On a hacker mon PC
Dernière réponse : dans Sécurité et virus
cashouz
29 Mars 2009 18:53:05
Bonsoir , hier j'étais partis mangé , j'ai laissé mon pc allumé quand je suis revenu la souris bougeait toute seul et le bloc note c'est ouvert et le hacker a écrit hacked by ... sous la peur j'ai éteint mon pc .
J'ai maintenant peur pour mes informations confidentiel ..
j'ai fais un combo.exe si quelqu'un pourrait me dire si il y a des choses louches dedans ca serait gentil merci
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\nono\Application Data\addon.dat
c:\documents and settings\nono\Application Data\addons.dat
c:\program files\Bifrost
c:\program files\Bifrost\updat.exe
.
((((((((((((((((((((((((((((( Fichiers créés du 2009-02-28 au 2009-03-29 ))))))))))))))))))))))))))))))))))))
.
2009-03-29 14:17 . 2009-03-29 14:17 5,915 --a------ C:\fraglist.htm
2009-03-29 12:57 . 2009-03-29 12:57 754 --a------ c:\windows\WORDPAD.INI
2009-03-29 11:42 . 2008-04-14 14:00 221,184 --a------ c:\windows\system32\wmpns.dll
2009-03-28 21:52 . 2008-08-14 15:23 2,191,232 -----c--- c:\windows\system32\dllcache\ntoskrnl.exe
2009-03-28 21:52 . 2008-08-14 15:23 2,147,328 -----c--- c:\windows\system32\dllcache\ntkrnlmp.exe
2009-03-28 21:52 . 2008-08-14 15:23 2,068,096 -----c--- c:\windows\system32\dllcache\ntkrnlpa.exe
2009-03-28 21:52 . 2008-08-14 15:23 2,025,984 -----c--- c:\windows\system32\dllcache\ntkrpamp.exe
2009-03-28 21:52 . 2008-06-14 19:33 272,768 --------- c:\windows\system32\drivers\bthport.sys
2009-03-28 21:52 . 2008-06-14 19:33 272,768 -----c--- c:\windows\system32\dllcache\bthport.sys
2009-03-28 21:51 . 2008-10-24 13:21 455,296 -----c--- c:\windows\system32\dllcache\mrxsmb.sys
2009-03-28 21:32 . 2009-03-28 21:32 <REP> d-------- c:\program files\Spybot - Search & Destroy
2009-03-28 21:32 . 2009-03-28 21:42 <REP> d-------- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-03-28 21:26 . 2008-10-16 15:06 268,648 --a------ c:\windows\system32\mucltui.dll
2009-03-28 21:26 . 2008-10-16 15:06 208,744 --a------ c:\windows\system32\muweb.dll
2009-03-28 21:26 . 2008-10-16 15:06 27,496 --a------ c:\windows\system32\mucltui.dll.mui
2009-03-28 19:32 . 2009-03-28 19:32 <REP> d-------- c:\program files\CDBurnerXP
2009-03-28 19:32 . 2009-03-28 19:32 <REP> d-------- c:\documents and settings\nono\Application Data\Canneverbe_Limited
2009-03-26 19:04 . 2009-03-26 19:04 <REP> d-------- c:\windows\Sun
2009-03-26 14:35 . 2009-03-26 14:36 <REP> d-------- c:\program files\Monitor Calibration Wizard
2009-03-26 14:35 . 2009-03-26 14:35 7 --a------ c:\windows\INI2=No
2009-03-26 14:35 . 2009-03-26 14:35 7 --a------ c:\windows\INI1=No
2009-03-24 19:51 . 2009-03-24 19:51 <REP> d-------- c:\documents and settings\nono\Application Data\ImgBurn
2009-03-23 19:50 . 2009-03-25 17:19 <REP> d-------- c:\program files\Java
2009-03-23 19:50 . 2009-03-23 19:50 410,984 --a------ c:\windows\system32\deploytk.dll
2009-03-23 19:50 . 2009-03-23 19:50 73,728 --a------ c:\windows\system32\javacpl.cpl
2009-03-22 16:37 . 2009-03-22 16:37 <REP> d-------- c:\program files\EXPERTool ATI
2009-03-22 16:37 . 2002-07-27 19:01 5,306 --a------ c:\windows\system32\drivers\TBPanel.sys
2009-03-22 16:04 . 2009-03-22 16:04 <REP> d-------- c:\documents and settings\nono\Application Data\TeamViewer
2009-03-22 16:03 . 2009-03-22 16:03 <REP> d-------- c:\documents and settings\nono\temp
2009-03-20 15:24 . 2009-03-20 15:24 0 --a------ c:\windows\nsreg.dat
2009-03-17 21:17 . 2009-03-17 21:17 <REP> d-------- c:\program files\Fichiers communs\Adobe
2009-03-15 21:05 . 2009-03-15 21:05 <REP> d-------- c:\program files\Orange
2009-03-15 21:05 . 2009-03-29 11:41 <REP> d-------- c:\documents and settings\nono\Application Data\Media Player
2009-03-15 21:05 . 2005-01-28 09:53 5,525,504 --a------ c:\windows\system32\setb9.tmp
2009-03-15 21:04 . 2005-01-28 09:53 142,336 --a------ c:\windows\system32\setb3.tmp
2009-03-15 21:03 . 2009-03-15 21:03 <REP> d-------- c:\windows\system32\URTTEMP
2009-03-15 00:39 . 2009-03-15 00:39 4,096 --a------ c:\windows\system32\crash
2009-03-13 19:10 . 2009-03-13 19:10 76 --a------ C:\fraglist.luar
2009-03-13 18:36 . 2009-03-13 18:40 <REP> d-------- c:\windows\UltraDefrag
2009-03-13 00:59 . 2009-03-13 00:59 45 --a------ c:\windows\system32\initdebug.nfo
2009-03-13 00:55 . 2009-03-13 00:55 <REP> d-------- c:\program files\ATITool
2009-03-10 21:03 . 2008-12-21 00:46 6,066,688 -----c--- c:\windows\system32\dllcache\ieframe.dll
2009-03-10 21:03 . 2007-04-17 11:32 2,455,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dat
2009-03-10 21:03 . 2007-03-08 07:10 1,048,576 -----c--- c:\windows\system32\dllcache\ieframe.dll.mui
2009-03-10 21:03 . 2008-12-21 00:46 459,264 -----c--- c:\windows\system32\dllcache\msfeeds.dll
2009-03-10 21:03 . 2008-12-21 00:46 383,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dll
2009-03-10 21:03 . 2008-12-21 00:46 267,776 -----c--- c:\windows\system32\dllcache\iertutil.dll
2009-03-10 21:03 . 2008-12-21 00:46 63,488 -----c--- c:\windows\system32\dllcache\icardie.dll
2009-03-10 21:03 . 2008-12-21 00:46 52,224 -----c--- c:\windows\system32\dllcache\msfeedsbs.dll
2009-03-10 21:03 . 2008-12-19 11:10 13,824 -----c--- c:\windows\system32\dllcache\ieudinit.exe
2009-03-08 14:21 . 2009-03-08 14:21 <REP> d-------- c:\program files\MadOnion.com
2009-03-08 03:02 . 2009-03-08 03:02 <REP> d-------- c:\program files\LG Soft India
2009-03-08 03:02 . 2009-03-08 03:02 <REP> d-------- c:\documents and settings\All Users\Application Data\InstallShield
2009-03-08 03:02 . 2004-04-16 12:24 61,440 --a------ c:\windows\system32\ISUSPM.cpl
2009-03-08 03:02 . 2008-03-04 18:23 25,344 -ra------ c:\windows\system32\LGDispDrv.dll
2009-03-08 03:02 . 2008-03-04 18:23 2,944 -ra------ c:\windows\system32\LgExport.dll
2009-03-07 20:32 . 2009-03-07 20:32 <REP> d-------- c:\program files\Microsoft Sync Framework
2009-03-07 20:32 . 2009-03-29 13:15 <REP> d-------- c:\documents and settings\nono\Tracing
2009-03-07 20:31 . 2009-03-07 20:31 <REP> d-------- c:\program files\Windows Live SkyDrive
2009-03-07 20:31 . 2009-03-07 20:32 <REP> d-------- c:\program files\Windows Live
2009-03-07 20:31 . 2009-03-07 20:31 <REP> d-------- c:\program files\Microsoft
2009-03-07 20:28 . 2009-03-07 20:28 <REP> d-------- c:\program files\Fichiers communs\Windows Live
2009-03-07 19:59 . 2009-03-07 20:04 <REP> d-------- c:\documents and settings\nono\Application Data\Ventrilo
2009-03-07 18:37 . 2009-03-13 03:13 <REP> d-------- c:\documents and settings\nono\Application Data\DivX
2009-03-07 18:36 . 2009-03-07 18:36 <REP> d-------- c:\program files\DivX
2009-03-07 18:34 . 2009-03-07 18:37 <REP> d-------- c:\documents and settings\nono\Application Data\vlc
2009-03-07 18:34 . 2009-03-07 18:38 <REP> d-------- c:\documents and settings\nono\Application Data\dvdcss
2009-03-07 18:33 . 2009-03-07 18:33 <REP> d-------- c:\program files\VideoLAN
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-29 11:14 16,608 ----a-w c:\windows\gdrv.sys
2009-03-28 10:38 --------- d-----w c:\program files\Warhammer Online - Age of Reckoning
2009-03-08 12:21 --------- d--h--w c:\program files\InstallShield Installation Information
2009-03-08 12:13 --------- d-----w c:\program files\Google
2009-03-08 01:02 --------- d-----w c:\program files\Fichiers communs\InstallShield
2009-03-07 15:23 --------- d-----w c:\program files\Razer
2009-03-07 15:23 --------- d-----w c:\program files\DIFX
2009-03-07 15:21 --------- d-----w c:\documents and settings\nono\Application Data\ATI
2009-03-07 15:21 --------- d-----w c:\documents and settings\All Users\Application Data\ATI
2009-03-07 15:13 --------- d-----w c:\program files\ATI Technologies
2009-03-07 14:51 --------- d-----w c:\program files\Realtek
2009-03-07 14:51 --------- d-----w c:\documents and settings\nono\Application Data\InstallShield
2009-03-07 14:49 315,392 ----a-w c:\windows\HideWin.exe
2009-03-07 14:47 --------- d-----w c:\program files\Intel
2009-03-07 14:46 --------- d-----w c:\program files\GIGABYTE
2009-03-07 14:35 --------- d-----w c:\program files\microsoft frontpage
2009-03-07 14:34 --------- d-----w c:\program files\Services en ligne
2009-02-18 08:41 91,648 ----a-w c:\windows\system32\lua5.1a.dll
2009-02-18 08:41 9,728 ----a-w c:\windows\system32\lua5.1a.exe
2009-02-18 08:41 9,216 ----a-w c:\windows\system32\defrag_native.exe
2009-02-18 08:41 7,680 ----a-w c:\windows\system32\udefrag.exe
2009-02-18 08:41 6,656 ----a-w c:\windows\system32\udefrag-gui.exe
2009-02-18 08:41 6,656 ----a-w c:\windows\system32\bootexctrl.exe
2009-02-18 08:41 55,808 ----a-w c:\windows\system32\ultradefrag.exe
2009-02-18 08:41 30,720 ----a-w c:\windows\system32\drivers\ultradfg.sys
2009-02-18 08:41 18,944 ----a-w c:\windows\system32\zenwinx.dll
2009-02-18 08:41 13,824 ----a-w c:\windows\system32\lua5.1a_gui.exe
2009-02-18 08:41 10,240 ----a-w c:\windows\system32\udefrag.dll
2009-02-09 14:05 1,846,912 ----a-w c:\windows\system32\win32k.sys
2009-02-06 17:52 49,504 ----a-w c:\windows\system32\sirenacm.dll
2009-02-04 07:27 3,488,768 ----a-w c:\windows\system32\drivers\ati2mtag.sys
2009-02-04 05:57 11,702,272 ----a-w c:\windows\system32\atioglxx.dll
2009-02-04 05:03 290,816 ----a-w c:\windows\system32\atiok3x2.dll
2009-02-04 04:56 442,368 ----a-w c:\windows\system32\ATIDEMGX.dll
2009-02-04 04:55 324,096 ----a-w c:\windows\system32\ati2dvag.dll
2009-02-04 04:44 196,608 ----a-w c:\windows\system32\atipdlxx.dll
2009-02-04 04:44 155,648 ----a-w c:\windows\system32\Oemdspif.dll
2009-02-04 04:43 43,520 ----a-w c:\windows\system32\ati2edxx.dll
2009-02-04 04:43 26,112 ----a-w c:\windows\system32\Ati2mdxx.exe
2009-02-04 04:43 155,648 ----a-w c:\windows\system32\ati2evxx.dll
2009-02-04 04:41 602,112 ----a-w c:\windows\system32\ati2evxx.exe
2009-02-04 04:40 53,248 ----a-w c:\windows\system32\ATIDDC.DLL
2009-02-04 04:30 3,884,768 ----a-w c:\windows\system32\ati3duag.dll
2009-02-04 04:14 2,645,504 ----a-w c:\windows\system32\ativvaxx.dll
2009-02-04 03:58 49,664 ----a-w c:\windows\system32\amdpcom32.dll
2009-02-04 03:54 471,040 ----a-w c:\windows\system32\atikvmag.dll
2009-02-04 03:53 122,880 ----a-w c:\windows\system32\atiadlxx.dll
2009-02-04 03:52 53,248 ----a-w c:\windows\system32\drivers\ati2erec.dll
2009-02-04 03:52 17,408 ----a-w c:\windows\system32\atitvo32.dll
2009-02-04 03:46 626,688 ----a-w c:\windows\system32\ati2cqag.dll
2009-02-04 03:44 307,200 ----a-w c:\windows\system32\atiiiexx.dll
2009-02-04 02:43 45,056 ----a-w c:\windows\system32\aticalrt.dll
2009-02-04 02:42 45,056 ----a-w c:\windows\system32\aticalcl.dll
2009-02-04 02:40 3,244,032 ----a-w c:\windows\system32\aticaldd.dll
2009-02-03 20:05 593,920 ------w c:\windows\system32\ati2sgag.exe
.
