote USB audio (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
    S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
    S3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
    S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
    S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
    S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\aestsrv.exe [2007-09-20 73728]
    R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-04-01 108289]
    R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]
    R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 CVPND;Cisco Systems, Inc. VPN Service; C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe [2009-01-13 1528608]
    R2 DockLoginService;Dock Login Service; C:\Program Files\Dell\DellDock\DockLogin.exe [2008-12-18 155648]
    R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-07-25 647168]
    R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2007-07-24 354840]
    R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-05-27 211488]
    R2 O&O Defrag;O&O Defrag; C:\Windows\system32\oodag.exe [2009-04-08 1377536]
    R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]
    R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-07-25 327680]
    R2 sprtsvc_dellsupportcenter;SupportSoft Sprocket Service (dellsupportcenter); C:\Program Files\Dell Support Center\bin\sprtsvc.exe [2008-08-14 201968]
    R2 STacSV;SigmaTel Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_c09c50a2\STacSV.exe [2008-02-15 102400]
    R2 WindowBlinds;Stardock WindowBlinds; C:\Program Files\Stardock\MyColors\VistaSrv.exe [2008-12-15 230704]
    R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-21 21504]
    S2 gupdate1c9b78147aef8fa;Service Google Update (gupdate1c9b78147aef8fa); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-07 133104]
    S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe []
    S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
    S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
    S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]