------- Sigcheck -------
2008-04-14 14:00 14336 e4bdf223cd75478bf44567b4d5c2634d c:\windows\system32\svchost.exe
2008-04-14 14:00 14336 e4bdf223cd75478bf44567b4d5c2634d c:\windows\system32\dllcache\svchost.exe
2008-04-14 14:00 579584 e853f84d3ce2faa2a802e33cf89ac023 c:\windows\system32\user32.dll
2008-04-14 14:00 579584 e853f84d3ce2faa2a802e33cf89ac023 c:\windows\system32\dllcache\user32.dll
2008-04-14 14:00 82432 fb836f9e62d82904c983ad21296a5d9c c:\windows\system32\ws2_32.dll
2008-04-14 14:00 82432 fb836f9e62d82904c983ad21296a5d9c c:\windows\system32\dllcache\ws2_32.dll
2008-08-26 11:10 827904 4b0e70d44297877a313045bd059770e1 c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\wininet.dll
2008-12-21 01:47 827904 4e192082a5fce9ef19198a24cdea3442 c:\windows\$hf_mig$\KB961260-IE7\SP2QFE\wininet.dll
2008-04-14 14:00 670208 4a6e04ea20f48d750d9bfed8600d516b c:\windows\ie7\wininet.dll
2007-08-13 19:54 818688 a4a0fc92358f39538a6494c42ef99fe9 c:\windows\ie7updates\KB956390-IE7\wininet.dll
2008-08-26 10:11 826368 e30cacd98479b36a3dbfa3267bf62dd0 c:\windows\ie7updates\KB961260-IE7\wininet.dll
2008-12-21 00:47 826368 0551c946e305cee0a79ba744dc141bfc c:\windows\system32\wininet.dll
2008-12-21 00:47 826368 0551c946e305cee0a79ba744dc141bfc c:\windows\system32\dllcache\wininet.dll
2008-04-14 14:00 512000 dd73d6b9f6b4cb630cf35b438b540174 c:\windows\system32\winlogon.exe
2008-04-14 14:00 512000 dd73d6b9f6b4cb630cf35b438b540174 c:\windows\system32\dllcache\winlogon.exe
2008-04-14 14:00 182656 1df7f42665c94b825322fae71721130d c:\windows\system32\dllcache\ndis.sys
2008-04-14 14:00 182656 1df7f42665c94b825322fae71721130d c:\windows\system32\drivers\ndis.sys
2008-04-14 14:00 36608 3bb22519a194418d5fec05d800a19ad0 c:\windows\system32\dllcache\ip6fw.sys
2008-04-14 14:00 36608 3bb22519a194418d5fec05d800a19ad0 c:\windows\system32\drivers\ip6fw.sys
2008-04-14 14:00 1037824 f2317622d29f9ff0f88aeecd5f60f0dd c:\windows\explorer.exe
2008-04-14 14:00 1037824 f2317622d29f9ff0f88aeecd5f60f0dd c:\windows\system32\dllcache\explorer.exe
2008-04-14 14:00 109056 54cb50058851d95e56ec70d09f70857f c:\windows\system32\services.exe
2008-04-14 14:00 109056 54cb50058851d95e56ec70d09f70857f c:\windows\system32\dllcache\services.exe
2008-04-14 14:00 13312 91e6024d6d4dcdecdb36c43ecf9bbecb c:\windows\system32\lsass.exe
2008-04-14 14:00 13312 91e6024d6d4dcdecdb36c43ecf9bbecb c:\windows\system32\dllcache\lsass.exe
2008-04-14 14:00 15360 59dc5bb82e4c8e0b3eadcfdbc44ba6e4 c:\windows\system32\ctfmon.exe
2008-04-14 14:00 15360 59dc5bb82e4c8e0b3eadcfdbc44ba6e4 c:\windows\system32\dllcache\ctfmon.exe
2008-04-14 14:00 57856 460e4ce148bd07218da0b6a3d31885a9 c:\windows\system32\spoolsv.exe
2008-04-14 14:00 57856 460e4ce148bd07218da0b6a3d31885a9 c:\windows\system32\dllcache\spoolsv.exe
2008-04-14 14:00 26624 e74ddb12188c2ff57a78624dbf7332fc c:\windows\system32\userinit.exe
2008-04-14 14:00 26624 e74ddb12188c2ff57a78624dbf7332fc c:\windows\system32\dllcache\userinit.exe
2008-04-14 14:00 297984 710bc85a8c22626ee094439e3ea0d38c c:\windows\system32\termsrv.dll
2008-04-14 14:00 297984 710bc85a8c22626ee094439e3ea0d38c c:\windows\system32\dllcache\termsrv.dll
2008-04-14 14:00 1054720 3ac8886dfa5ab641417df4d3b7f5512e c:\windows\system32\kernel32.dll
2008-04-14 14:00 1054720 3ac8886dfa5ab641417df4d3b7f5512e c:\windows\system32\dllcache\kernel32.dll
2008-04-14 14:00 17408 9f2c862e39bf8e8fc51c3f6a6bceb415 c:\windows\system32\powrprof.dll
2008-04-14 14:00 17408 9f2c862e39bf8e8fc51c3f6a6bceb415 c:\windows\system32\dllcache\powrprof.dll
2008-04-14 14:00 110080 0469b73db32e5520f342c5e163aa3cca c:\windows\system32\imm32.dll
2008-04-14 14:00 110080 0469b73db32e5520f342c5e163aa3cca c:\windows\system32\dllcache\imm32.dll
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]
"OrangePlayer"="c:\program files\orange\media player\Media Player.exe" [2008-12-02 319488]
"Gainward"="c:\program files\EXPERTool ATI\TBPanel.exe" [2008-07-31 2296360]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GEST"="=" [X]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-02-03 61440]
"DeathAdder"="c:\program files\Razer\DeathAdder\razerhid.exe" [2007-09-07 159744]
"ISUSPM Startup"="c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-04-17 196608]
"ISUSScheduler"="c:\program files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2004-04-13 69632]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-23 148888]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-07 c:\windows\RTHDCPL.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"OrangePlayer"="c:\program files\orange\media player\Media Player.exe" [2008-12-02 319488]
c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
forteManager.lnk - c:\program files\LG Soft India\forteManager\bin\Monitor.exe [2009-03-08 1134592]
àᶡ Ô¡.exe [2009-03-27 44957]
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
R2 GEST Service;GEST Service for program management.;c:\program files\GIGABYTE\EnergySaver\GSvr.exe [2009-03-07 80392]
R2 SeaPort;SeaPort;c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R3 DAdderFltr;DeathAdder Mouse;c:\windows\system32\drivers\dadder.sys [2009-03-07 22784]
S3 LGDDCDevice;LGDDCDevice;c:\program files\LG Soft India\forteManager\bin\I2CDriver.sys [2009-03-08 14336]
S3 LGII2CDevice;LGII2CDevice;c:\program files\LG Soft India\forteManager\bin\PII2CDriver.sys [2009-03-08 17408]
S3 ultradfg;ultradfg;c:\windows\system32\drivers\ultradfg.sys [2009-02-18 30720]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3A07AC76-FBDB-38F8-EE61-C147DBE0AAE9}]
c:\program files\Bifrost\updat.exe s
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
FF - ProfilePath - c:\documents and settings\nono\Application Data\Mozilla\Firefox\Profiles\7ktf5l7r.default\
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-29 18:31:58
Windows 5.1.2600 Service Pack 3 NTFS
Recherche de processus cachés ...
c:\program files\Internet Explorer\iexplore.exe [1516] 0x89F7CBE0
? [6544]
? [14324]
? [12832]
? [13024]
? [8424]
Recherche d'éléments en démarrage automatique cachés ...
Recherche de fichiers cachés ...
Scan terminé avec succès
Fichiers cachés: 0
**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------
- - - - - - - > 'winlogon.exe'(744)
c:\windows\system32\Ati2evxx.dll
.
Heure de fin: 2009-03-29 18:32:32
ComboFix-quarantined-files.txt 2009-03-29 16:32:31
Avant-CF: 208 673 742 848 octets libres
Après-CF: 210,963,869,696 octets libres
WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect
263 --- E O F --- 2009-03-29 09:45:08
J'ai maintenant peur pour mes informations confidentiel ..
j'ai fais un combo.exe si quelqu'un pourrait me dire si il y a des choses louches dedans ca serait gentil merci
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\nono\Application Data\addon.dat
c:\documents and settings\nono\Application Data\addons.dat
c:\program files\Bifrost
c:\program files\Bifrost\updat.exe
.
((((((((((((((((((((((((((((( Fichiers créés du 2009-02-28 au 2009-03-29 ))))))))))))))))))))))))))))))))))))
.
2009-03-29 14:17 . 2009-03-29 14:17 5,915 --a------ C:\fraglist.htm
2009-03-29 12:57 . 2009-03-29 12:57 754 --a------ c:\windows\WORDPAD.INI
2009-03-29 11:42 . 2008-04-14 14:00 221,184 --a------ c:\windows\system32\wmpns.dll
2009-03-28 21:52 . 2008-08-14 15:23 2,191,232 -----c--- c:\windows\system32\dllcache\ntoskrnl.exe
2009-03-28 21:52 . 2008-08-14 15:23 2,147,328 -----c--- c:\windows\system32\dllcache\ntkrnlmp.exe
2009-03-28 21:52 . 2008-08-14 15:23 2,068,096 -----c--- c:\windows\system32\dllcache\ntkrnlpa.exe
2009-03-28 21:52 . 2008-08-14 15:23 2,025,984 -----c--- c:\windows\system32\dllcache\ntkrpamp.exe
2009-03-28 21:52 . 2008-06-14 19:33 272,768 --------- c:\windows\system32\drivers\bthport.sys
2009-03-28 21:52 . 2008-06-14 19:33 272,768 -----c--- c:\windows\system32\dllcache\bthport.sys
2009-03-28 21:51 . 2008-10-24 13:21 455,296 -----c--- c:\windows\system32\dllcache\mrxsmb.sys
2009-03-28 21:32 . 2009-03-28 21:32 <REP> d-------- c:\program files\Spybot - Search & Destroy
2009-03-28 21:32 . 2009-03-28 21:42 <REP> d-------- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-03-28 21:26 . 2008-10-16 15:06 268,648 --a------ c:\windows\system32\mucltui.dll
2009-03-28 21:26 . 2008-10-16 15:06 208,744 --a------ c:\windows\system32\muweb.dll
2009-03-28 21:26 . 2008-10-16 15:06 27,496 --a------ c:\windows\system32\mucltui.dll.mui
2009-03-28 19:32 . 2009-03-28 19:32 <REP> d-------- c:\program files\CDBurnerXP
2009-03-28 19:32 . 2009-03-28 19:32 <REP> d-------- c:\documents and settings\nono\Application Data\Canneverbe_Limited
2009-03-26 19:04 . 2009-03-26 19:04 <REP> d-------- c:\windows\Sun
2009-03-26 14:35 . 2009-03-26 14:36 <REP> d-------- c:\program files\Monitor Calibration Wizard
2009-03-26 14:35 . 2009-03-26 14:35 7 --a------ c:\windows\INI2=No
2009-03-26 14:35 . 2009-03-26 14:35 7 --a------ c:\windows\INI1=No
2009-03-24 19:51 . 2009-03-24 19:51 <REP> d-------- c:\documents and settings\nono\Application Data\ImgBurn
2009-03-23 19:50 . 2009-03-25 17:19 <REP> d-------- c:\program files\Java
2009-03-23 19:50 . 2009-03-23 19:50 410,984 --a------ c:\windows\system32\deploytk.dll
2009-03-23 19:50 . 2009-03-23 19:50 73,728 --a------ c:\windows\system32\javacpl.cpl
2009-03-22 16:37 . 2009-03-22 16:37 <REP> d-------- c:\program files\EXPERTool ATI
2009-03-22 16:37 . 2002-07-27 19:01 5,306 --a------ c:\windows\system32\drivers\TBPanel.sys
2009-03-22 16:04 . 2009-03-22 16:04 <REP> d-------- c:\documents and settings\nono\Application Data\TeamViewer
2009-03-22 16:03 . 2009-03-22 16:03 <REP> d-------- c:\documents and settings\nono\temp
2009-03-20 15:24 . 2009-03-20 15:24 0 --a------ c:\windows\nsreg.dat
2009-03-17 21:17 . 2009-03-17 21:17 <REP> d-------- c:\program files\Fichiers communs\Adobe
2009-03-15 21:05 . 2009-03-15 21:05 <REP> d-------- c:\program files\Orange
2009-03-15 21:05 . 2009-03-29 11:41 <REP> d-------- c:\documents and settings\nono\Application Data\Media Player
2009-03-15 21:05 . 2005-01-28 09:53 5,525,504 --a------ c:\windows\system32\setb9.tmp
2009-03-15 21:04 . 2005-01-28 09:53 142,336 --a------ c:\windows\system32\setb3.tmp
2009-03-15 21:03 . 2009-03-15 21:03 <REP> d-------- c:\windows\system32\URTTEMP
2009-03-15 00:39 . 2009-03-15 00:39 4,096 --a------ c:\windows\system32\crash
2009-03-13 19:10 . 2009-03-13 19:10 76 --a------ C:\fraglist.luar
2009-03-13 18:36 . 2009-03-13 18:40 <REP> d-------- c:\windows\UltraDefrag
2009-03-13 00:59 . 2009-03-13 00:59 45 --a------ c:\windows\system32\initdebug.nfo
2009-03-13 00:55 . 2009-03-13 00:55 <REP> d-------- c:\program files\ATITool
2009-03-10 21:03 . 2008-12-21 00:46 6,066,688 -----c--- c:\windows\system32\dllcache\ieframe.dll
2009-03-10 21:03 . 2007-04-17 11:32 2,455,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dat
2009-03-10 21:03 . 2007-03-08 07:10 1,048,576 -----c--- c:\windows\system32\dllcache\ieframe.dll.mui
2009-03-10 21:03 . 2008-12-21 00:46 459,264 -----c--- c:\windows\system32\dllcache\msfeeds.dll
2009-03-10 21:03 . 2008-12-21 00:46 383,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dll
2009-03-10 21:03 . 2008-12-21 00:46 267,776 -----c--- c:\windows\system32\dllcache\iertutil.dll
2009-03-10 21:03 . 2008-12-21 00:46 63,488 -----c--- c:\windows\system32\dllcache\icardie.dll
2009-03-10 21:03 . 2008-12-21 00:46 52,224 -----c--- c:\windows\system32\dllcache\msfeedsbs.dll
2009-03-10 21:03 . 2008-12-19 11:10 13,824 -----c--- c:\windows\system32\dllcache\ieudinit.exe