    -----------------EOF-----------------


    info.txt logfile of random's system information tool 1.06 2009-04-01 17:59:48

    ======Uninstall list======

    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1A5BA3E-9ABF-4037-820B-6151022B8ACB}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F6366726-BA44-4D6A-8ECE-476E2E616AD1}\setup.exe" -l0x40c
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
    2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
    7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe"
    Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Reader 9.1-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A91000000001}
    adsl TV-->C:\Program Files\adslTV\Uninstal.exe
    Advanced Audio FX Engine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88564CEF-20A5-4EF2-A05F-309F2EBA9B06}\setup.exe" -l0x40c /remove
    Advanced Video FX Engine-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D5BA7C09-E523-478C-9C37-A1D86C76383E}\setup.exe" -l0x40c /remove
    AeroSnap 0.61-->"C:\Program Files\AeroSnap\unins000.exe"
    Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    Auslogics BoostSpeed-->"C:\Program Files\Auslogics\Auslogics BoostSpeed\unins000.exe"
    AusLogics Disk Defrag-->"C:\Program Files\Auslogics\AusLogics Disk Defrag\unins000.exe"
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
    Cisco Systems VPN Client 5.0.04.0300-->MsiExec.exe /X{51FB15F4-AD27-43BC-AD4B-DD0354FB6BBD}
    Defraggler (remove only)-->"C:\Program Files\Defraggler\uninst.exe"
    Dell Dock-->"C:\ProgramData\{5C66460E-8CA0-49BD-B660-B4925E7AFA18}\delldock.exe" REMOVE=TRUE MODIFY=FALSE
    Dell Dock-->C:\ProgramData\{5C66460E-8CA0-49BD-B660-B4925E7AFA18}\delldock.exe
    Dell Resource CD-->MsiExec.exe /X{42929F0F-CE14-47AF-9FC7-FF297A603021}
    Dell Support Center (Support Software)-->MsiExec.exe /X{E3BFEE55-39E2-4BE0-B966-89FE583822C1}
    Dell Touchpad-->C:\Program Files\DellTPad\Uninstap.exe ADDREMOVE
    Dell Webcam Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A1A5BA3E-9ABF-4037-820B-6151022B8ACB}\setup.exe" -l0x40c /remove
    Dell Webcam Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F6366726-BA44-4D6A-8ECE-476E2E616AD1}\setup.exe" -l0x40c /remove
    eMule-->"C:\Program Files\eMule\Uninstall.exe"
    FastStone Image Viewer 3.2-->C:\Program Files\FastStone Image Viewer\uninst.exe
    filehippo.com Update Checker-->"C:\Program Files\filehippo.com\uninstall.exe"
    FileZilla Client 3.2.3.1-->C:\Program Files\FileZilla FTP Client\uninstall.exe
    Fingerprint Reader Suite 5.6-->MsiExec.exe /I{A2289997-10A3-48F2-AA03-99180D761661}
    Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
    Google Earth-->MsiExec.exe /X{548EAC70-EE00-11DD-908C-005056806466}
    HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
    Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
    Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
    Intel® Matrix Storage Manager-->C:\Windows\system32\imsmudlg.exe -uninstall
    Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
    Kaspersky Internet Security 2009-->MsiExec.exe /I{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}
    Kaspersky Internet Security 2009-->MsiExec.exe /I{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}
    K-Lite Mega Codec Pack 4.6.2-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
    Laptop Integrated Webcam Driver (1.04.01.1011) -->C:\Windows\CtDrvIns.exe -uninstall -script OEM002.uns -plugin OEM02Pin.dll -pluginres OEM02Pin.crl -nodisconprompt -langid 0x040C
    Live! Cam Avatar Creator-->C:\Program Files\InstallShield Installation Information\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}\setup.exe -runfromtemp -l0x040c -removeonly /remove
    Live! Cam Avatar-->C:\Program Files\InstallShield Installation Information\{1D5E29AD-39A9-4D0A-A8B6-46A6FCD8C995}\setup.exe -runfromtemp -l0x040c -removeonly /remove
    Logiciel Intel(R) PROSet/Wireless-->C:\Windows\Installer\iProInst.exe
    Marvell Miniport Driver-->MsiExec.exe /X{C950420B-4182-49EA-850A-A6A2ABF06C6B}
    mCore-->MsiExec.exe /I{F5D7FAB5-A1FD-4DD3-983E-4155B09D7102}
    mDriver-->MsiExec.exe /I{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}
    MediaDirect-->C:\Program Files\InstallShield Installation Information\{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}\Setup.exe -runfromtemp -l0x040c -cluninstall
    Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
    mHelp-->MsiExec.exe /I{8C6BB412-D3A8-4AAE-A01B-35B681789D68}
    Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
    Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
    Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
    Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
    Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
    Microsoft Office Language Pack 2007 Service Pack 1 (SP1)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
    Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
    Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
    Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
    Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
    Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
    Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
    Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
    Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
    Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
    Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
    Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
    Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
    Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
    Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
    Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
    Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
    mMHouse-->MsiExec.exe /I{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}
    Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
    Mozilla Firefox (3.0.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    mPfMgr-->MsiExec.exe /I{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}
    MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    mWMI-->MsiExec.exe /I{63DB9CCD-2B56-4217-9A3D-507AC78320CA}
    neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
    NVIDIA Drivers-->C:\Windows\system32\NVUNINST.EXE UninstallGUI
    Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
    Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
    OutlookAddinSetup-->MsiExec.exe /I{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}
    Peggle Deluxe 1.0-->C:\Program Files\PopCap Games\Peggle Deluxe\PopUninstall.exe "C:\Program Files\PopCap Games\Peggle Deluxe\Install.log"
    POKATreader-->"C:\Program Files\POKAT\unins000.exe"
    QuickSet-->MsiExec.exe /I{4B6AD248-D3BF-426A-8D64-847288154F13}
    RCT3 Soaked-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EA926717-CE5A-4CB4-AB21-9E6E9565A458}\Setup.exe" -l0x40c
    RICOH R5C83x/84x Flash Media Controller Driver Ver.3.54.06-->"C:\Program Files\InstallShield Installation Information\{59F6A514-9813-47A3-948C-8A155460CC2A}\setup.exe" -runfromtemp -l0x040c anything -removeonly
    RollerCoaster Tycoon® 3-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\Setup.exe" -l0x40c
    Roxio Creator Audio-->MsiExec.exe /I{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
    Roxio Creator Copy-->MsiExec.exe /I{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
    Roxio Creator Data-->MsiExec.exe /I{08E81ABD-79F7-49C2-881F-FD6CB0975693}
    Roxio Creator DE-->C:\ProgramData\Uninstall\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}\setup.exe /x {09760D42-E223-42AD-8C3E-55B47D0DDAC3}
    Roxio Creator DE-->MsiExec.exe /I{ED439A64-F018-4DD4-8BA5-328D85AB09AB}
    Roxio Creator Tools-->MsiExec.exe /I{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}
    Roxio Express Labeler 3-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
    Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
    SAMSUNG Mobile Modem Driver Set-->C:\Windows\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
    Samsung Mobile phone USB driver Software-->C:\Windows\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
    SAMSUNG Mobile USB Modem 1.0 Software-->C:\Windows\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
    SAMSUNG Mobile USB Modem Software-->C:\Windows\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
    Samsung PC Studio 3 USB Driver Installer-->"C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -runfromtemp -l0x040c -removeonly
    Samsung PC Studio 3-->"C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -runfromtemp -l0x040c -removeonly
    Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
    Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
    Security Update for 2007 Microsoft Office System (KB958439)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {6491B8AA-D11C-4648-A461-6234B31EB7E2}
    Security Update for Microsoft Office Excel 2007 (KB958437)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {648FC016-2D6B-4A16-8D87-404533642F4B}
    Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
    Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
    Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
    Security Update for Microsoft Office system 2007 (KB956828)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {885E081B-72BD-4E76-8E98-30B4BE468FAC}
    Security Update for Microsoft Office Word 2007 (KB956358)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4551666D-0FD6-4C69-8A81-1C6F2E64517C}
    SigmaTel Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x40c -remove -removeonly
    Update for Microsoft Office Excel 2007 Help (KB957242)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {49E314EE-81FA-4007-8F1A-8D39BDBB4498}
    Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
    Update for Microsoft Office Outlook 2007 Help (KB957246)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {80E46078-C1C5-4AE8-8744-3EAFC812E118}
    Update for Office 2007 (KB946691)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
    Update for Outlook 2007 Junk Email Filter (kb962871)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {297857BF-4011-449B-BD74-DB64D182821C}
    VLC media player 0.9.8a-->C:\Program Files\adslTV\uninstall.exe
    WIDCOMM Bluetooth Software 6.0.1.3100-->MsiExec.exe /X{A13E07E1-A423-44FB-9DEE-B24C75C1BAF2}
    Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
    Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
    Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
    Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
    Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
    ZNsoft Free 2007-->"C:\Program Files\ZNsoft Corporation\ZNsoft Free\unins000.exe"
    ZNsoft Optimizer Xp-->"C:\Program Files\ZNsoft Corporation\ZNsoft Optimizer Xp\unins000.exe"

    ======Security center information======

    AV: Kaspersky Internet Security
    FW: Kaspersky Internet Security
    AS: Windows Defender
    AS: Kaspersky Internet Security

    ======System event log======

    Computer Name: PC-de-cyril
    Event Code: 10002
    Message: Le module d’extensibilité WLAN s’est arrêté.

    Chemin d’accès du module : C:\Windows\System32\IWMSSvc.dll

    Record Number: 44504
    Source Name: Microsoft-Windows-WLAN-AutoConfig
    Time Written: 20090401134444.318982-000
    Event Type: Avertissement
    User: AUTORITE NT\SYSTEM

    Computer Name: PC-de-cyril
    Event Code: 4001
    Message: Le Service d’autoconfiguration WLAN s’est arrêté correctement.

    Record Number: 44505
    Source Name: Microsoft-Windows-WLAN-AutoConfig
    Time Written: 20090401134444.412582-000
    Event Type: Avertissement
    User: AUTORITE NT\SYSTEM

    Computer Name: PC-de-cyril
    Event Code: 15016
    Message: Impossible d’initialiser le package de sécurité Kerberos pour l’authentification côté serveur. Le champ de données contient le numéro de l’erreur.
    Record Number: 44517
    Source Name: Microsoft-Windows-HttpEvent
    Time Written: 20090401134534.736181-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-cyril
    Event Code: 1001
    Message: L’initialisation de l’application a échoué. Dernière erreur : 0x80070032
    Record Number: 44525
    Source Name: Microsoft-Windows-LanguagePackSetup
    Time Written: 20090401134558.146181-000
    Event Type: Erreur
    User: AUTORITE NT\SYSTEM

    Computer Name: PC-de-cyril
    Event Code: 7000
    Message: Le service Parallel port driver n'a pas pu démarrer en raison de l'erreur :
    Le service ne peut pas être démarré parce qu'il est désactivé ou qu'aucun périphérique activé ne lui est associé.
    Record Number: 44561
    Source Name: Service Control Manager
    Time Written: 20090401134707.000000-000
    Event Type: Erreur
    User:

    =====Application event log=====

    Computer Name: PC-de-cyril
    Event Code: 10
    Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
    Record Number: 7417
    Source Name: Microsoft-Windows-WMI
    Time Written: 20090401083104.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-cyril
    Event Code: 8209
    Message: Une erreur non spécifiée s’est produite durant la restauration du système : (Windows Update). Informations supplémentaires : .
    Record Number: 7423
    Source Name: System Restore
    Time Written: 20090401083345.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-cyril
    Event Code: 10
    Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
    Record Number: 7455
    Source Name: Microsoft-Windows-WMI
    Time Written: 20090401134706.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-cyril
    Event Code: 513
    Message: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

    Details:
    AddCoreCsiFiles : GetNextFileMapContent() failed.