2009-03-08 14:21 . 2009-03-08 14:21 <REP> d-------- c:\program files\MadOnion.com
2009-03-08 03:02 . 2009-03-08 03:02 <REP> d-------- c:\program files\LG Soft India
2009-03-08 03:02 . 2009-03-08 03:02 <REP> d-------- c:\documents and settings\All Users\Application Data\InstallShield
2009-03-08 03:02 . 2004-04-16 12:24 61,440 --a------ c:\windows\system32\ISUSPM.cpl
2009-03-08 03:02 . 2008-03-04 18:23 25,344 -ra------ c:\windows\system32\LGDispDrv.dll
2009-03-08 03:02 . 2008-03-04 18:23 2,944 -ra------ c:\windows\system32\LgExport.dll
2009-03-07 20:32 . 2009-03-07 20:32 <REP> d-------- c:\program files\Microsoft Sync Framework
2009-03-07 20:32 . 2009-03-29 13:15 <REP> d-------- c:\documents and settings\nono\Tracing
2009-03-07 20:31 . 2009-03-07 20:31 <REP> d-------- c:\program files\Windows Live SkyDrive
2009-03-07 20:31 . 2009-03-07 20:32 <REP> d-------- c:\program files\Windows Live
2009-03-07 20:31 . 2009-03-07 20:31 <REP> d-------- c:\program files\Microsoft
2009-03-07 20:28 . 2009-03-07 20:28 <REP> d-------- c:\program files\Fichiers communs\Windows Live
2009-03-07 19:59 . 2009-03-07 20:04 <REP> d-------- c:\documents and settings\nono\Application Data\Ventrilo
2009-03-07 18:37 . 2009-03-13 03:13 <REP> d-------- c:\documents and settings\nono\Application Data\DivX
2009-03-07 18:36 . 2009-03-07 18:36 <REP> d-------- c:\program files\DivX
2009-03-07 18:34 . 2009-03-07 18:37 <REP> d-------- c:\documents and settings\nono\Application Data\vlc
2009-03-07 18:34 . 2009-03-07 18:38 <REP> d-------- c:\documents and settings\nono\Application Data\dvdcss
2009-03-07 18:33 . 2009-03-07 18:33 <REP> d-------- c:\program files\VideoLAN
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-29 11:14 16,608 ----a-w c:\windows\gdrv.sys
2009-03-28 10:38 --------- d-----w c:\program files\Warhammer Online - Age of Reckoning
2009-03-08 12:21 --------- d--h--w c:\program files\InstallShield Installation Information
2009-03-08 12:13 --------- d-----w c:\program files\Google
2009-03-08 01:02 --------- d-----w c:\program files\Fichiers communs\InstallShield
2009-03-07 15:23 --------- d-----w c:\program files\Razer
2009-03-07 15:23 --------- d-----w c:\program files\DIFX
2009-03-07 15:21 --------- d-----w c:\documents and settings\nono\Application Data\ATI
2009-03-07 15:21 --------- d-----w c:\documents and settings\All Users\Application Data\ATI
2009-03-07 15:13 --------- d-----w c:\program files\ATI Technologies
2009-03-07 14:51 --------- d-----w c:\program files\Realtek
2009-03-07 14:51 --------- d-----w c:\documents and settings\nono\Application Data\InstallShield
2009-03-07 14:49 315,392 ----a-w c:\windows\HideWin.exe
2009-03-07 14:47 --------- d-----w c:\program files\Intel
2009-03-07 14:46 --------- d-----w c:\program files\GIGABYTE
2009-03-07 14:35 --------- d-----w c:\program files\microsoft frontpage
2009-03-07 14:34 --------- d-----w c:\program files\Services en ligne
2009-02-18 08:41 91,648 ----a-w c:\windows\system32\lua5.1a.dll
2009-02-18 08:41 9,728 ----a-w c:\windows\system32\lua5.1a.exe
2009-02-18 08:41 9,216 ----a-w c:\windows\system32\defrag_native.exe
2009-02-18 08:41 7,680 ----a-w c:\windows\system32\udefrag.exe
2009-02-18 08:41 6,656 ----a-w c:\windows\system32\udefrag-gui.exe
2009-02-18 08:41 6,656 ----a-w c:\windows\system32\bootexctrl.exe
2009-02-18 08:41 55,808 ----a-w c:\windows\system32\ultradefrag.exe
2009-02-18 08:41 30,720 ----a-w c:\windows\system32\drivers\ultradfg.sys
2009-02-18 08:41 18,944 ----a-w c:\windows\system32\zenwinx.dll
2009-02-18 08:41 13,824 ----a-w c:\windows\system32\lua5.1a_gui.exe
2009-02-18 08:41 10,240 ----a-w c:\windows\system32\udefrag.dll
2009-02-09 14:05 1,846,912 ----a-w c:\windows\system32\win32k.sys
2009-02-06 17:52 49,504 ----a-w c:\windows\system32\sirenacm.dll
2009-02-04 07:27 3,488,768 ----a-w c:\windows\system32\drivers\ati2mtag.sys
2009-02-04 05:57 11,702,272 ----a-w c:\windows\system32\atioglxx.dll
2009-02-04 05:03 290,816 ----a-w c:\windows\system32\atiok3x2.dll
2009-02-04 04:56 442,368 ----a-w c:\windows\system32\ATIDEMGX.dll
2009-02-04 04:55 324,096 ----a-w c:\windows\system32\ati2dvag.dll
2009-02-04 04:44 196,608 ----a-w c:\windows\system32\atipdlxx.dll
2009-02-04 04:44 155,648 ----a-w c:\windows\system32\Oemdspif.dll
2009-02-04 04:43 43,520 ----a-w c:\windows\system32\ati2edxx.dll
2009-02-04 04:43 26,112 ----a-w c:\windows\system32\Ati2mdxx.exe
2009-02-04 04:43 155,648 ----a-w c:\windows\system32\ati2evxx.dll
2009-02-04 04:41 602,112 ----a-w c:\windows\system32\ati2evxx.exe
2009-02-04 04:40 53,248 ----a-w c:\windows\system32\ATIDDC.DLL
2009-02-04 04:30 3,884,768 ----a-w c:\windows\system32\ati3duag.dll
2009-02-04 04:14 2,645,504 ----a-w c:\windows\system32\ativvaxx.dll
2009-02-04 03:58 49,664 ----a-w c:\windows\system32\amdpcom32.dll
2009-02-04 03:54 471,040 ----a-w c:\windows\system32\atikvmag.dll
2009-02-04 03:53 122,880 ----a-w c:\windows\system32\atiadlxx.dll
2009-02-04 03:52 53,248 ----a-w c:\windows\system32\drivers\ati2erec.dll
2009-02-04 03:52 17,408 ----a-w c:\windows\system32\atitvo32.dll
2009-02-04 03:46 626,688 ----a-w c:\windows\system32\ati2cqag.dll
2009-02-04 03:44 307,200 ----a-w c:\windows\system32\atiiiexx.dll
2009-02-04 02:43 45,056 ----a-w c:\windows\system32\aticalrt.dll
2009-02-04 02:42 45,056 ----a-w c:\windows\system32\aticalcl.dll
2009-02-04 02:40 3,244,032 ----a-w c:\windows\system32\aticaldd.dll
2009-02-03 20:05 593,920 ------w c:\windows\system32\ati2sgag.exe
.
------- Sigcheck -------
2008-04-14 14:00 14336 e4bdf223cd75478bf44567b4d5c2634d c:\windows\system32\svchost.exe
2008-04-14 14:00 14336 e4bdf223cd75478bf44567b4d5c2634d c:\windows\system32\dllcache\svchost.exe
2008-04-14 14:00 579584 e853f84d3ce2faa2a802e33cf89ac023 c:\windows\system32\user32.dll
2008-04-14 14:00 579584 e853f84d3ce2faa2a802e33cf89ac023 c:\windows\system32\dllcache\user32.dll
2008-04-14 14:00 82432 fb836f9e62d82904c983ad21296a5d9c c:\windows\system32\ws2_32.dll
2008-04-14 14:00 82432 fb836f9e62d82904c983ad21296a5d9c c:\windows\system32\dllcache\ws2_32.dll
2008-08-26 11:10 827904 4b0e70d44297877a313045bd059770e1 c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\wininet.dll
2008-12-21 01:47 827904 4e192082a5fce9ef19198a24cdea3442 c:\windows\$hf_mig$\KB961260-IE7\SP2QFE\wininet.dll
2008-04-14 14:00 670208 4a6e04ea20f48d750d9bfed8600d516b c:\windows\ie7\wininet.dll
2007-08-13 19:54 818688 a4a0fc92358f39538a6494c42ef99fe9 c:\windows\ie7updates\KB956390-IE7\wininet.dll
2008-08-26 10:11 826368 e30cacd98479b36a3dbfa3267bf62dd0 c:\windows\ie7updates\KB961260-IE7\wininet.dll
2008-12-21 00:47 826368 0551c946e305cee0a79ba744dc141bfc c:\windows\system32\wininet.dll
2008-12-21 00:47 826368 0551c946e305cee0a79ba744dc141bfc c:\windows\system32\dllcache\wininet.dll
2008-04-14 14:00 512000 dd73d6b9f6b4cb630cf35b438b540174 c:\windows\system32\winlogon.exe
2008-04-14 14:00 512000 dd73d6b9f6b4cb630cf35b438b540174 c:\windows\system32\dllcache\winlogon.exe
2008-04-14 14:00 182656 1df7f42665c94b825322fae71721130d c:\windows\system32\dllcache\ndis.sys
2008-04-14 14:00 182656 1df7f42665c94b825322fae71721130d c:\windows\system32\drivers\ndis.sys
2008-04-14 14:00 36608 3bb22519a194418d5fec05d800a19ad0 c:\windows\system32\dllcache\ip6fw.sys
2008-04-14 14:00 36608 3bb22519a194418d5fec05d800a19ad0 c:\windows\system32\drivers\ip6fw.sys
2008-04-14 14:00 1037824 f2317622d29f9ff0f88aeecd5f60f0dd c:\windows\explorer.exe
2008-04-14 14:00 1037824 f2317622d29f9ff0f88aeecd5f60f0dd c:\windows\system32\dllcache\explorer.exe
2008-04-14 14:00 109056 54cb50058851d95e56ec70d09f70857f c:\windows\system32\services.exe
2008-04-14 14:00 109056 54cb50058851d95e56ec70d09f70857f c:\windows\system32\dllcache\services.exe
2008-04-14 14:00 13312 91e6024d6d4dcdecdb36c43ecf9bbecb c:\windows\system32\lsass.exe
2008-04-14 14:00 13312 91e6024d6d4dcdecdb36c43ecf9bbecb c:\windows\system32\dllcache\lsass.exe
2008-04-14 14:00 15360 59dc5bb82e4c8e0b3eadcfdbc44ba6e4 c:\windows\system32\ctfmon.exe
2008-04-14 14:00 15360 59dc5bb82e4c8e0b3eadcfdbc44ba6e4 c:\windows\system32\dllcache\ctfmon.exe
2008-04-14 14:00 57856 460e4ce148bd07218da0b6a3d31885a9 c:\windows\system32\spoolsv.exe
2008-04-14 14:00 57856 460e4ce148bd07218da0b6a3d31885a9 c:\windows\system32\dllcache\spoolsv.exe
2008-04-14 14:00 26624 e74ddb12188c2ff57a78624dbf7332fc c:\windows\system32\userinit.exe
2008-04-14 14:00 26624 e74ddb12188c2ff57a78624dbf7332fc c:\windows\system32\dllcache\userinit.exe
2008-04-14 14:00 297984 710bc85a8c22626ee094439e3ea0d38c c:\windows\system32\termsrv.dll
2008-04-14 14:00 297984 710bc85a8c22626ee094439e3ea0d38c c:\windows\system32\dllcache\termsrv.dll
2008-04-14 14:00 1054720 3ac8886dfa5ab641417df4d3b7f5512e c:\windows\system32\kernel32.dll
2008-04-14 14:00 1054720 3ac8886dfa5ab641417df4d3b7f5512e c:\windows\system32\dllcache\kernel32.dll
2008-04-14 14:00 17408 9f2c862e39bf8e8fc51c3f6a6bceb415 c:\windows\system32\powrprof.dll
2008-04-14 14:00 17408 9f2c862e39bf8e8fc51c3f6a6bceb415 c:\windows\system32\dllcache\powrprof.dll
2008-04-14 14:00 110080 0469b73db32e5520f342c5e163aa3cca c:\windows\system32\imm32.dll
2008-04-14 14:00 110080 0469b73db32e5520f342c5e163aa3cca c:\windows\system32\dllcache\imm32.dll
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]
"OrangePlayer"="c:\program files\orange\media player\Media Player.exe" [2008-12-02 319488]
"Gainward"="c:\program files\EXPERTool ATI\TBPanel.exe" [2008-07-31 2296360]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GEST"="=" [X]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-02-03 61440]
"DeathAdder"="c:\program files\Razer\DeathAdder\razerhid.exe" [2007-09-07 159744]
"ISUSPM Startup"="c:\progra~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-04-17 196608]
"ISUSScheduler"="c:\program files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2004-04-13 69632]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-23 148888]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-07 c:\windows\RTHDCPL.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"OrangePlayer"="c:\program files\orange\media player\Media Player.exe" [2008-12-02 319488]
c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
forteManager.lnk - c:\program files\LG Soft India\forteManager\bin\Monitor.exe [2009-03-08 1134592]
àᶡ Ô¡.exe [2009-03-27 44957]
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
R2 GEST Service;GEST Service for program management.;c:\program files\GIGABYTE\EnergySaver\GSvr.exe [2009-03-07 80392]
R2 SeaPort;SeaPort;c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R3 DAdderFltr;DeathAdder Mouse;c:\windows\system32\drivers\dadder.sys [2009-03-07 22784]
S3 LGDDCDevice;LGDDCDevice;c:\program files\LG Soft India\forteManager\bin\I2CDriver.sys [2009-03-08 14336]
S3 LGII2CDevice;LGII2CDevice;c:\program files\LG Soft India\forteManager\bin\PII2CDriver.sys [2009-03-08 17408]
S3 ultradfg;ultradfg;c:\windows\system32\drivers\ultradfg.sys [2009-02-18 30720]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3A07AC76-FBDB-38F8-EE61-C147DBE0AAE9}]
c:\program files\Bifrost\updat.exe s
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
FF - ProfilePath - c:\documents and settings\nono\Application Data\Mozilla\Firefox\Profiles\7ktf5l7r.default\
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-29 18:31:58
Windows 5.1.2600 Service Pack 3 NTFS
Recherche de processus cachés ...
c:\program files\Internet Explorer\iexplore.exe [1516] 0x89F7CBE0
? [6544]
? [14324]
? [12832]
? [13024]
? [8424]
Recherche d'éléments en démarrage automatique cachés ...
Recherche de fichiers cachés ...
Scan terminé avec succès
Fichiers cachés: 0
**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------
- - - - - - - > 'winlogon.exe'(744)
c:\windows\system32\Ati2evxx.dll
.
Heure de fin: 2009-03-29 18:32:32
ComboFix-quarantined-files.txt 2009-03-29 16:32:31
Avant-CF: 208 673 742 848 octets libres
Après-CF: 210,963,869,696 octets libres
WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect
263 --- E O F --- 2009-03-29 09:45:08
Autres pages sur : hacker
Bonjour,
Je ne pense pas à un hack.
Télécharge Random's System Information Tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.
Double-clique sur RSIT.exe afin de lancer RSIT.
Clique Continue à l'écran Disclaimer.
Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (qui sera affiché)
ainsi que de info.txt (qui sera réduit dans la Barre des Tâches)
NB : Les rapports sont sauvegardés dans le dossier C:\rsit
Veille bien à me poster l'intégralité des rapports, vérifie qu'ils soient complets une fois que tu les as postés.
Je ne pense pas à un hack.
Télécharge Random's System Information Tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.
ainsi que de info.txt (qui sera réduit dans la Barre des Tâches)
cashouz
31 Mars 2009 20:21:58
Le info.txt
info.txt logfile of random's system information tool 1.06 2009-03-31 20:14:50
======Uninstall list======
-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class![:D]( ":D")
ISPLAY -clean
ATITool Overclocking Utility-->"C:\Program Files\ATITool\Uninstall.exe"
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Catalyst Control Center - Branding-->MsiExec.exe /I{D3B1C799-CB73-42DE-BA0F-2344793A095C}
CDBurnerXP-->"C:\Program Files\CDBurnerXP\unins000.exe"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Plus DirectShow Filters-->C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Energy Saver Advance B8.0520.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7ED169D4-5053-4166-93DF-53B12AE6C539}\setup.exe" -l0x9 -removeonly
EXPERTool ATI 4.0-->"C:\Program Files\EXPERTool ATI\unins000.exe"
forteManager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E2903F16-9A5A-4292-9D97-8328088086B6}\setup.exe" -l0x40c -removeonly
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 12-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216012FF}
Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
MadOnion.com/3DMark2001 SE-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{91B323B5-A79C-4D23-BD6D-046C565F9BCF}\Setup.exe" -l0x9 uninstall -uninst
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Media Player-->"C:\Program Files\Orange\Media Player\uninstall.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Monitor Calibration Wizard 1.0-->"C:\Program Files\Monitor Calibration Wizard\uninstall.exe"
Mozilla Firefox (3.0.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Razer DeathAdder(TM) Mouse-->C:\Program Files\InstallShield Installation Information\{EB1B8449-CD8F-485B-ADB6-02FBCFE180D3}\Setup.exe -runfromtemp -l0x0c0c -removeonly
REALTEK GbE & FE Ethernet PCI-E NIC Driver-->C:\Program Files\InstallShield Installation Information\{C9BED750-1211-4480-B1A5-718A3BE15525}\SETUP.EXE -runfromtemp -l0x040c -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\SETUP.EXE" -l0x40c -removeonly
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Ultra Defragmenter-->"C:\WINDOWS\UltraDefrag\uninstall.exe"
VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
VLC media player 0.9.8a-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Driver Package - Cypress (CyUsb) USB -->C:\PROGRA~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\cyusb_13860389BCE916343D6A5C65169C6F0C6BF6E3EA\cyusb.inf
Windows Driver Package - Razer (HidUsb) HIDClass (02/02/2007 1.0.5.0)-->C:\PROGRA~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\dadder_1D206EBC9FC4C5439CDE5E133FD5DADD76F8E58F\dadder.inf
Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
======Hosts File======
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
======Security center information======
AV: avast! antivirus 4.8.1335 [VPS 090330-0]
======System event log======
Computer Name: ARNAUD-26A9763F
Event Code: 3260
Message: Cet ordinateur a correctement été joint au workgroup 'PSG'.
Record Number: 5
Source Name: Workstation
Time Written: 20090307153032.000000+060
Event Type: Informations
User:
Computer Name: ARNAUD-26A9763F
Event Code: 6011
Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers ARNAUD-26A9763F.
Record Number: 4
Source Name: EventLog
Time Written: 20090307152925.000000+060
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 2
Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.
Record Number: 3
Source Name: Serial
Time Written: 20090307162153.000000+060
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.
Record Number: 2
Source Name: EventLog
Time Written: 20090307162132.000000+060
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Multiprocessor Free.
Record Number: 1
Source Name: EventLog
Time Written: 20090307162132.000000+060
Event Type: Informations
User:
=====Application event log=====
Computer Name: ARNAUD-26A9763F
Event Code: 1000
Message: Les compteurs de performances pour le service MSDTC (MSDTC) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 5
Source Name: LoadPerf
Time Written: 20090307153216.000000+060
Event Type: Informations
User:
Computer Name: ARNAUD-26A9763F
Event Code: 1000
Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 4
Source Name: LoadPerf
Time Written: 20090307153214.000000+060
Event Type: Informations
User:
Computer Name: ARNAUD-26A9763F
Event Code: 1000
Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 3
Source Name: LoadPerf
Time Written: 20090307152951.000000+060
Event Type: Informations
User:
Computer Name: ARNAUD-26A9763F
Event Code: 1000
Message: Les compteurs de performances pour le service PSched (PSched) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 2
Source Name: LoadPerf
Time Written: 20090307152933.000000+060
Event Type: Informations
User:
Computer Name: ARNAUD-26A9763F
Event Code: 1000
Message: Les compteurs de performances pour le service RSVP (QoS RSVP) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 1
Source Name: LoadPerf
Time Written: 20090307152932.000000+060
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=1706
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.06 2009-03-31 20:14:50
======Uninstall list======
-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class
ISPLAY -cleanATITool Overclocking Utility-->"C:\Program Files\ATITool\Uninstall.exe"
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Catalyst Control Center - Branding-->MsiExec.exe /I{D3B1C799-CB73-42DE-BA0F-2344793A095C}
CDBurnerXP-->"C:\Program Files\CDBurnerXP\unins000.exe"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Plus DirectShow Filters-->C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Energy Saver Advance B8.0520.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7ED169D4-5053-4166-93DF-53B12AE6C539}\setup.exe" -l0x9 -removeonly
EXPERTool ATI 4.0-->"C:\Program Files\EXPERTool ATI\unins000.exe"
forteManager-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E2903F16-9A5A-4292-9D97-8328088086B6}\setup.exe" -l0x40c -removeonly
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 12-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216012FF}
Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
MadOnion.com/3DMark2001 SE-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{91B323B5-A79C-4D23-BD6D-046C565F9BCF}\Setup.exe" -l0x9 uninstall -uninst
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Media Player-->"C:\Program Files\Orange\Media Player\uninstall.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464-v2)-->"C:\WINDOWS\$NtUninstallKB938464-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Monitor Calibration Wizard 1.0-->"C:\Program Files\Monitor Calibration Wizard\uninstall.exe"
Mozilla Firefox (3.0.8)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Razer DeathAdder(TM) Mouse-->C:\Program Files\InstallShield Installation Information\{EB1B8449-CD8F-485B-ADB6-02FBCFE180D3}\Setup.exe -runfromtemp -l0x0c0c -removeonly
REALTEK GbE & FE Ethernet PCI-E NIC Driver-->C:\Program Files\InstallShield Installation Information\{C9BED750-1211-4480-B1A5-718A3BE15525}\SETUP.EXE -runfromtemp -l0x040c -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\SETUP.EXE" -l0x40c -removeonly
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Ultra Defragmenter-->"C:\WINDOWS\UltraDefrag\uninstall.exe"
VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
VLC media player 0.9.8a-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Driver Package - Cypress (CyUsb) USB -->C:\PROGRA~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\cyusb_13860389BCE916343D6A5C65169C6F0C6BF6E3EA\cyusb.inf
Windows Driver Package - Razer (HidUsb) HIDClass (02/02/2007 1.0.5.0)-->C:\PROGRA~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\dadder_1D206EBC9FC4C5439CDE5E133FD5DADD76F8E58F\dadder.inf
Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
======Hosts File======
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
======Security center information======
AV: avast! antivirus 4.8.1335 [VPS 090330-0]
======System event log======
Computer Name: ARNAUD-26A9763F
Event Code: 3260
Message: Cet ordinateur a correctement été joint au workgroup 'PSG'.
Record Number: 5
Source Name: Workstation
Time Written: 20090307153032.000000+060
Event Type: Informations
User:
Computer Name: ARNAUD-26A9763F
Event Code: 6011
Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers ARNAUD-26A9763F.
Record Number: 4
Source Name: EventLog
Time Written: 20090307152925.000000+060
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 2
Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.
Record Number: 3
Source Name: Serial
Time Written: 20090307162153.000000+060
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.
Record Number: 2
Source Name: EventLog
Time Written: 20090307162132.000000+060
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Multiprocessor Free.
Record Number: 1
Source Name: EventLog
Time Written: 20090307162132.000000+060
Event Type: Informations
User:
=====Application event log=====
Computer Name: ARNAUD-26A9763F
Event Code: 1000
Message: Les compteurs de performances pour le service MSDTC (MSDTC) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 5
Source Name: LoadPerf
Time Written: 20090307153216.000000+060
Event Type: Informations
User:
Computer Name: ARNAUD-26A9763F
Event Code: 1000
Message: Les compteurs de performances pour le service TermService (Services Terminal Server) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 4
Source Name: LoadPerf
Time Written: 20090307153214.000000+060
Event Type: Informations
User:
Computer Name: ARNAUD-26A9763F
Event Code: 1000
Message: Les compteurs de performances pour le service RemoteAccess (Routage et accès distant) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 3
Source Name: LoadPerf
Time Written: 20090307152951.000000+060
Event Type: Informations
User:
Computer Name: ARNAUD-26A9763F
Event Code: 1000
Message: Les compteurs de performances pour le service PSched (PSched) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 2
Source Name: LoadPerf
Time Written: 20090307152933.000000+060
Event Type: Informations
User:
Computer Name: ARNAUD-26A9763F
Event Code: 1000
Message: Les compteurs de performances pour le service RSVP (QoS RSVP) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 1
Source Name: LoadPerf
Time Written: 20090307152932.000000+060
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=1706
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
-----------------EOF-----------------
Contenus similaires
- j'ai reussi a hacker le portable de ma copine - Forum
- site pour s'entrainer a hacker. ( légal ) - Forum
- lors d une mise a jour de mon pc, quand je me connecte sur FB j ai une page vide et je n ai aucune fonction, je n arrive pas a - Forum
- Je me suis fait hacker mon pc - Forum
- aider moi a intaller le logiciel download manager sur mon pc - Forum
- bonjour jaimerais que vous me conseiller une config pc mon budget et de 650 eur a 750 GRAND MAX - Forum
cashouz
31 Mars 2009 20:23:16
Le LoG.txt
Logfile of random's system information tool 1.06 (written by random/random)
Run by nono at 2009-03-31 20:14:39
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 201 GB (84%) free of 238 GB
Total RAM: 3326 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:14:49, on 31/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Razer\DeathAdder\razerhid.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\orange\media player\Media Player.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\EXPERTool ATI\TBPanel.exe
C:\Program Files\LG Soft India\forteManager\bin\Monitor.exe
C:\Program Files\Razer\DeathAdder\razertra.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Razer\DeathAdder\razerofa.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\nono\Bureau\VentriloMIX\Ventrilo 2.1.4.exe
C:\Documents and Settings\nono\Bureau\RSIT.exe
C:\Program Files\trend micro\nono.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [GEST] =
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DeathAdder] C:\Program Files\Razer\DeathAdder\razerhid.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray
O4 - HKCU\..\Run: [Gainward] C:\Program Files\EXPERTool ATI\TBPanel.exe /A
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: forteManager.lnk = ?
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
--
End of file - 7084 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-23 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-23 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-05-07 16862208]
"GEST"== []
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-03 61440]
"DeathAdder"=C:\Program Files\Razer\DeathAdder\razerhid.exe [2007-09-07 159744]
"ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-04-17 196608]
"ISUSScheduler"=C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [2004-04-13 69632]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-23 148888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
"OrangePlayer"=c:\program files\orange\media player\Media Player.exe [2008-12-02 319488]
"Gainward"=C:\Program Files\EXPERTool ATI\TBPanel.exe [2008-07-31 2296360]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
forteManager.lnk - C:\Program Files\LG Soft India\forteManager\bin\Monitor.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-02-04 155648]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSEXESVC]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PSEXESVC]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
======List of files/folders created in the last 1 months======
2009-03-31 20:14:39 ----D---- C:\rsit
2009-03-31 20:14:39 ----D---- C:\Program Files\trend micro
2009-03-31 18:15:39 ----A---- C:\ComboFix.txt
2009-03-31 18:13:22 ----D---- C:\ComboFix
2009-03-29 19:32:22 ----A---- C:\WINDOWS\system32\tmp.txt
2009-03-29 19:32:06 ----A---- C:\rapport.txt
2009-03-29 19:20:25 ----A---- C:\WINDOWS\system32\MSVCR71.dll
2009-03-29 19:20:25 ----A---- C:\WINDOWS\system32\MSVCP71.dll
2009-03-29 19:20:25 ----A---- C:\WINDOWS\system32\MFC71.dll
2009-03-29 19:20:25 ----A---- C:\WINDOWS\system32\aswBoot.exe
2009-03-29 19:20:23 ----D---- C:\Program Files\Alwil Software
2009-03-29 19:17:25 ----D---- C:\Documents and Settings\nono\Application Data\Malwarebytes
2009-03-29 19:17:21 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-03-29 19:17:21 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-03-29 18:35:01 ----D---- C:\Program Files\Massengeer live
2009-03-29 18:29:54 ----A---- C:\Boot.bak
2009-03-29 18:29:51 ----RASHD---- C:\cmdcons
2009-03-29 18:29:20 ----A---- C:\WINDOWS\zip.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\VFIND.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\SWXCACLS.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\SWSC.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\SWREG.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\sed.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\NIRCMD.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\grep.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\fdsv.exe
2009-03-29 18:29:17 ----D---- C:\WINDOWS\ERDNT
2009-03-29 18:29:16 ----AD---- C:\Qoobox
2009-03-29 12:57:35 ----A---- C:\WINDOWS\WORDPAD.INI
2009-03-29 11:45:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-03-29 11:45:03 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-03-29 11:45:00 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-03-29 11:44:58 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-03-29 11:44:55 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-03-29 11:44:51 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-03-29 11:44:47 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-03-29 11:44:44 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-03-29 11:44:38 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-03-29 11:44:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-03-29 11:44:32 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-03-29 11:44:29 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-03-29 11:44:26 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-03-29 11:44:24 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-03-29 11:44:21 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-03-29 11:44:19 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
2009-03-29 11:44:15 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-03-29 11:44:12 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-03-29 11:44:08 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-03-29 11:44:05 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-03-29 11:44:02 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-03-29 11:43:59 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-03-29 11:43:56 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-03-29 11:43:52 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-03-29 11:43:46 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-03-29 11:43:14 ----SHD---- C:\Config.Msi
2009-03-29 11:42:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-03-29 11:42:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-03-29 11:42:51 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-03-29 11:42:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-03-29 11:42:44 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-03-29 11:42:39 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
2009-03-28 21:32:50 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-03-28 21:32:50 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-03-28 21:26:22 ----A---- C:\WINDOWS\system32\muweb.dll
2009-03-28 21:26:22 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-03-28 21:26:22 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-03-28 19:32:06 ----D---- C:\Documents and Settings\nono\Application Data\Canneverbe_Limited
2009-03-28 19:32:02 ----D---- C:\Program Files\CDBurnerXP
2009-03-26 19:04:36 ----D---- C:\WINDOWS\Sun
2009-03-26 14:35:04 ----D---- C:\Program Files\Monitor Calibration Wizard
2009-03-24 19:51:48 ----D---- C:\Documents and Settings\nono\Application Data\ImgBurn
2009-03-23 19:50:15 ----A---- C:\WINDOWS\system32\javaws.exe
2009-03-23 19:50:15 ----A---- C:\WINDOWS\system32\javaw.exe
2009-03-23 19:50:15 ----A---- C:\WINDOWS\system32\java.exe
2009-03-23 19:50:15 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-03-23 19:50:05 ----D---- C:\Program Files\Java
2009-03-23 19:49:43 ----D---- C:\Documents and Settings\nono\Application Data\Sun
2009-03-22 16:37:15 ----D---- C:\Program Files\EXPERTool ATI
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2009-03-22 16:17:56 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2009-03-22 16:17:56 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2009-03-22 16:17:56 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2009-03-22 16:17:56 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2009-03-22 16:17:56 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2009-03-22 16:17:55 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2009-03-22 16:17:55 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2009-03-22 16:17:55 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2009-03-22 16:17:43 ----D---- C:\WINDOWS\Logs
2009-03-22 16:17:42 ----HD---- C:\WINDOWS\msdownld.tmp
2009-03-22 16:04:04 ----D---- C:\Documents and Settings\nono\Application Data\TeamViewer
2009-03-20 15:24:30 ----D---- C:\Documents and Settings\nono\Application Data\Mozilla
2009-03-20 15:24:27 ----D---- C:\Program Files\Mozilla Firefox
2009-03-18 23:45:32 ----D---- C:\WINDOWS\Minidump
2009-03-17 21:17:15 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-03-17 21:17:07 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-03-17 21:17:07 ----D---- C:\Program Files\Adobe
2009-03-15 21:05:31 ----D---- C:\Documents and Settings\nono\Application Data\Media Player
2009-03-15 21:05:15 ----D---- C:\Program Files\Orange
2009-03-15 21:05:08 ----A---- C:\WINDOWS\system32\setb9.tmp
2009-03-15 21:04:33 ----A---- C:\WINDOWS\system32\setb3.tmp
2009-03-15 21:04:24 ----D---- C:\WINDOWS\RegisteredPackages
2009-03-15 21:03:41 ----D---- C:\WINDOWS\system32\URTTEMP
2009-03-13 18:36:27 ----D---- C:\WINDOWS\UltraDefrag
2009-03-13 00:55:38 ----D---- C:\Program Files\ATITool
2009-03-10 21:06:00 ----D---- C:\WINDOWS\ie7updates
2009-03-10 21:05:50 ----D---- C:\WINDOWS\WBEM
2009-03-10 21:04:53 ----HDC---- C:\WINDOWS\ie7
2009-03-10 21:04:44 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2009-03-10 21:04:32 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2009-03-10 21:03:32 ----A---- C:\WINDOWS\system32\MRT.exe
2009-03-08 14:21:37 ----D---- C:\Program Files\MadOnion.com
2009-03-08 03:02:49 ----RA---- C:\WINDOWS\system32\LgExport.dll
2009-03-08 03:02:49 ----RA---- C:\WINDOWS\system32\LGDispDrv.dll
2009-03-08 03:02:49 ----D---- C:\Documents and Settings\All Users\Application Data\InstallShield
2009-03-08 03:02:47 ----D---- C:\Program Files\LG Soft India
2009-03-07 20:45:12 ----D---- C:\Documents and Settings\nono\Application Data\WinRAR
2009-03-07 20:45:06 ----D---- C:\Program Files\WinRAR
2009-03-07 20:32:19 ----D---- C:\Program Files\Microsoft Sync Framework
2009-03-07 20:31:52 ----D---- C:\Program Files\Microsoft
2009-03-07 20:31:37 ----D---- C:\Program Files\Windows Live SkyDrive
2009-03-07 20:31:17 ----D---- C:\Program Files\Windows Live
2009-03-07 20:28:13 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-03-07 19:59:56 ----D---- C:\Documents and Settings\nono\Application Data\Ventrilo
2009-03-07 18:37:22 ----D---- C:\Documents and Settings\nono\Application Data\DivX
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\vxblock.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxwave.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxsfs.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxmas.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxdrv.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxafs.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\px.dll
2009-03-07 18:36:27 ----D---- C:\Program Files\DivX
2009-03-07 18:34:54 ----D---- C:\Documents and Settings\nono\Application Data\vlc
2009-03-07 18:34:52 ----D---- C:\Documents and Settings\nono\Application Data\dvdcss
2009-03-07 18:33:31 ----D---- C:\Program Files\VideoLAN
2009-03-07 17:52:55 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-03-07 17:52:48 ----D---- C:\WINDOWS\system32\PreInstall
2009-03-07 17:52:47 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-03-07 17:52:46 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2009-03-07 17:52:46 ----HD---- C:\WINDOWS\$hf_mig$
2009-03-07 17:52:44 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-03-07 17:51:47 ----A---- C:\WINDOWS\system32\wups2.dll
2009-03-07 17:51:47 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2009-03-07 17:51:47 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2009-03-07 17:51:46 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-03-07 17:51:46 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2009-03-07 17:39:35 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2009-03-07 17:39:35 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2009-03-07 17:39:35 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2009-03-07 17:39:35 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2009-03-07 17:39:35 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2009-03-07 17:39:33 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2009-03-07 17:39:33 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2009-03-07 17:39:33 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2009-03-07 17:39:29 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2009-03-07 17:39:27 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2009-03-07 17:29:19 ----A---- C:\WINDOWS\system32\h323log.txt
2009-03-07 17:29:03 ----D---- C:\Documents and Settings\nono\Application Data\Google
2009-03-07 17:28:50 ----D---- C:\Documents and Settings\nono\Application Data\Macromedia
2009-03-07 17:28:50 ----D---- C:\Documents and Settings\nono\Application Data\Adobe
2009-03-07 17:28:47 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2009-03-07 17:28:46 ----D---- C:\Program Files\Google
2009-03-07 17:26:52 ----A---- C:\WINDOWS\system32\hidserv.dll
2009-03-07 17:25:34 ----D---- C:\Program Files\Warhammer Online - Age of Reckoning
2009-03-07 17:24:44 ----A---- C:\WINDOWS\system32\usbui.dll
2009-03-07 17:24:06 ----A---- C:\WINDOWS\imsins.BAK
2009-03-07 17:24:04 ----SHD---- C:\WINDOWS\Installer
2009-03-07 17:24:04 ----D---- C:\Program Files\Fichiers communs\ODBC
2009-03-07 17:24:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-03-07 17:24:04 ----A---- C:\WINDOWS\ODBCINST.INI
2009-03-07 17:24:00 ----RD---- C:\Program Files
2009-03-07 17:24:00 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
2009-03-07 17:24:00 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-03-07 17:24:00 ----D---- C:\Program Files\Fichiers communs
2009-03-07 17:23:57 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-03-07 17:23:57 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-03-07 17:23:57 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-03-07 17:23:56 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2009-03-07 17:23:56 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2009-03-07 17:23:56 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2009-03-07 17:23:56 ----D---- C:\Program Files\DIFX
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdur.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdru.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-03-07 17:23:53 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-03-07 17:23:53 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-03-07 17:23:53 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-03-07 17:23:53 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-03-07 17:23:52 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdro.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2009-03-07 17:23:49 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-03-07 17:23:49 ----A---- C:\WINDOWS\system32\irclass.dll
2009-03-07 17:23:49 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-03-07 17:23:49 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-03-07 17:23:49 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-03-07 17:23:47 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-03-07 17:23:47 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-03-07 17:23:47 ----A---- C:\WINDOWS\system32\batt.dll
2009-03-07 17:23:46 ----A---- C:\WINDOWS\system32\storprop.dll
2009-03-07 17:23:46 ----A---- C:\WINDOWS\NOTEPAD.EXE
2009-03-07 17:23:43 ----D---- C:\Program Files\Razer
2009-03-07 17:23:41 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2009-03-07 17:22:00 ----RA---- C:\WINDOWS\SET8.tmp
2009-03-07 17:21:57 ----RA---- C:\WINDOWS\SET4.tmp
2009-03-07 17:21:56 ----RA---- C:\WINDOWS\SET3.tmp
2009-03-07 17:21:52 ----D---- C:\WINDOWS\system32\CatRoot2
2009-03-07 17:21:52 ----D---- C:\WINDOWS\system32\CatRoot
2009-03-07 17:21:46 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-03-07 17:21:29 ----A---- C:\WINDOWS\setuplog.txt
2009-03-07 17:21:26 ----D---- C:\Documents and Settings
2009-03-07 17:21:25 ----SHD---- C:\System Volume Information
2009-03-07 17:21:07 ----D---- C:\Documents and Settings\nono\Application Data\ATI
2009-03-07 17:21:07 ----D---- C:\Documents and Settings\All Users\Application Data\ATI
2009-03-07 17:20:41 ----RASH---- C:\boot.ini
2009-03-07 17:17:48 ----RSD---- C:\WINDOWS\assembly
2009-03-07 17:17:34 ----D---- C:\WINDOWS\Microsoft.NET
2009-03-07 17:14:47 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-03-07 17:14:47 ----RSD---- C:\WINDOWS\Fonts
2009-03-07 17:14:47 ----RD---- C:\WINDOWS\Web
2009-03-07 17:14:47 ----HD---- C:\WINDOWS\inf
2009-03-07 17:14:47 ----D---- C:\WINDOWS\WinSxS
2009-03-07 17:14:47 ----D---- C:\WINDOWS\twain_32
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Temp
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\wins
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\wbem
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\usmt
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\spool
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\ShellExt
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\Setup
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\ras
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\oobe
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\npp
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\mui
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\inetsrv
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\IME
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\icsxml
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\ias
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\fr-fr
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\fr
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\export
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\drivers
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\dhcp
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\config
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\3com_dmi
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\3076
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\2052
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1054
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1042
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1041
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1037
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1036
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1033
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1031
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1028
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1025
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system
2009-03-07 17:14:47 ----D---- C:\WINDOWS\security
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Resources
2009-03-07 17:14:47 ----D---- C:\WINDOWS\repair
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Provisioning
2009-03-07 17:14:47 ----D---- C:\WINDOWS\PeerNet
2009-03-07 17:14:47 ----D---- C:\WINDOWS\pchealth
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Network Diagnostic
2009-03-07 17:14:47 ----D---- C:\WINDOWS\mui
2009-03-07 17:14:47 ----D---- C:\WINDOWS\msapps
2009-03-07 17:14:47 ----D---- C:\WINDOWS\msagent
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Media
2009-03-07 17:14:47 ----D---- C:\WINDOWS\L2Schemas
2009-03-07 17:14:47 ----D---- C:\WINDOWS\java
2009-03-07 17:14:47 ----D---- C:\WINDOWS\ime
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Help
2009-03-07 17:14:47 ----D---- C:\WINDOWS\ehome
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Driver Cache
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Debug
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Cursors
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Connection Wizard
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Config
2009-03-07 17:14:47 ----D---- C:\WINDOWS\AppPatch
2009-03-07 17:14:47 ----D---- C:\WINDOWS\addins
2009-03-07 17:14:47 ----D---- C:\WINDOWS
2009-03-07 17:12:46 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2009-03-07 17:12:00 ----D---- C:\Program Files\ATI Technologies
2009-03-07 17:11:41 ----D---- C:\ATI
2009-03-07 16:55:52 ----A---- C:\WINDOWS\system32\wpa.bak
2009-03-07 16:51:07 ----D---- C:\WINDOWS\OPTIONS
2009-03-07 16:51:03 ----D---- C:\Documents and Settings\nono\Application Data\InstallShield
2009-03-07 16:50:46 ----D---- C:\WINDOWS\system32\Lang
2009-03-07 16:49:36 ----R---- C:\WINDOWS\system32\ChCfg.exe
2009-03-07 16:49:20 ----D---- C:\WINDOWS\system32\RTCOM
2009-03-07 16:49:19 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-03-07 16:49:14 ----R---- C:\WINDOWS\SoundMan.exe
2009-03-07 16:49:14 ----R---- C:\WINDOWS\SkyTel.exe
2009-03-07 16:49:14 ----R---- C:\WINDOWS\RtlUpd.exe
2009-03-07 16:49:13 ----R---- C:\WINDOWS\RTLCPL.exe
2009-03-07 16:49:10 ----R---- C:\WINDOWS\RTHDCPL.exe
2009-03-07 16:49:10 ----R---- C:\WINDOWS\MicCal.exe
2009-03-07 16:49:09 ----R---- C:\WINDOWS\alcwzrd.exe
2009-03-07 16:49:09 ----R---- C:\WINDOWS\Alcmtr.exe
2009-03-07 16:49:09 ----D---- C:\Program Files\Realtek
2009-03-07 16:49:06 ----R---- C:\WINDOWS\RtlExUpd.dll
2009-03-07 16:49:06 ----A---- C:\WINDOWS\HideWin.exe
2009-03-07 16:47:07 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-03-07 16:47:06 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-03-07 16:47:05 ----RA---- C:\WINDOWS\system32\CSVer.dll
2009-03-07 16:47:05 ----D---- C:\Program Files\Intel
2009-03-07 16:47:00 ----D---- C:\Intel
2009-03-07 16:46:48 ----HD---- C:\Program Files\InstallShield Installation Information
2009-03-07 16:46:48 ----D---- C:\Program Files\GIGABYTE
2009-03-07 16:46:46 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-03-07 16:43:31 ----D---- C:\WINDOWS\system32\appmgmt
2009-03-07 16:40:03 ----D---- C:\Documents and Settings\nono\Application Data\Identities
2009-03-07 16:40:02 ----HD---- C:\Program Files\Uninstall Information
2009-03-07 16:39:48 ----SD---- C:\Documents and Settings\nono\Application Data\Microsoft
2009-03-07 16:39:48 ----ASH---- C:\Documents and Settings\nono\Application Data\desktop.ini
2009-03-07 16:37:38 ----D---- C:\WINDOWS\SoftwareDistribution
2009-03-07 16:37:37 ----SD---- C:\WINDOWS\system32\Microsoft
2009-03-07 16:37:37 ----D---- C:\WINDOWS\Prefetch
2009-03-07 16:37:37 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-03-07 16:35:10 ----D---- C:\WINDOWS\system32\xircom
2009-03-07 16:35:10 ----D---- C:\Program Files\xerox
2009-03-07 16:35:10 ----D---- C:\Program Files\microsoft frontpage
2009-03-07 16:34:53 ----A---- C:\WINDOWS\control.ini
2009-03-07 16:34:53 ----A---- C:\AUTOEXEC.BAT
2009-03-07 16:34:47 ----A---- C:\WINDOWS\OEWABLog.txt
2009-03-07 16:34:44 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-03-07 16:34:14 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-03-07 16:34:14 ----RD---- C:\WINDOWS\Offline Web Pages
2009-03-07 16:34:14 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-03-07 16:34:11 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-03-07 16:34:09 ----HD---- C:\Program Files\WindowsUpdate
2009-03-07 16:34:06 ----D---- C:\Program Files\Services en ligne
2009-03-07 16:33:53 ----D---- C:\WINDOWS\system32\DirectX
2009-03-07 16:33:48 ----A---- C:\WINDOWS\system32\atrace.dll
2009-03-07 16:33:45 ----A---- C:\WINDOWS\system32\desktop.ini
2009-03-07 16:33:45 ----A---- C:\WINDOWS\desktop.ini
2009-03-07 16:33:39 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-03-07 16:33:38 ----D---- C:\Program Files\Fichiers communs\Services
2009-03-07 16:33:38 ----A---- C:\WINDOWS\system32\acctres.dll
2009-03-07 16:33:35 ----SD---- C:\WINDOWS\Tasks
2009-03-07 16:33:35 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-03-07 16:33:34 ----D---- C:\Program Files\Fichiers communs\MSSoap
2009-03-07 16:33:30 ----D---- C:\WINDOWS\srchasst
2009-03-07 16:33:29 ----D---- C:\WINDOWS\system32\Macromed
2009-03-07 16:33:27 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-03-07 16:33:27 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-03-07 16:33:27 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-03-07 16:33:27 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\wups.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-03-07 16:33:25 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-03-07 16:33:25 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-03-07 16:33:21 ----D---- C:\Program Files\Movie Maker
2009-03-07 16:33:05 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-03-07 16:33:05 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-03-07 16:33:05 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-03-07 16:33:05 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-03-07 16:33:01 ----A---- C:\WINDOWS\system32\fltMc.exe
2009-03-07 16:33:01 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-03-07 16:33:00 ----D---- C:\WINDOWS\system32\Restore
2009-03-07 16:33:00 ----A---- C:\WINDOWS\system32\srsvc.dll
2009-03-07 16:33:00 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-03-07 16:33:00 ----A---- C:\WINDOWS\system32\srclient.dll
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\msconf.dll
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\ils.dll
2009-03-07 16:32:56 ----D---- C:\Program Files\NetMeeting
2009-03-07 16:32:56 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-03-07 16:32:56 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-03-07 16:32:55 ----A---- C:\WINDOWS\system32\inetres.dll
2009-03-07 16:32:55 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-03-07 16:32:53 ----D---- C:\Program Files\Outlook Express
2009-03-07 16:32:53 ----A---- C:\WINDOWS\system32\schedsvc.dll
2009-03-07 16:32:53 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-03-07 16:32:53 ----A---- C:\WINDOWS\system32\mstask.dll
2009-03-07 16:32:52 ----A---- C:\WINDOWS\system32\isign32.dll
2009-03-07 16:32:52 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-03-07 16:32:52 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-03-07 16:32:52 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-03-07 16:32:47 ----D---- C:\Program Files\Fichiers communs\System
2009-03-07 16:32:46 ----D---- C:\Program Files\Internet Explorer
2009-03-07 16:32:24 ----D---- C:\Program Files\ComPlus Applications
2009-03-07 16:32:22 ----A---- C:\WINDOWS\vbaddin.ini
2009-03-07 16:32:22 ----A---- C:\WINDOWS\vb.ini
2009-03-07 16:32:19 ----D---- C:\WINDOWS\Registration
2009-03-07 16:32:14 ----D---- C:\Program Files\Windows Media Player
2009-03-07 16:32:14 ----D---- C:\Program Files\Online Services
2009-03-07 16:32:09 ----D---- C:\Program Files\Messenger
2009-03-07 16:32:05 ----D---- C:\Program Files\MSN Gaming Zone
2009-03-07 16:32:05 ----A---- C:\WINDOWS\system32\write.exe
2009-03-07 16:31:59 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-03-07 16:31:58 ----A---- C:\WINDOWS\system32\winchat.exe
2009-03-07 16:31:58 ----A---- C:\WINDOWS\system32\hticons.dll
2009-03-07 16:31:58 ----A---- C:\WINDOWS\system32\avwav.dll
2009-03-07 16:31:58 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-03-07 16:31:58 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-03-07 16:31:52 ----A---- C:\WINDOWS\system32\sol.exe
2009-03-07 16:31:52 ----A---- C:\WINDOWS\system32\getuname.dll
2009-03-07 16:31:52 ----A---- C:\WINDOWS\system32\charmap.exe
2009-03-07 16:31:52 ----A---- C:\WINDOWS\system32\calc.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\winmine.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\tskill.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\reset.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\freecell.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\tscon.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\shadow.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\regini.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\msg.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\logoff.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-03-07 16:31:49 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-03-07 16:31:45 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-03-07 16:31:31 ----D---- C:\Program Files\MSN
2009-03-07 16:31:30 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-03-07 16:31:29 ----D---- C:\Program Files\Windows NT
2009-03-07 16:31:29 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-03-07 16:31:29 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-03-07 16:31:29 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-03-07 16:31:28 ----A---- C:\WINDOWS\system32\spider.exe
2009-03-07 16:31:28 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-03-07 16:31:28 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-03-07 16:31:27 ----A---- C:\WINDOWS\system32\tsgqec.dll
2009-03-07 16:31:27 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-03-07 16:31:27 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2009-03-07 16:31:26 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-03-07 16:31:26 ----A---- C:\WINDOWS\system32\aaclient.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\termsrv.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-03-07 16:31:24 ----D---- C:\WINDOWS\system32\MsDtc
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-03-07 16:31:23 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-03-07 16:31:23 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-03-07 16:31:23 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-03-07 16:31:23 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-03-07 16:31:22 ----D---- C:\WINDOWS\system32\Com
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\stclient.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\colbact.dll
2009-03-07 16:31:21 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-03-07 16:31:21 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-03-07 16:31:21 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-03-07 16:31:21 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-03-07 16:31:20 ----A---- C:\WINDOWS\system32\comuid.dll
2009-03-07 16:31:20 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-03-07 16:31:20 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-03-07 16:31:20 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-03-07 16:31:14 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-03-07 16:31:14 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-03-07 16:31:14 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-03-07 16:31:14 ----A---- C:\WINDOWS\system32\cmprops.dll
======List of files/folders modified in the last 1 months======
2009-03-31 18:15:03 ----A---- C:\WINDOWS\system.ini
2009-03-07 16:34:53 ----A---- C:\WINDOWS\win.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 ATITool;ATITool Overclocking Utility; C:\WINDOWS\system32\DRIVERS\ATITool.sys [2006-11-10 24064]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]
R2 hidusb;HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-02-04 3488768]
R3 DAdderFltr;DeathAdder Mouse; C:\WINDOWS\system32\drivers\dadder.sys [2007-08-02 22784]
R3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-05-07 4739072]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12288]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R4 catchme;catchme; \??\C:\DOCUME~1\nono\LOCALS~1\Temp\catchme.sys []
S3 aujasnkj;aujasnkj; \??\C:\DOCUME~1\nono\LOCALS~1\Temp\aujasnkj.sys []
S3 LGDDCDevice;LGDDCDevice; \??\C:\Program Files\LG Soft India\forteManager\bin\I2CDriver.sys []
S3 LGII2CDevice;LGII2CDevice; \??\C:\Program Files\LG Soft India\forteManager\bin\PII2CDriver.sys []
S3 ultradfg;ultradfg; C:\WINDOWS\System32\DRIVERS\ultradfg.sys [2009-02-18 30720]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-02-04 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 GEST Service;GEST Service for program management.; C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe [2008-05-13 80392]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-23 152984]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-02-03 593920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
-----------------EOF-----------------
Logfile of random's system information tool 1.06 (written by random/random)
Run by nono at 2009-03-31 20:14:39
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 201 GB (84%) free of 238 GB
Total RAM: 3326 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:14:49, on 31/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Razer\DeathAdder\razerhid.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\orange\media player\Media Player.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\EXPERTool ATI\TBPanel.exe
C:\Program Files\LG Soft India\forteManager\bin\Monitor.exe
C:\Program Files\Razer\DeathAdder\razertra.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Razer\DeathAdder\razerofa.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\nono\Bureau\VentriloMIX\Ventrilo 2.1.4.exe
C:\Documents and Settings\nono\Bureau\RSIT.exe
C:\Program Files\trend micro\nono.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [GEST] =
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [DeathAdder] C:\Program Files\Razer\DeathAdder\razerhid.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray
O4 - HKCU\..\Run: [Gainward] C:\Program Files\EXPERTool ATI\TBPanel.exe /A
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: forteManager.lnk = ?
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
--
End of file - 7084 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-23 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-23 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-05-07 16862208]
"GEST"== []
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-03 61440]
"DeathAdder"=C:\Program Files\Razer\DeathAdder\razerhid.exe [2007-09-07 159744]
"ISUSPM Startup"=C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-04-17 196608]
"ISUSScheduler"=C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [2004-04-13 69632]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-23 148888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
"OrangePlayer"=c:\program files\orange\media player\Media Player.exe [2008-12-02 319488]
"Gainward"=C:\Program Files\EXPERTool ATI\TBPanel.exe [2008-07-31 2296360]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
forteManager.lnk - C:\Program Files\LG Soft India\forteManager\bin\Monitor.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-02-04 155648]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSEXESVC]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PSEXESVC]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
======List of files/folders created in the last 1 months======
2009-03-31 20:14:39 ----D---- C:\rsit
2009-03-31 20:14:39 ----D---- C:\Program Files\trend micro
2009-03-31 18:15:39 ----A---- C:\ComboFix.txt
2009-03-31 18:13:22 ----D---- C:\ComboFix
2009-03-29 19:32:22 ----A---- C:\WINDOWS\system32\tmp.txt
2009-03-29 19:32:06 ----A---- C:\rapport.txt
2009-03-29 19:20:25 ----A---- C:\WINDOWS\system32\MSVCR71.dll
2009-03-29 19:20:25 ----A---- C:\WINDOWS\system32\MSVCP71.dll
2009-03-29 19:20:25 ----A---- C:\WINDOWS\system32\MFC71.dll
2009-03-29 19:20:25 ----A---- C:\WINDOWS\system32\aswBoot.exe
2009-03-29 19:20:23 ----D---- C:\Program Files\Alwil Software
2009-03-29 19:17:25 ----D---- C:\Documents and Settings\nono\Application Data\Malwarebytes
2009-03-29 19:17:21 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-03-29 19:17:21 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-03-29 18:35:01 ----D---- C:\Program Files\Massengeer live
2009-03-29 18:29:54 ----A---- C:\Boot.bak
2009-03-29 18:29:51 ----RASHD---- C:\cmdcons
2009-03-29 18:29:20 ----A---- C:\WINDOWS\zip.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\VFIND.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\SWXCACLS.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\SWSC.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\SWREG.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\sed.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\NIRCMD.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\grep.exe
2009-03-29 18:29:20 ----A---- C:\WINDOWS\fdsv.exe
2009-03-29 18:29:17 ----D---- C:\WINDOWS\ERDNT
2009-03-29 18:29:16 ----AD---- C:\Qoobox
2009-03-29 12:57:35 ----A---- C:\WINDOWS\WORDPAD.INI
2009-03-29 11:45:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-03-29 11:45:03 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-03-29 11:45:00 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-03-29 11:44:58 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-03-29 11:44:55 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-03-29 11:44:51 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-03-29 11:44:47 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-03-29 11:44:44 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-03-29 11:44:38 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-03-29 11:44:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-03-29 11:44:32 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-03-29 11:44:29 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-03-29 11:44:26 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-03-29 11:44:24 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-03-29 11:44:21 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-03-29 11:44:19 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
2009-03-29 11:44:15 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-03-29 11:44:12 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-03-29 11:44:08 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-03-29 11:44:05 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-03-29 11:44:02 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-03-29 11:43:59 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-03-29 11:43:56 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-03-29 11:43:52 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-03-29 11:43:46 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-03-29 11:43:14 ----SHD---- C:\Config.Msi
2009-03-29 11:42:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-03-29 11:42:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-03-29 11:42:51 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-03-29 11:42:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-03-29 11:42:44 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-03-29 11:42:39 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
2009-03-28 21:32:50 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-03-28 21:32:50 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-03-28 21:26:22 ----A---- C:\WINDOWS\system32\muweb.dll
2009-03-28 21:26:22 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-03-28 21:26:22 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-03-28 19:32:06 ----D---- C:\Documents and Settings\nono\Application Data\Canneverbe_Limited
2009-03-28 19:32:02 ----D---- C:\Program Files\CDBurnerXP
2009-03-26 19:04:36 ----D---- C:\WINDOWS\Sun
2009-03-26 14:35:04 ----D---- C:\Program Files\Monitor Calibration Wizard
2009-03-24 19:51:48 ----D---- C:\Documents and Settings\nono\Application Data\ImgBurn
2009-03-23 19:50:15 ----A---- C:\WINDOWS\system32\javaws.exe
2009-03-23 19:50:15 ----A---- C:\WINDOWS\system32\javaw.exe
2009-03-23 19:50:15 ----A---- C:\WINDOWS\system32\java.exe
2009-03-23 19:50:15 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-03-23 19:50:05 ----D---- C:\Program Files\Java
2009-03-23 19:49:43 ----D---- C:\Documents and Settings\nono\Application Data\Sun
2009-03-22 16:37:15 ----D---- C:\Program Files\EXPERTool ATI
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2009-03-22 16:17:58 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2009-03-22 16:17:57 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2009-03-22 16:17:56 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2009-03-22 16:17:56 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2009-03-22 16:17:56 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2009-03-22 16:17:56 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2009-03-22 16:17:56 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2009-03-22 16:17:55 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2009-03-22 16:17:55 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2009-03-22 16:17:55 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2009-03-22 16:17:43 ----D---- C:\WINDOWS\Logs
2009-03-22 16:17:42 ----HD---- C:\WINDOWS\msdownld.tmp
2009-03-22 16:04:04 ----D---- C:\Documents and Settings\nono\Application Data\TeamViewer
2009-03-20 15:24:30 ----D---- C:\Documents and Settings\nono\Application Data\Mozilla
2009-03-20 15:24:27 ----D---- C:\Program Files\Mozilla Firefox
2009-03-18 23:45:32 ----D---- C:\WINDOWS\Minidump
2009-03-17 21:17:15 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-03-17 21:17:07 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-03-17 21:17:07 ----D---- C:\Program Files\Adobe
2009-03-15 21:05:31 ----D---- C:\Documents and Settings\nono\Application Data\Media Player
2009-03-15 21:05:15 ----D---- C:\Program Files\Orange
2009-03-15 21:05:08 ----A---- C:\WINDOWS\system32\setb9.tmp
2009-03-15 21:04:33 ----A---- C:\WINDOWS\system32\setb3.tmp
2009-03-15 21:04:24 ----D---- C:\WINDOWS\RegisteredPackages
2009-03-15 21:03:41 ----D---- C:\WINDOWS\system32\URTTEMP
2009-03-13 18:36:27 ----D---- C:\WINDOWS\UltraDefrag
2009-03-13 00:55:38 ----D---- C:\Program Files\ATITool
2009-03-10 21:06:00 ----D---- C:\WINDOWS\ie7updates
2009-03-10 21:05:50 ----D---- C:\WINDOWS\WBEM
2009-03-10 21:04:53 ----HDC---- C:\WINDOWS\ie7
2009-03-10 21:04:44 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2009-03-10 21:04:32 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2009-03-10 21:03:32 ----A---- C:\WINDOWS\system32\MRT.exe
2009-03-08 14:21:37 ----D---- C:\Program Files\MadOnion.com
2009-03-08 03:02:49 ----RA---- C:\WINDOWS\system32\LgExport.dll
2009-03-08 03:02:49 ----RA---- C:\WINDOWS\system32\LGDispDrv.dll
2009-03-08 03:02:49 ----D---- C:\Documents and Settings\All Users\Application Data\InstallShield
2009-03-08 03:02:47 ----D---- C:\Program Files\LG Soft India
2009-03-07 20:45:12 ----D---- C:\Documents and Settings\nono\Application Data\WinRAR
2009-03-07 20:45:06 ----D---- C:\Program Files\WinRAR
2009-03-07 20:32:19 ----D---- C:\Program Files\Microsoft Sync Framework
2009-03-07 20:31:52 ----D---- C:\Program Files\Microsoft
2009-03-07 20:31:37 ----D---- C:\Program Files\Windows Live SkyDrive
2009-03-07 20:31:17 ----D---- C:\Program Files\Windows Live
2009-03-07 20:28:13 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-03-07 19:59:56 ----D---- C:\Documents and Settings\nono\Application Data\Ventrilo
2009-03-07 18:37:22 ----D---- C:\Documents and Settings\nono\Application Data\DivX
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\vxblock.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxwave.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxsfs.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxmas.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxdrv.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\pxafs.dll
2009-03-07 18:36:37 ----N---- C:\WINDOWS\system32\px.dll
2009-03-07 18:36:27 ----D---- C:\Program Files\DivX
2009-03-07 18:34:54 ----D---- C:\Documents and Settings\nono\Application Data\vlc
2009-03-07 18:34:52 ----D---- C:\Documents and Settings\nono\Application Data\dvdcss
2009-03-07 18:33:31 ----D---- C:\Program Files\VideoLAN
2009-03-07 17:52:55 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-03-07 17:52:48 ----D---- C:\WINDOWS\system32\PreInstall
2009-03-07 17:52:47 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-03-07 17:52:46 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2009-03-07 17:52:46 ----HD---- C:\WINDOWS\$hf_mig$
2009-03-07 17:52:44 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-03-07 17:51:47 ----A---- C:\WINDOWS\system32\wups2.dll
2009-03-07 17:51:47 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2009-03-07 17:51:47 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2009-03-07 17:51:46 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-03-07 17:51:46 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2009-03-07 17:39:38 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2009-03-07 17:39:37 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2009-03-07 17:39:36 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2009-03-07 17:39:35 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2009-03-07 17:39:35 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2009-03-07 17:39:35 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2009-03-07 17:39:35 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2009-03-07 17:39:35 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-03-07 17:39:34 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2009-03-07 17:39:33 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2009-03-07 17:39:33 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2009-03-07 17:39:33 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2009-03-07 17:39:29 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2009-03-07 17:39:28 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2009-03-07 17:39:27 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2009-03-07 17:29:19 ----A---- C:\WINDOWS\system32\h323log.txt
2009-03-07 17:29:03 ----D---- C:\Documents and Settings\nono\Application Data\Google
2009-03-07 17:28:50 ----D---- C:\Documents and Settings\nono\Application Data\Macromedia
2009-03-07 17:28:50 ----D---- C:\Documents and Settings\nono\Application Data\Adobe
2009-03-07 17:28:47 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2009-03-07 17:28:46 ----D---- C:\Program Files\Google
2009-03-07 17:26:52 ----A---- C:\WINDOWS\system32\hidserv.dll
2009-03-07 17:25:34 ----D---- C:\Program Files\Warhammer Online - Age of Reckoning
2009-03-07 17:24:44 ----A---- C:\WINDOWS\system32\usbui.dll
2009-03-07 17:24:06 ----A---- C:\WINDOWS\imsins.BAK
2009-03-07 17:24:04 ----SHD---- C:\WINDOWS\Installer
2009-03-07 17:24:04 ----D---- C:\Program Files\Fichiers communs\ODBC
2009-03-07 17:24:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-03-07 17:24:04 ----A---- C:\WINDOWS\ODBCINST.INI
2009-03-07 17:24:00 ----RD---- C:\Program Files
2009-03-07 17:24:00 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
2009-03-07 17:24:00 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-03-07 17:24:00 ----D---- C:\Program Files\Fichiers communs
2009-03-07 17:23:57 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-03-07 17:23:57 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-03-07 17:23:57 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-03-07 17:23:56 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2009-03-07 17:23:56 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2009-03-07 17:23:56 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2009-03-07 17:23:56 ----D---- C:\Program Files\DIFX
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdur.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdru.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2009-03-07 17:23:55 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-03-07 17:23:54 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-03-07 17:23:53 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-03-07 17:23:53 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-03-07 17:23:53 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-03-07 17:23:53 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-03-07 17:23:52 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdro.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2009-03-07 17:23:51 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2009-03-07 17:23:49 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-03-07 17:23:49 ----A---- C:\WINDOWS\system32\irclass.dll
2009-03-07 17:23:49 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-03-07 17:23:49 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-03-07 17:23:49 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-03-07 17:23:47 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-03-07 17:23:47 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-03-07 17:23:47 ----A---- C:\WINDOWS\system32\batt.dll
2009-03-07 17:23:46 ----A---- C:\WINDOWS\system32\storprop.dll
2009-03-07 17:23:46 ----A---- C:\WINDOWS\NOTEPAD.EXE
2009-03-07 17:23:43 ----D---- C:\Program Files\Razer
2009-03-07 17:23:41 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2009-03-07 17:22:00 ----RA---- C:\WINDOWS\SET8.tmp
2009-03-07 17:21:57 ----RA---- C:\WINDOWS\SET4.tmp
2009-03-07 17:21:56 ----RA---- C:\WINDOWS\SET3.tmp
2009-03-07 17:21:52 ----D---- C:\WINDOWS\system32\CatRoot2
2009-03-07 17:21:52 ----D---- C:\WINDOWS\system32\CatRoot
2009-03-07 17:21:46 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-03-07 17:21:29 ----A---- C:\WINDOWS\setuplog.txt
2009-03-07 17:21:26 ----D---- C:\Documents and Settings
2009-03-07 17:21:25 ----SHD---- C:\System Volume Information
2009-03-07 17:21:07 ----D---- C:\Documents and Settings\nono\Application Data\ATI
2009-03-07 17:21:07 ----D---- C:\Documents and Settings\All Users\Application Data\ATI
2009-03-07 17:20:41 ----RASH---- C:\boot.ini
2009-03-07 17:17:48 ----RSD---- C:\WINDOWS\assembly
2009-03-07 17:17:34 ----D---- C:\WINDOWS\Microsoft.NET
2009-03-07 17:14:47 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-03-07 17:14:47 ----RSD---- C:\WINDOWS\Fonts
2009-03-07 17:14:47 ----RD---- C:\WINDOWS\Web
2009-03-07 17:14:47 ----HD---- C:\WINDOWS\inf
2009-03-07 17:14:47 ----D---- C:\WINDOWS\WinSxS
2009-03-07 17:14:47 ----D---- C:\WINDOWS\twain_32
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Temp
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\wins
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\wbem
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\usmt
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\spool
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\ShellExt
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\Setup
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\ras
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\oobe
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\npp
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\mui
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\inetsrv
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\IME
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\icsxml
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\ias
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\fr-fr
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\fr
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\export
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\drivers
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\dhcp
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\config
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\3com_dmi
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\3076
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\2052
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1054
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1042
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1041
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1037
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1036
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1033
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1031
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1028
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32\1025
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system32
2009-03-07 17:14:47 ----D---- C:\WINDOWS\system
2009-03-07 17:14:47 ----D---- C:\WINDOWS\security
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Resources
2009-03-07 17:14:47 ----D---- C:\WINDOWS\repair
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Provisioning
2009-03-07 17:14:47 ----D---- C:\WINDOWS\PeerNet
2009-03-07 17:14:47 ----D---- C:\WINDOWS\pchealth
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Network Diagnostic
2009-03-07 17:14:47 ----D---- C:\WINDOWS\mui
2009-03-07 17:14:47 ----D---- C:\WINDOWS\msapps
2009-03-07 17:14:47 ----D---- C:\WINDOWS\msagent
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Media
2009-03-07 17:14:47 ----D---- C:\WINDOWS\L2Schemas
2009-03-07 17:14:47 ----D---- C:\WINDOWS\java
2009-03-07 17:14:47 ----D---- C:\WINDOWS\ime
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Help
2009-03-07 17:14:47 ----D---- C:\WINDOWS\ehome
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Driver Cache
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Debug
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Cursors
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Connection Wizard
2009-03-07 17:14:47 ----D---- C:\WINDOWS\Config
2009-03-07 17:14:47 ----D---- C:\WINDOWS\AppPatch
2009-03-07 17:14:47 ----D---- C:\WINDOWS\addins
2009-03-07 17:14:47 ----D---- C:\WINDOWS
2009-03-07 17:12:46 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2009-03-07 17:12:00 ----D---- C:\Program Files\ATI Technologies
2009-03-07 17:11:41 ----D---- C:\ATI
2009-03-07 16:55:52 ----A---- C:\WINDOWS\system32\wpa.bak
2009-03-07 16:51:07 ----D---- C:\WINDOWS\OPTIONS
2009-03-07 16:51:03 ----D---- C:\Documents and Settings\nono\Application Data\InstallShield
2009-03-07 16:50:46 ----D---- C:\WINDOWS\system32\Lang
2009-03-07 16:49:36 ----R---- C:\WINDOWS\system32\ChCfg.exe
2009-03-07 16:49:20 ----D---- C:\WINDOWS\system32\RTCOM
2009-03-07 16:49:19 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-03-07 16:49:14 ----R---- C:\WINDOWS\SoundMan.exe
2009-03-07 16:49:14 ----R---- C:\WINDOWS\SkyTel.exe
2009-03-07 16:49:14 ----R---- C:\WINDOWS\RtlUpd.exe
2009-03-07 16:49:13 ----R---- C:\WINDOWS\RTLCPL.exe
2009-03-07 16:49:10 ----R---- C:\WINDOWS\RTHDCPL.exe
2009-03-07 16:49:10 ----R---- C:\WINDOWS\MicCal.exe
2009-03-07 16:49:09 ----R---- C:\WINDOWS\alcwzrd.exe
2009-03-07 16:49:09 ----R---- C:\WINDOWS\Alcmtr.exe
2009-03-07 16:49:09 ----D---- C:\Program Files\Realtek
2009-03-07 16:49:06 ----R---- C:\WINDOWS\RtlExUpd.dll
2009-03-07 16:49:06 ----A---- C:\WINDOWS\HideWin.exe
2009-03-07 16:47:07 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-03-07 16:47:06 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-03-07 16:47:05 ----RA---- C:\WINDOWS\system32\CSVer.dll
2009-03-07 16:47:05 ----D---- C:\Program Files\Intel
2009-03-07 16:47:00 ----D---- C:\Intel
2009-03-07 16:46:48 ----HD---- C:\Program Files\InstallShield Installation Information
2009-03-07 16:46:48 ----D---- C:\Program Files\GIGABYTE
2009-03-07 16:46:46 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-03-07 16:43:31 ----D---- C:\WINDOWS\system32\appmgmt
2009-03-07 16:40:03 ----D---- C:\Documents and Settings\nono\Application Data\Identities
2009-03-07 16:40:02 ----HD---- C:\Program Files\Uninstall Information
2009-03-07 16:39:48 ----SD---- C:\Documents and Settings\nono\Application Data\Microsoft
2009-03-07 16:39:48 ----ASH---- C:\Documents and Settings\nono\Application Data\desktop.ini
2009-03-07 16:37:38 ----D---- C:\WINDOWS\SoftwareDistribution
2009-03-07 16:37:37 ----SD---- C:\WINDOWS\system32\Microsoft
2009-03-07 16:37:37 ----D---- C:\WINDOWS\Prefetch
2009-03-07 16:37:37 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-03-07 16:35:10 ----D---- C:\WINDOWS\system32\xircom
2009-03-07 16:35:10 ----D---- C:\Program Files\xerox
2009-03-07 16:35:10 ----D---- C:\Program Files\microsoft frontpage
2009-03-07 16:34:53 ----A---- C:\WINDOWS\control.ini
2009-03-07 16:34:53 ----A---- C:\AUTOEXEC.BAT
2009-03-07 16:34:47 ----A---- C:\WINDOWS\OEWABLog.txt
2009-03-07 16:34:44 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-03-07 16:34:14 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-03-07 16:34:14 ----RD---- C:\WINDOWS\Offline Web Pages
2009-03-07 16:34:14 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-03-07 16:34:11 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-03-07 16:34:09 ----HD---- C:\Program Files\WindowsUpdate
2009-03-07 16:34:06 ----D---- C:\Program Files\Services en ligne
2009-03-07 16:33:53 ----D---- C:\WINDOWS\system32\DirectX
2009-03-07 16:33:48 ----A---- C:\WINDOWS\system32\atrace.dll
2009-03-07 16:33:45 ----A---- C:\WINDOWS\system32\desktop.ini
2009-03-07 16:33:45 ----A---- C:\WINDOWS\desktop.ini
2009-03-07 16:33:39 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-03-07 16:33:38 ----D---- C:\Program Files\Fichiers communs\Services
2009-03-07 16:33:38 ----A---- C:\WINDOWS\system32\acctres.dll
2009-03-07 16:33:35 ----SD---- C:\WINDOWS\Tasks
2009-03-07 16:33:35 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-03-07 16:33:34 ----D---- C:\Program Files\Fichiers communs\MSSoap
2009-03-07 16:33:30 ----D---- C:\WINDOWS\srchasst
2009-03-07 16:33:29 ----D---- C:\WINDOWS\system32\Macromed
2009-03-07 16:33:27 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-03-07 16:33:27 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-03-07 16:33:27 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-03-07 16:33:27 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\wups.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-03-07 16:33:26 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-03-07 16:33:25 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-03-07 16:33:25 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-03-07 16:33:21 ----D---- C:\Program Files\Movie Maker
2009-03-07 16:33:05 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-03-07 16:33:05 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-03-07 16:33:05 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-03-07 16:33:05 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-03-07 16:33:01 ----A---- C:\WINDOWS\system32\fltMc.exe
2009-03-07 16:33:01 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-03-07 16:33:00 ----D---- C:\WINDOWS\system32\Restore
2009-03-07 16:33:00 ----A---- C:\WINDOWS\system32\srsvc.dll
2009-03-07 16:33:00 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-03-07 16:33:00 ----A---- C:\WINDOWS\system32\srclient.dll
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\msconf.dll
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-03-07 16:32:59 ----A---- C:\WINDOWS\system32\ils.dll
2009-03-07 16:32:56 ----D---- C:\Program Files\NetMeeting
2009-03-07 16:32:56 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-03-07 16:32:56 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-03-07 16:32:55 ----A---- C:\WINDOWS\system32\inetres.dll
2009-03-07 16:32:55 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-03-07 16:32:53 ----D---- C:\Program Files\Outlook Express
2009-03-07 16:32:53 ----A---- C:\WINDOWS\system32\schedsvc.dll
2009-03-07 16:32:53 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-03-07 16:32:53 ----A---- C:\WINDOWS\system32\mstask.dll
2009-03-07 16:32:52 ----A---- C:\WINDOWS\system32\isign32.dll
2009-03-07 16:32:52 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-03-07 16:32:52 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-03-07 16:32:52 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-03-07 16:32:47 ----D---- C:\Program Files\Fichiers communs\System
2009-03-07 16:32:46 ----D---- C:\Program Files\Internet Explorer
2009-03-07 16:32:24 ----D---- C:\Program Files\ComPlus Applications
2009-03-07 16:32:22 ----A---- C:\WINDOWS\vbaddin.ini
2009-03-07 16:32:22 ----A---- C:\WINDOWS\vb.ini
2009-03-07 16:32:19 ----D---- C:\WINDOWS\Registration
2009-03-07 16:32:14 ----D---- C:\Program Files\Windows Media Player
2009-03-07 16:32:14 ----D---- C:\Program Files\Online Services
2009-03-07 16:32:09 ----D---- C:\Program Files\Messenger
2009-03-07 16:32:05 ----D---- C:\Program Files\MSN Gaming Zone
2009-03-07 16:32:05 ----A---- C:\WINDOWS\system32\write.exe
2009-03-07 16:31:59 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-03-07 16:31:58 ----A---- C:\WINDOWS\system32\winchat.exe
2009-03-07 16:31:58 ----A---- C:\WINDOWS\system32\hticons.dll
2009-03-07 16:31:58 ----A---- C:\WINDOWS\system32\avwav.dll
2009-03-07 16:31:58 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-03-07 16:31:58 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-03-07 16:31:52 ----A---- C:\WINDOWS\system32\sol.exe
2009-03-07 16:31:52 ----A---- C:\WINDOWS\system32\getuname.dll
2009-03-07 16:31:52 ----A---- C:\WINDOWS\system32\charmap.exe
2009-03-07 16:31:52 ----A---- C:\WINDOWS\system32\calc.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\winmine.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\tskill.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\reset.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-03-07 16:31:51 ----A---- C:\WINDOWS\system32\freecell.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\tscon.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\shadow.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\regini.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\msg.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\logoff.exe
2009-03-07 16:31:50 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-03-07 16:31:49 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-03-07 16:31:45 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-03-07 16:31:31 ----D---- C:\Program Files\MSN
2009-03-07 16:31:30 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-03-07 16:31:29 ----D---- C:\Program Files\Windows NT
2009-03-07 16:31:29 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-03-07 16:31:29 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-03-07 16:31:29 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-03-07 16:31:28 ----A---- C:\WINDOWS\system32\spider.exe
2009-03-07 16:31:28 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-03-07 16:31:28 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-03-07 16:31:27 ----A---- C:\WINDOWS\system32\tsgqec.dll
2009-03-07 16:31:27 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-03-07 16:31:27 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2009-03-07 16:31:26 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-03-07 16:31:26 ----A---- C:\WINDOWS\system32\aaclient.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\termsrv.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-03-07 16:31:25 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-03-07 16:31:24 ----D---- C:\WINDOWS\system32\MsDtc
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-03-07 16:31:24 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-03-07 16:31:23 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-03-07 16:31:23 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-03-07 16:31:23 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-03-07 16:31:23 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-03-07 16:31:22 ----D---- C:\WINDOWS\system32\Com
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\stclient.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-03-07 16:31:22 ----A---- C:\WINDOWS\system32\colbact.dll
2009-03-07 16:31:21 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-03-07 16:31:21 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-03-07 16:31:21 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-03-07 16:31:21 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-03-07 16:31:20 ----A---- C:\WINDOWS\system32\comuid.dll
2009-03-07 16:31:20 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-03-07 16:31:20 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-03-07 16:31:20 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-03-07 16:31:14 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-03-07 16:31:14 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-03-07 16:31:14 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-03-07 16:31:14 ----A---- C:\WINDOWS\system32\cmprops.dll
======List of files/folders modified in the last 1 months======
2009-03-31 18:15:03 ----A---- C:\WINDOWS\system.ini
2009-03-07 16:34:53 ----A---- C:\WINDOWS\win.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 ATITool;ATITool Overclocking Utility; C:\WINDOWS\system32\DRIVERS\ATITool.sys [2006-11-10 24064]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]
R2 hidusb;HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-02-04 3488768]
R3 DAdderFltr;DeathAdder Mouse; C:\WINDOWS\system32\drivers\dadder.sys [2007-08-02 22784]
R3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-05-07 4739072]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12288]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R4 catchme;catchme; \??\C:\DOCUME~1\nono\LOCALS~1\Temp\catchme.sys []
S3 aujasnkj;aujasnkj; \??\C:\DOCUME~1\nono\LOCALS~1\Temp\aujasnkj.sys []
S3 LGDDCDevice;LGDDCDevice; \??\C:\Program Files\LG Soft India\forteManager\bin\I2CDriver.sys []
S3 LGII2CDevice;LGII2CDevice; \??\C:\Program Files\LG Soft India\forteManager\bin\PII2CDriver.sys []
S3 ultradfg;ultradfg; C:\WINDOWS\System32\DRIVERS\ultradfg.sys [2009-02-18 30720]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-02-04 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 GEST Service;GEST Service for program management.; C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe [2008-05-13 80392]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-23 152984]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-02-03 593920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
-----------------EOF-----------------
cashouz
31 Mars 2009 21:41:20
cashouz
1 Avril 2009 16:04:03
Contenus similaires
- RésoluSalut ! Ma mère a pris mon câble d'alimentation de mon pc . Je peux en prendre un autre que celui de base ? Sur mon alimenta Forum
- Résolucomment controler un pc a distance Forum
- Résolureinitialiser mon pc a l'etat d'usine windows 10 hp 15.6 merci Forum
- RésoluIl n'a qu'1 an et mon PC WIN10 rame énormément... Forum
- Résolumon pc s'est éteint car batterie vide et depuis ce temps ma souris optique refuse de se brancher a mon window 10 Forum
- Résolucomment téléphoner de pc a portable? Forum
- Voir plus