    System Error:
    Accès refusé.
    .
    Record Number: 7463
    Source Name: Microsoft-Windows-CAPI2
    Time Written: 20090401142512.000000-000
    Event Type: Erreur
    User:

    Computer Name: PC-de-cyril
    Event Code: 513
    Message: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

    Details:
    AddCoreCsiFiles : GetNextFileMapContent() failed.

    System Error:
    Accès refusé.
    .
    Record Number: 7464
    Source Name: Microsoft-Windows-CAPI2
    Time Written: 20090401142512.000000-000
    Event Type: Erreur
    User:

    =====Security event log=====

    Computer Name: PC-de-cyril
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys
    Record Number: 10376
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090401155945.813181-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-cyril
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys
    Record Number: 10377
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090401155945.831181-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-cyril
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys
    Record Number: 10378
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090401155945.849181-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-cyril
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys
    Record Number: 10379
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090401155945.867181-000
    Event Type: Échec de l'audit
    User:

    Computer Name: PC-de-cyril
    Event Code: 5038
    Message: L’intégrité du code a déterminé que le hachage de l’image d’un fichier n’est pas valide. Le fichier peut être endommagé en raison d’une modification non autorisée ou le hachage non valide peut indiquer une erreur d’unité de disque potentielle.

    Nom du fichier : \Device\HarddiskVolume3\Windows\System32\drivers\tcpip.sys
    Record Number: 10380
    Source Name: Microsoft-Windows-Security-Auditing
    Time Written: 20090401155945.885181-000
    Event Type: Échec de l'audit
    User:

    ======Environment variables======

    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "DFSTRACINGON"=FALSE
    "FP_NO_HOST_CHECK"=NO
    "NUMBER_OF_PROCESSORS"=2
    "OS"=Windows_NT
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Samsung\Samsung PC Studio 3\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
    "PROCESSOR_ARCHITECTURE"=x86
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_REVISION"=1706
    "RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\10.0\Roxio Central36\
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
    "USERNAME"=SYSTEM
    "windir"=%SystemRoot%

    -----------------EOF-----------------
    a c 295 8 Sécurité
    29 Juin 2009 22:31:56

    1/

  • Désinstalle HijackThis.
  • Supprime le dossier IDN situé dans C:\.

  • Télécharge OTC sur ton Bureau.
  • Clique droit sur OTC et choisis Exécuter en tant qu'administrateur.
  • Clique sur CleanUp! puis clique sur Yes à la fenêtre Confirm.
  • Redémarre ton PC comme demandé.


    2/

  • Télécharge et installe CCleaner Slim.
  • Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
  • Va dans Nettoyeur, choisis Analyser. Une fois terminé, lance le nettoyage.


    3/

  • Il est nécessaire de désactiver puis réactiver la restauration système pour la purger.


    ==Prévention==

    Réactive l'UAC si ce n'est pas déjà fait.

    Supprimer les popups d'Antivir : Lien

    Conserve MBAM. Il te servira à scanner les fichiers douteux en complément de l'antivirus et scanne le disque dur régulièrement.

    Par rapport au P2P : Lien

    Voici un dossier complet (A lire avec Adobe Reader ou Foxit Reader) : Lien


    ==Problème résolu ?==

    Si tu estimes que ton problème est résolu :

    ---> Ajoute maintenant [Résolu] au titre. Pour cela :
  • Clique, dans ton premier message, sur le bouton Editer .
  • Rajoute la mention [Résolu] devant le titre.
  • Clique ensuite sur Valider votre message.


    Sois plus vigilant(e) sur Internet ;) 
    29 Juin 2009 22:45:34

    merciiiiiiiiiiiiiii
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS