Sujet Précédent Sujet Suivant

Pc lent pub qui s'affiche /Trojan.Agent!sd6

packman0023 Messages postés 260 Statut Membre -
kevin05 Messages postés 3814 Date d'inscription Statut Contributeur sécurité Dernière intervention - 28 janv. 2009 à 19:41

Bonjour,
mon pc est lent et spiware doctor me trouve toujour ca " Trojan.Agent!sd6
mais ca reviend toujour
voila un scane avec RSIT .
Que doije faire svp ?

Logfile of random's system information tool 1.05 (written by random/random)
Run by moi at 2009-01-28 14:37:28
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 24 GB (60%) free of 40 GB
Total RAM: 1535 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:37:39, on 28/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\lxddcoms.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe
C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\AVENGINE.EXE
c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE
C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Creative\Shared Files\CamTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\SRVLOAD.EXE
C:\Program Files\Panda Security\Panda Internet Security 2008\WebProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PavBckPT.exe
C:\WINDOWS\system32\rundll32.exe
C:\Documents and Settings\moi\Mes documents\RSIT.exe
C:\WINDOWS\System32\wbem\wmiprvse.exe
C:\Program Files\Trend Micro\HijackThis\moi.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\psimreal.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\avciman.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.club-vaio.sony-europe.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [PD0630 STISvc] RunDLL32.exe P0630Pin.dll,RunDLL32EP 513
O4 - HKLM\..\Run: [VOR] C:\Program Files\sony\OnlineRegistration\VOR.exe /SCHEDULER
O4 - HKLM\..\Run: [LXDDCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDDtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Internet Security 2008\Inicio.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Creative WebCam Tray] "C:\Program Files\Creative\Shared Files\CamTray.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.sony-europe.com/
O15 - Trusted Zone: *.sony-europe.com
O15 - Trusted Zone: *.sonystyle-europe.com
O15 - Trusted Zone: *.vaio-link.com
O20 - Winlogon Notify: opnomNDW - opnomNDW.dll (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: lxdd_device - - C:\WINDOWS\system32\lxddcoms.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Panda Software Controller - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe
O23 - Service: Panda Antispam Engine (pmshellsrv) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
O23 - Service: Panda Host Service (PSHost) - Panda Software International - c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe

--
End of file - 8395 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\gzmmdfmd.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2008-11-18 408952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2009-01-13 2161728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll [2009-01-13 657904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2009-01-13 2161728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ezShieldProtector for Px"=C:\WINDOWS\System32\ezSP_Px.exe [2002-08-20 40960]
"AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2003-05-23 88363]
"ATIModeChange"=C:\WINDOWS\system32\Ati2mdxx.exe [2001-09-04 28672]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2003-07-06 335872]
"NvCplDaemon"=C:\WINDOWS\System32\NvCpl.dll [2003-04-02 4616192]
"nwiz"=nwiz.exe /installquiet []
"PD0630 STISvc"=C:\WINDOWS\system32\P0630Pin.dll [2005-06-05 36864]
"VOR"=C:\Program Files\sony\OnlineRegistration\VOR.exe [2002-08-21 1243648]
"LXDDCATS"=rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXDDtime.dll []
"ISTray"=C:\Program Files\Spyware Doctor\pctsTray.exe [2009-01-13 1168264]
"APVXDWIN"=C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE [2007-07-23 406832]
"SCANINICIO"=C:\Program Files\Panda Security\Panda Internet Security 2008\Inicio.exe [2007-07-11 27952]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-01-13 39408]
"Creative WebCam Tray"=C:\Program Files\Creative\Shared Files\CamTray.exe [2005-03-29 258048]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FaxCenterServer]
C:\Program Files\Lexmark Fax Solutions\fm3032.exe [2007-02-13 312240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddamon]
C:\Program Files\Lexmark 2500 Series\lxddamon.exe [2007-02-06 20480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddmon.exe]
C:\Program Files\Lexmark 2500 Series\lxddmon.exe [2007-02-13 291760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avldr]
C:\WINDOWS\system32\avldr.dll [2007-02-15 50736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\opnomNDW]
opnomNDW.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
C:\WINDOWS\system32\wvUMFxxw

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\lxddcoms.exe"="C:\WINDOWS\system32\lxddcoms.exe:*:Enabled:Lexmark Communications System"
"C:\Program Files\Lexmark 2500 Series\lxddamon.exe"="C:\Program Files\Lexmark 2500 Series\lxddamon.exe:*:Enabled:Lexmark Device Monitor"
"C:\Program Files\Lexmark 2500 Series\App4R.exe"="C:\Program Files\Lexmark 2500 Series\App4R.exe:*:Enabled:Lexmark Imaging Studio"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Lexmark 2500 Series\app4r.exe"="C:\Program Files\Lexmark 2500 Series\App4R.exe:*:Enabled:BorgListener"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4e734017-e0c1-11dd-8753-000c6ed9aa0d}]
shell\AutoRun\command - I:\Memorybar.exe

======File associations======

.js - open - C:\PROGRA~1\PANDAS~1\PANDAI~1\PavScrip.exe "%1" %*
.vbs - open - C:\PROGRA~1\PANDAS~1\PANDAI~1\PavScrip.exe "%1" %*

======List of files/folders created in the last 1 months======

2009-01-28 14:37:28 ----D---- C:\rsit
2009-01-28 14:31:46 ----D---- C:\Hitjacthis
2009-01-28 14:13:14 ----D---- C:\Program Files\Trend Micro
2009-01-28 13:38:55 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-01-28 12:05:04 ----A---- C:\WINDOWS\ntbtlog.txt
2009-01-27 15:12:33 ----A---- C:\WINDOWS\system32\ptpusd.dll
2009-01-27 15:12:33 ----A---- C:\WINDOWS\system32\ptpusb.dll
2009-01-26 12:20:46 ----D---- C:\Documents and Settings\All Users\Application Data\sentinel
2009-01-26 12:08:11 ----D---- C:\Documents and Settings\All Users\Application Data\Backup
2009-01-26 12:08:08 ----A---- C:\WINDOWS\system32\MSVCR71.DLL
2009-01-26 12:08:08 ----A---- C:\WINDOWS\system32\MSVCP71.DLL
2009-01-26 12:07:58 ----A---- C:\WINDOWS\system32\msxml3a.dll
2009-01-26 12:07:58 ----A---- C:\WINDOWS\system32\HHActiveX.dll
2009-01-26 12:07:55 ----A---- C:\WINDOWS\system32\TpUtil.dll
2009-01-26 12:07:55 ----A---- C:\WINDOWS\system32\SYSTOOLS.DLL
2009-01-26 12:07:55 ----A---- C:\WINDOWS\system32\PavSHook.dll
2009-01-26 12:07:55 ----A---- C:\WINDOWS\system32\pavipc.dll
2009-01-26 12:07:51 ----D---- C:\WINDOWS\system32\PAV
2009-01-26 12:07:51 ----A---- C:\WINDOWS\system32\avldr.dll
2009-01-26 12:07:50 ----D---- C:\Program Files\Panda Security
2009-01-26 12:06:52 ----D---- C:\Program Files\Fichiers communs\Panda Software
2009-01-24 19:10:14 ----A---- C:\WINDOWS\system32\bb634133-.txt
2009-01-24 19:09:36 ----ASH---- C:\WINDOWS\system32\wxxFMUvw.ini2
2009-01-24 19:09:36 ----ASH---- C:\WINDOWS\system32\wxxFMUvw.ini
2009-01-23 15:43:15 ----D---- C:\Program Files\uTorrent
2009-01-23 15:43:11 ----D---- C:\Documents and Settings\moi\Application Data\uTorrent
2009-01-23 14:30:28 ----D---- C:\Program Files\eMule
2009-01-22 18:09:34 ----D---- C:\Documents and Settings\moi\Application Data\Uniblue
2009-01-22 10:37:12 ----D---- C:\Documents and Settings\moi\Application Data\Lexmark Imaging Studio
2009-01-20 23:45:03 ----D---- C:\Program Files\PokerStars
2009-01-20 11:44:10 ----D---- C:\divx
2009-01-20 11:43:58 ----D---- C:\Documents and Settings\moi\Application Data\DivX
2009-01-20 11:43:15 ----N---- C:\WINDOWS\system32\pxsfs.dll
2009-01-20 11:43:15 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2009-01-20 11:43:15 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2009-01-20 11:43:15 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2009-01-20 11:43:15 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2009-01-20 11:43:15 ----N---- C:\WINDOWS\system32\pxafs.dll
2009-01-20 11:43:03 ----D---- C:\Program Files\DivX
2009-01-19 10:28:47 ----D---- C:\Program Files\bwin
2009-01-18 03:00:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-01-18 03:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-01-17 19:38:39 ----D---- C:\WINDOWS\Prefetch
2009-01-17 17:54:16 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-01-17 17:54:12 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-01-17 17:54:07 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-01-17 17:54:02 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2009-01-17 17:53:56 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-01-17 17:53:51 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-01-17 17:53:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-01-17 17:53:38 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-01-17 17:53:33 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-01-17 17:53:27 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2009-01-17 17:53:22 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-01-17 17:53:17 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-01-17 17:53:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-01-17 17:53:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-01-17 17:53:01 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-01-17 17:52:56 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-01-17 17:52:51 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-01-17 17:52:46 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-01-17 17:52:41 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-01-17 17:52:37 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2009-01-17 17:49:48 ----D---- C:\WINDOWS\system32\fr
2009-01-17 17:49:48 ----D---- C:\WINDOWS\l2schemas
2009-01-16 22:36:06 ----RA---- C:\WINDOWS\system32\Memorybar.exe
2009-01-16 01:17:10 ----N---- C:\WINDOWS\system32\wmphoto.dll
2009-01-16 01:17:09 ----N---- C:\WINDOWS\system32\wlanapi.dll
2009-01-16 01:17:08 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2009-01-16 01:17:08 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2009-01-16 01:17:05 ----N---- C:\WINDOWS\system32\tspkg.dll
2009-01-16 01:17:05 ----N---- C:\WINDOWS\system32\tsgqec.dll
2009-01-16 01:17:00 ----N---- C:\WINDOWS\system32\setupn.exe
2009-01-16 01:16:59 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2009-01-16 01:16:58 ----N---- C:\WINDOWS\system32\rasqec.dll
2009-01-16 01:16:58 ----N---- C:\WINDOWS\system32\qutil.dll
2009-01-16 01:16:57 ----N---- C:\WINDOWS\system32\qcliprov.dll
2009-01-16 01:16:57 ----N---- C:\WINDOWS\system32\qagentrt.dll
2009-01-16 01:16:57 ----N---- C:\WINDOWS\system32\qagent.dll
2009-01-16 01:16:57 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2009-01-16 01:16:56 ----N---- C:\WINDOWS\system32\onex.dll
2009-01-16 01:16:53 ----N---- C:\WINDOWS\system32\napstat.exe
2009-01-16 01:16:53 ----N---- C:\WINDOWS\system32\napmontr.dll
2009-01-16 01:16:53 ----N---- C:\WINDOWS\system32\napipsec.dll
2009-01-16 01:16:53 ----N---- C:\WINDOWS\system32\msxml6r.dll
2009-01-16 01:16:52 ----N---- C:\WINDOWS\system32\msxml6.dll
2009-01-16 01:16:52 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2009-01-16 01:16:52 ----N---- C:\WINDOWS\system32\mssha.dll
2009-01-16 01:16:46 ----N---- C:\WINDOWS\system32\mmcperf.exe
2009-01-16 01:16:46 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2009-01-16 01:16:46 ----N---- C:\WINDOWS\system32\mmcex.dll
2009-01-16 01:16:46 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2009-01-16 01:16:41 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2009-01-16 01:16:41 ----N---- C:\WINDOWS\system32\kmsvc.dll
2009-01-16 01:16:40 ----N---- C:\WINDOWS\system32\kbdpash.dll
2009-01-16 01:16:40 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2009-01-16 01:16:40 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2009-01-16 01:16:40 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2009-01-16 01:16:36 ----A---- C:\WINDOWS\005377_.tmp
2009-01-16 01:16:35 ----N---- C:\WINDOWS\system32\eapsvc.dll
2009-01-16 01:16:35 ----N---- C:\WINDOWS\system32\eapqec.dll
2009-01-16 01:16:35 ----N---- C:\WINDOWS\system32\eappprxy.dll
2009-01-16 01:16:35 ----N---- C:\WINDOWS\system32\eapphost.dll
2009-01-16 01:16:35 ----N---- C:\WINDOWS\system32\eappgnui.dll
2009-01-16 01:16:35 ----N---- C:\WINDOWS\system32\eappcfg.dll
2009-01-16 01:16:35 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2009-01-16 01:16:35 ----N---- C:\WINDOWS\system32\eapolqec.dll
2009-01-16 01:16:34 ----N---- C:\WINDOWS\system32\dot3ui.dll
2009-01-16 01:16:34 ----N---- C:\WINDOWS\system32\dot3svc.dll
2009-01-16 01:16:34 ----N---- C:\WINDOWS\system32\dot3msm.dll
2009-01-16 01:16:34 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2009-01-16 01:16:34 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2009-01-16 01:16:34 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2009-01-16 01:16:34 ----N---- C:\WINDOWS\system32\dot3api.dll
2009-01-16 01:16:33 ----N---- C:\WINDOWS\system32\dimsroam.dll
2009-01-16 01:16:33 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2009-01-16 01:16:33 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2009-01-16 01:16:32 ----N---- C:\WINDOWS\system32\credssp.dll
2009-01-16 01:16:29 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2009-01-16 01:16:29 ----N---- C:\WINDOWS\system32\azroles.dll
2009-01-16 01:16:28 ----N---- C:\WINDOWS\system32\aaclient.dll
2009-01-15 22:37:49 ----D---- C:\Program Files\PC Inspector File Recovery
2009-01-15 00:45:19 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
2009-01-15 00:45:14 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-01-15 00:45:11 ----HDC---- C:\WINDOWS\$NtUninstallKB958687_0$
2009-01-14 17:37:12 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2009-01-14 17:37:07 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2009-01-14 17:37:01 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2009-01-14 17:36:56 ----HDC---- C:\WINDOWS\$NtUninstallKB923723$
2009-01-14 17:36:51 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-01-14 17:36:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2009-01-14 17:36:40 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2009-01-14 17:36:34 ----HDC---- C:\WINDOWS\$NtUninstallKB951698_0$
2009-01-14 17:36:19 ----HDC---- C:\WINDOWS\$NtUninstallKB956841_0$
2009-01-14 17:36:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
2009-01-14 17:35:56 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
2009-01-13 23:47:57 ----HDC---- C:\WINDOWS\$NtUninstallKB957095_0$
2009-01-13 23:47:37 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP9$
2009-01-13 23:46:38 ----HDC---- C:\WINDOWS\$NtUninstallKB927891$
2009-01-13 23:46:17 ----HDC---- C:\WINDOWS\$NtUninstallKB954211_0$
2009-01-13 23:45:58 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-01-13 23:45:13 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2009-01-13 23:44:53 ----HDC---- C:\WINDOWS\$NtUninstallKB957097_0$
2009-01-13 23:44:33 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2009-01-13 23:44:12 ----HDC---- C:\WINDOWS\$NtUninstallKB922582$
2009-01-13 23:43:50 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$
2009-01-13 23:43:30 ----HDC---- C:\WINDOWS\$NtUninstallKB886185$
2009-01-13 23:43:11 ----HDC---- C:\WINDOWS\$NtUninstallKB938464_0$
2009-01-13 23:42:51 ----HDC---- C:\WINDOWS\$NtUninstallKB954600_0$
2009-01-13 23:42:30 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
2009-01-13 23:42:10 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2009-01-13 23:41:50 ----HDC---- C:\WINDOWS\$NtUninstallKB944653$
2009-01-13 23:41:28 ----HDC---- C:\WINDOWS\$NtUninstallKB928843$
2009-01-13 18:36:30 ----D---- C:\Program Files\Microsoft
2009-01-13 18:36:14 ----D---- C:\Program Files\Windows Live SkyDrive
2009-01-13 18:35:51 ----D---- C:\Program Files\Windows Live
2009-01-13 18:16:57 ----D---- C:\Program Files\Fichiers communs\Windows Live
2009-01-13 17:26:40 ----D---- C:\Poker
2009-01-13 13:50:00 ----D---- C:\WINDOWS\system32\LogFiles
2009-01-13 13:25:59 ----A---- C:\WINDOWS\system32\muweb.dll
2009-01-13 13:25:59 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-01-13 13:25:59 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-01-13 12:29:44 ----D---- C:\Program Files\Spyware Doctor
2009-01-13 12:29:44 ----D---- C:\Documents and Settings\moi\Application Data\PC Tools
2009-01-13 12:29:43 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-01-13 12:19:55 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2009-01-13 12:16:55 ----D---- C:\WINDOWS\pss
2009-01-13 12:12:24 ----D---- C:\Documents and Settings\moi\Application Data\WinRAR
2009-01-13 12:04:28 ----D---- C:\WINDOWS\ie7updates
2009-01-13 12:04:01 ----HD---- C:\WINDOWS\msdownld.tmp
2009-01-13 12:03:52 ----D---- C:\WINDOWS\WBEM
2009-01-13 12:03:52 ----D---- C:\WINDOWS\system32\fr-fr
2009-01-13 12:02:53 ----HDC---- C:\WINDOWS\ie7
2009-01-13 12:02:30 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2009-01-13 12:02:08 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2009-01-13 12:01:34 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2009-01-13 12:01:32 ----N---- C:\WINDOWS\system32\xmllite.dll
2009-01-13 12:00:19 ----D---- C:\WINDOWS\network diagnostic
2009-01-13 12:00:17 ----HDC---- C:\WINDOWS\$NtUninstallKB914440$
2009-01-13 12:00:11 ----HDC---- C:\WINDOWS\$NtUninstallKB904942$
2009-01-13 11:52:54 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-01-13 11:51:37 ----SHDC---- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2009-01-13 11:51:11 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
2009-01-13 11:27:52 ----D---- C:\Documents and Settings\moi\Application Data\Mozilla
2009-01-13 11:27:18 ----D---- C:\Documents and Settings\moi\Application Data\FaxCtr
2009-01-13 11:24:48 ----D---- C:\Program Files\Lx_cats
2009-01-13 11:24:25 ----D---- C:\logs
2009-01-13 11:24:13 ----A---- C:\WINDOWS\system32\lxddvs.dll
2009-01-13 11:24:11 ----A---- C:\WINDOWS\system32\lxddcoin.dll
2009-01-13 11:23:51 ----A---- C:\WINDOWS\system32\wiafbdrv.dll
2009-01-13 11:23:47 ----A---- C:\WINDOWS\system32\lxdddrs.dll
2009-01-13 11:23:47 ----A---- C:\WINDOWS\system32\lxddcnv4.dll
2009-01-13 11:23:47 ----A---- C:\WINDOWS\system32\lxddcaps.dll
2009-01-13 11:23:20 ----A---- C:\WINDOWS\system32\LXF3PMRC.DLL
2009-01-13 11:23:20 ----A---- C:\WINDOWS\system32\LXF3PMON.DLL
2009-01-13 11:23:20 ----A---- C:\WINDOWS\system32\lxf3oem.dll
2009-01-13 11:23:20 ----A---- C:\WINDOWS\system32\LXF3FXPU.DLL
2009-01-13 11:23:20 ----A---- C:\WINDOWS\system32\IMHOST32.DLL
2009-01-13 11:23:20 ----A---- C:\WINDOWS\system32\IMGMAN32.DLL
2009-01-13 11:23:19 ----D---- C:\Documents and Settings\All Users\Application Data\FaxCtr
2009-01-13 11:06:17 ----D---- C:\Documents and Settings\moi\Application Data\vlc
2009-01-13 11:05:26 ----D---- C:\Program Files\VideoLAN
2009-01-13 10:59:52 ----D---- C:\Program Files\Mozilla Firefox
2009-01-13 10:55:04 ----HDC---- C:\WINDOWS\$NtUninstallKB924496$
2009-01-13 10:54:44 ----HDC---- C:\WINDOWS\$NtUninstallKB924191$
2009-01-13 10:54:26 ----HDC---- C:\WINDOWS\$NtUninstallKB923414$
2009-01-13 10:54:07 ----HDC---- C:\WINDOWS\$NtUninstallKB923191$
2009-01-13 10:53:48 ----HDC---- C:\WINDOWS\$NtUninstallKB922819$
2009-01-13 10:53:28 ----HDC---- C:\WINDOWS\$NtUninstallKB922616$
2009-01-13 10:53:11 ----HDC---- C:\WINDOWS\$NtUninstallKB921883$
2009-01-13 10:52:53 ----HDC---- C:\WINDOWS\$NtUninstallKB921398$
2009-01-13 10:52:36 ----HDC---- C:\WINDOWS\$NtUninstallKB920685$
2009-01-13 10:52:20 ----HDC---- C:\WINDOWS\$NtUninstallKB920683$
2009-01-13 10:52:03 ----HDC---- C:\WINDOWS\$NtUninstallKB920670$
2009-01-13 10:51:48 ----HDC---- C:\WINDOWS\$NtUninstallKB919007$
2009-01-13 10:51:29 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
2009-01-13 10:51:06 ----HDC---- C:\WINDOWS\$NtUninstallKB917422$
2009-01-13 10:50:47 ----HDC---- C:\WINDOWS\$NtUninstallKB917344$
2009-01-13 10:50:26 ----HDC---- C:\WINDOWS\$NtUninstallKB914389$
2009-01-13 10:50:05 ----HDC---- C:\WINDOWS\$NtUninstallKB914388$
2009-01-13 10:49:41 ----HDC---- C:\WINDOWS\$NtUninstallKB913580$
2009-01-13 10:49:24 ----HDC---- C:\WINDOWS\$NtUninstallKB912919$
2009-01-13 10:49:07 ----HDC---- C:\WINDOWS\$NtUninstallKB911927$
2009-01-13 10:48:50 ----HDC---- C:\WINDOWS\$NtUninstallKB911562$
2009-01-13 10:48:34 ----HDC---- C:\WINDOWS\$NtUninstallKB911280$
2009-01-13 10:48:16 ----HDC---- C:\WINDOWS\$NtUninstallKB910437$
2009-01-13 10:47:57 ----HDC---- C:\WINDOWS\$NtUninstallKB908531$
2009-01-13 10:47:35 ----HDC---- C:\WINDOWS\$NtUninstallKB908519$
2009-01-13 10:47:20 ----HDC---- C:\WINDOWS\$NtUninstallKB905749$
2009-01-13 10:47:03 ----HDC---- C:\WINDOWS\$NtUninstallKB905414$
2009-01-13 10:46:45 ----HDC---- C:\WINDOWS\$NtUninstallKB902400$
2009-01-13 10:46:25 ----HDC---- C:\WINDOWS\$NtUninstallKB901214$
2009-01-13 10:46:06 ----HDC---- C:\WINDOWS\$NtUninstallKB901017$
2009-01-13 10:45:47 ----HDC---- C:\WINDOWS\$NtUninstallKB900725$
2009-01-13 10:45:28 ----HDC---- C:\WINDOWS\$NtUninstallKB899591$
2009-01-13 10:45:12 ----HDC---- C:\WINDOWS\$NtUninstallKB899587$
2009-01-13 10:44:56 ----HDC---- C:\WINDOWS\$NtUninstallKB896428$
2009-01-13 10:44:41 ----HDC---- C:\WINDOWS\$NtUninstallKB896424$
2009-01-13 10:44:26 ----HDC---- C:\WINDOWS\$NtUninstallKB896423$
2009-01-13 10:44:11 ----HDC---- C:\WINDOWS\$NtUninstallKB896358$
2009-01-13 10:43:55 ----HDC---- C:\WINDOWS\$NtUninstallKB893756$
2009-01-13 10:43:39 ----HDC---- C:\WINDOWS\$NtUninstallKB891781$
2009-01-13 10:43:20 ----HDC---- C:\WINDOWS\$NtUninstallKB890859$
2009-01-13 10:43:05 ----HDC---- C:\WINDOWS\$NtUninstallKB890046$
2009-01-13 10:42:50 ----HDC---- C:\WINDOWS\$NtUninstallKB888302$
2009-01-13 10:42:35 ----HDC---- C:\WINDOWS\$NtUninstallKB885836$
2009-01-13 10:42:20 ----HDC---- C:\WINDOWS\$NtUninstallKB885835$
2009-01-13 10:42:01 ----HDC---- C:\WINDOWS\$NtUninstallKB873339$
2009-01-13 10:39:16 ----D---- C:\WINDOWS\peernet
2009-01-13 10:39:15 ----D---- C:\WINDOWS\provisioning
2009-01-13 10:37:40 ----D---- C:\WINDOWS\ServicePackFiles
2009-01-13 10:34:04 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2009-01-13 10:34:01 ----D---- C:\WINDOWS\EHome
2009-01-13 07:15:37 ----HDC---- C:\WINDOWS\$NtUninstallKB899587_0$
2009-01-13 07:15:26 ----HDC---- C:\WINDOWS\$NtUninstallKB924191_0$
2009-01-13 07:15:13 ----HDC---- C:\WINDOWS\$NtUninstallKB922819_0$
2009-01-13 07:14:58 ----HDC---- C:\WINDOWS\$NtUninstallKB885835_0$
2009-01-13 07:14:47 ----HDC---- C:\WINDOWS\$NtUninstallKB885836_0$
2009-01-13 07:14:35 ----HDC---- C:\WINDOWS\$NtUninstallKB923414_0$
2009-01-13 07:14:24 ----HDC---- C:\WINDOWS\$NtUninstallKB921883_0$
2009-01-13 07:14:14 ----HDC---- C:\WINDOWS\$NtUninstallKB917734_WMP9$
2009-01-13 07:13:49 ----HDC---- C:\WINDOWS\$NtUninstallKB911927_0$
2009-01-13 07:13:37 ----HDC---- C:\WINDOWS\$NtUninstallKB922616_0$
2009-01-13 07:13:27 ----HDC---- C:\WINDOWS\$NtUninstallKB901017_0$
2009-01-13 07:13:17 ----HDC---- C:\WINDOWS\$NtUninstallKB899591_0$
2009-01-13 07:13:04 ----HDC---- C:\WINDOWS\$NtUninstallKB920685_0$
2009-01-13 07:12:50 ----HDC---- C:\WINDOWS\$NtUninstallKB896424_0$
2009-01-13 07:12:39 ----HDC---- C:\WINDOWS\$NtUninstallKB893756_0$
2009-01-13 07:12:26 ----HDC---- C:\WINDOWS\$NtUninstallKB911280_0$
2009-01-13 07:12:16 ----HDC---- C:\WINDOWS\$NtUninstallKB911562_0$
2009-01-13 07:12:07 ----HDC---- C:\WINDOWS\$NtUninstallKB896423_0$
2009-01-13 07:10:49 ----A---- C:\WINDOWS\system32\MRT.exe
2009-01-13 07:10:35 ----HDC---- C:\WINDOWS\$NtUninstallKB873339_0$
2009-01-13 07:10:16 ----HDC---- C:\WINDOWS\$NtUninstallKB924496_0$
2009-01-13 07:10:06 ----HDC---- C:\WINDOWS\$NtUninstallKB925486-IE6SP1-20060918.120000$
2009-01-13 07:09:54 ----HDC---- C:\WINDOWS\$NtUninstallKB921398_0$
2009-01-13 07:09:43 ----HDC---- C:\WINDOWS\$NtUninstallKB918439-IE6SP1-20060530.145346$
2009-01-13 07:09:35 ----HDC---- C:\WINDOWS\$NtUninstallKB896358_0$
2009-01-13 07:09:25 ----HDC---- C:\WINDOWS\$NtUninstallKB910437_0$
2009-01-13 07:09:16 ----HDC---- C:\WINDOWS\$NtUninstallKB898458$
2009-01-13 07:09:05 ----HDC---- C:\WINDOWS\$NtUninstallKB905495$
2009-01-13 07:08:56 ----HDC---- C:\WINDOWS\$NtUninstallKB911564$
2009-01-13 07:08:33 ----HDC---- C:\WINDOWS\$NtUninstallKB902400_0$
2009-01-13 07:08:21 ----HDC---- C:\WINDOWS\$NtUninstallKB920670_0$
2009-01-13 07:08:11 ----HDC---- C:\WINDOWS\$NtUninstallKB891781_0$
2009-01-13 07:08:02 ----HDC---- C:\WINDOWS\$NtUninstallKB890046_0$
2009-01-13 07:07:53 ----HDC---- C:\WINDOWS\$NtUninstallKB919007_0$
2009-01-13 07:07:43 ----HDC---- C:\WINDOWS\$NtUninstallKB914388_0$
2009-01-13 07:07:34 ----HDC---- C:\WINDOWS\$NtUninstallKB904706$
2009-01-13 07:07:13 ----HDC---- C:\WINDOWS\$NtUninstallKB917344_0$
2009-01-13 07:07:03 ----HDC---- C:\WINDOWS\$NtUninstallKB905414_0$
2009-01-13 07:06:51 ----HDC---- C:\WINDOWS\$NtUninstallKB917953_0$
2009-01-13 07:06:43 ----HDC---- C:\WINDOWS\$NtUninstallKB901214_0$
2009-01-13 07:06:33 ----HDC---- C:\WINDOWS\$NtUninstallKB923191_0$
2009-01-13 07:06:23 ----HDC---- C:\WINDOWS\$NtUninstallKB917422_0$
2009-01-13 07:06:14 ----HDC---- C:\WINDOWS\$NtUninstallKB888302_0$
2009-01-13 07:06:00 ----HDC---- C:\WINDOWS\$NtUninstallKB900725_0$
2009-01-13 07:05:48 ----HDC---- C:\WINDOWS\$NtUninstallKB912919_0$
2009-01-13 07:05:39 ----HDC---- C:\WINDOWS\$NtUninstallKB918899-IE6SP1-20060725.123917$
2009-01-13 07:05:29 ----HDC---- C:\WINDOWS\$NtUninstallKB911567-OE6SP1-20060316.165634$
2009-01-13 07:05:19 ----HDC---- C:\WINDOWS\$NtUninstallKB908531_0$
2009-01-13 07:05:12 ----HDC---- C:\WINDOWS\$NtUninstallKB905749_0$
2009-01-13 07:05:05 ----HDC---- C:\WINDOWS\$NtUninstallKB913580_0$
2009-01-13 07:04:59 ----HDC---- C:\WINDOWS\$NtUninstallKB896428_0$
2009-01-13 07:04:53 ----HDC---- C:\WINDOWS\$NtUninstallKB835409$
2009-01-13 07:04:48 ----HDC---- C:\WINDOWS\$NtUninstallKB908519_0$
2009-01-13 07:04:42 ----HDC---- C:\WINDOWS\$NtUninstallKB920683_0$
2009-01-13 07:04:37 ----HDC---- C:\WINDOWS\$NtUninstallKB914389_0$
2009-01-13 07:04:01 ----HDC---- C:\WINDOWS\$NtUninstallKB890859_0$
2009-01-13 06:58:45 ----N---- C:\WINDOWS\system32\spnpinst.exe
2009-01-12 17:48:34 ----SHD---- C:\RECYCLER
2009-01-12 17:37:53 ----D---- C:\Program Files\PartyGaming
2009-01-12 17:27:30 ----A---- C:\WINDOWS\system32\tapisrv.dll
2009-01-12 17:10:41 ----A---- C:\WINDOWS\system32\wship6.dll
2009-01-12 17:10:41 ----A---- C:\WINDOWS\system32\ws2_32.dll
2009-01-12 17:10:41 ----A---- C:\WINDOWS\system32\netsh.exe
2009-01-12 17:10:41 ----A---- C:\WINDOWS\system32\ipv6mon.dll
2009-01-12 17:10:41 ----A---- C:\WINDOWS\system32\ipv6.exe
2009-01-12 17:10:41 ----A---- C:\WINDOWS\system32\iphlpapi.dll
2009-01-12 17:10:41 ----A---- C:\WINDOWS\system32\inetmib1.dll
2009-01-12 17:10:41 ----A---- C:\WINDOWS\system32\6to4svc.dll
2009-01-12 17:09:21 ----A---- C:\WINDOWS\system32\netapi32.dll
2009-01-12 17:07:22 ----D---- C:\Program Files\WinRAR
2009-01-12 17:06:34 ----D---- C:\Program Files\CCleaner
2009-01-12 17:03:18 ----A---- C:\WINDOWS\system32\esent.dll
2009-01-12 17:00:35 ----A---- C:\WINDOWS\system32\mscms.dll
2009-01-12 16:57:46 ----RSD---- C:\WINDOWS\assembly
2009-01-12 16:57:17 ----D---- C:\WINDOWS\Microsoft.NET
2009-01-12 16:57:05 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-01-12 16:57:05 ----A---- C:\WINDOWS\system32\mtxclu.dll
2009-01-12 16:55:48 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2009-01-12 16:55:48 ----A---- C:\WINDOWS\system32\dnsapi.dll
2009-01-12 16:55:14 ----D---- C:\Program Files\Lexmark Fax Solutions
2009-01-12 16:55:02 ----A---- C:\WINDOWS\system32\lxddrwrd.ini
2009-01-12 16:55:01 ----D---- C:\Program Files\Lexmark Toolbar
2009-01-12 16:54:47 ----D---- C:\Program Files\Abbyy FineReader 6.0 Sprint
2009-01-12 16:54:32 ----D---- C:\Program Files\Lexmark 2500 Series
2009-01-12 16:54:21 ----A---- C:\WINDOWS\system32\LXDDinst.dll
2009-01-12 16:54:21 ----A---- C:\WINDOWS\system32\lxddinpa.dll
2009-01-12 16:54:21 ----A---- C:\WINDOWS\system32\LXDDhcp.dll
2009-01-12 16:54:20 ----A---- C:\WINDOWS\system32\lxddutil.dll
2009-01-12 16:54:20 ----A---- C:\WINDOWS\system32\lxddusb1.dll
2009-01-12 16:54:20 ----A---- C:\WINDOWS\system32\lxddserv.dll
2009-01-12 16:54:20 ----A---- C:\WINDOWS\system32\lxddiesc.dll
2009-01-12 16:54:19 ----A---- C:\WINDOWS\system32\lxddprox.dll
2009-01-12 16:54:19 ----A---- C:\WINDOWS\system32\lxddpplc.dll
2009-01-12 16:54:19 ----A---- C:\WINDOWS\system32\lxddpmui.dll
2009-01-12 16:54:19 ----A---- C:\WINDOWS\system32\lxddlmpm.dll
2009-01-12 16:54:18 ----A---- C:\WINDOWS\system32\lxddjswr.dll
2009-01-12 16:54:18 ----A---- C:\WINDOWS\system32\lxddinsr.dll
2009-01-12 16:54:18 ----A---- C:\WINDOWS\system32\lxddinsb.dll
2009-01-12 16:54:18 ----A---- C:\WINDOWS\system32\lxddins.dll
2009-01-12 16:54:18 ----A---- C:\WINDOWS\system32\lxddih.exe
2009-01-12 16:54:17 ----A---- C:\WINDOWS\system32\lxddhbn3.dll
2009-01-12 16:54:17 ----A---- C:\WINDOWS\system32\lxddgrd.dll
2009-01-12 16:54:17 ----A---- C:\WINDOWS\system32\lxddgf.dll
2009-01-12 16:54:17 ----A---- C:\WINDOWS\system32\lxddcub.dll
2009-01-12 16:54:16 ----A---- C:\WINDOWS\system32\lxddcur.dll
2009-01-12 16:54:16 ----A---- C:\WINDOWS\system32\lxddcu.dll
2009-01-12 16:54:16 ----A---- C:\WINDOWS\system32\lxddcoms.exe
2009-01-12 16:54:16 ----A---- C:\WINDOWS\system32\lxddcomm.dll
2009-01-12 16:54:16 ----A---- C:\WINDOWS\system32\lxddcomc.dll
2009-01-12 16:54:15 ----A---- C:\WINDOWS\system32\lxddcfg.exe
2009-01-12 16:54:15 ----A---- C:\WINDOWS\system32\lxddcfg.dll
2009-01-12 16:52:52 ----D---- C:\Documents and Settings\moi\Application Data\Creative
2009-01-12 16:48:21 ----D---- C:\Documents and Settings\moi\Application Data\Macromedia
2009-01-12 16:48:21 ----D---- C:\Documents and Settings\moi\Application Data\Adobe
2009-01-12 16:40:23 ----D---- C:\WINDOWS\system32\bits
2009-01-12 16:40:17 ----HDC---- C:\WINDOWS\$NtUninstallKB842773$
2009-01-12 16:40:10 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2009-01-12 16:39:55 ----D---- C:\WINDOWS\system32\PreInstall
2009-01-12 16:39:54 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-01-12 16:39:53 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2009-01-12 16:39:53 ----HD---- C:\WINDOWS\$hf_mig$
2009-01-12 16:36:43 ----A---- C:\WINDOWS\system32\wstdecod.dll
2009-01-12 16:36:43 ----A---- C:\WINDOWS\system32\psisdecd.dll
2009-01-12 16:36:43 ----A---- C:\WINDOWS\system32\msyuv.dll
2009-01-12 16:36:43 ----A---- C:\WINDOWS\system32\msvidctl.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\qedwipes.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\qedit.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\qdvd.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\qdv.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\qcap.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\mciqtz32.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\encapi.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\dswave.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\dmusic.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\dmsynth.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\dmstyle.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\dmscript.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\dmloader.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\dmime.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\dmcompos.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\dmband.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\devenum.dll
2009-01-12 16:36:42 ----A---- C:\WINDOWS\system32\amstream.dll
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\dxdllreg.exe
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\dxdiag.exe
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\dsdmoprp.dll
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\dsdmo.dll
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\dpvvox.dll
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\dpvsetup.exe
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\dpvoice.dll
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\dpvacm.dll
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\d3d9.dll
2009-01-12 16:36:41 ----A---- C:\WINDOWS\system32\d3d8.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dx8vb.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dx7vb.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dsound3d.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dsound.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dpnet.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dplayx.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\ddrawex.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\ddraw.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\d3dim700.dll
2009-01-12 16:36:40 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2009-01-12 16:35:47 ----RA---- C:\WINDOWS\system32\P0630Vfw.dll
2009-01-12 16:35:47 ----RA---- C:\WINDOWS\P0630Cfg.exe
2009-01-12 16:35:47 ----RA---- C:\WINDOWS\CtDrvIns.exe
2009-01-12 16:35:45 ----RA---- C:\WINDOWS\system32\P0630Srv.exe
2009-01-12 16:35:45 ----RA---- C:\WINDOWS\system32\CtCamMgr.dll
2009-01-12 16:35:44 ----RA---- C:\WINDOWS\system32\P0630Sti.dll
2009-01-12 16:35:44 ----RA---- C:\WINDOWS\system32\P0630Pin.dll
2009-01-12 16:35:44 ----RA---- C:\WINDOWS\system32\P0630Hwx.dll
2009-01-12 16:35:43 ----A---- C:\WINDOWS\system32\tsbyuv.dll
2009-01-12 16:35:43 ----A---- C:\WINDOWS\system32\iyuv_32.dll
2009-01-12 16:35:42 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2009-01-12 16:35:40 ----RA---- C:\WINDOWS\system32\P0630Aor.dll
2009-01-12 16:27:52 ----D---- C:\Program Files\SightSpeed
2009-01-12 16:26:56 ----N---- C:\WINDOWS\system32\CTWEBFUN.DLL
2009-01-12 16:26:35 ----D---- C:\Program Files\Creative
2009-01-12 16:23:22 ----N---- C:\WINDOWS\system32\bitsprx3.dll
2009-01-12 16:23:22 ----N---- C:\WINDOWS\system32\bitsprx2.dll
2009-01-12 16:23:22 ----A---- C:\WINDOWS\system32\winhttp.dll
2009-01-12 16:23:22 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-01-12 16:19:47 ----RA---- C:\WINDOWS\UpdtNv28.exe
2009-01-12 16:17:59 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-01-12 16:16:15 ----D---- C:\WINDOWS\SoftwareDistribution
2009-01-12 16:16:12 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-01-12 16:16:12 ----A---- C:\WINDOWS\system32\wups.dll
2009-01-12 16:16:12 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-01-12 16:16:12 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-01-12 16:16:12 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-01-12 16:16:12 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-01-12 16:14:22 ----D---- C:\Documents and Settings\moi\Application Data\Google
2009-01-12 16:14:20 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2009-01-12 16:14:19 ----D---- C:\Program Files\Google
2009-01-12 16:07:49 ----A---- C:\WINDOWS\system32\iuenginenew.dll
2009-01-12 15:07:14 ----SD---- C:\Documents and Settings\moi\Application Data\Microsoft
2009-01-12 15:07:14 ----D---- C:\Documents and Settings\moi\Application Data\Symantec
2009-01-12 15:07:14 ----D---- C:\Documents and Settings\moi\Application Data\InterTrust
2009-01-12 15:07:14 ----D---- C:\Documents and Settings\moi\Application Data\Identities
2009-01-12 15:07:14 ----ASH---- C:\Documents and Settings\moi\Application Data\desktop.ini

======List of files/folders modified in the last 1 months======

2009-01-28 14:37:30 ----D---- C:\WINDOWS\Temp
2009-01-28 14:13:14 ----RD---- C:\Program Files
2009-01-28 13:44:28 ----D---- C:\WINDOWS\system32\CatRoot2
2009-01-28 13:43:25 ----D---- C:\WINDOWS\system32
2009-01-28 13:43:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-01-28 13:41:34 ----D---- C:\WINDOWS\system32\drivers
2009-01-28 13:41:30 ----D---- C:\WINDOWS
2009-01-28 13:39:27 ----SD---- C:\WINDOWS\Tasks
2009-01-27 15:12:30 ----HD---- C:\WINDOWS\inf
2009-01-26 12:22:25 ----A---- C:\WINDOWS\win.ini
2009-01-26 12:16:44 ----D---- C:\Documents and Settings
2009-01-26 12:07:51 ----HD---- C:\Program Files\InstallShield Installation Information
2009-01-26 12:06:52 ----D---- C:\Program Files\Fichiers communs
2009-01-22 18:13:50 ----SHD---- C:\WINDOWS\Installer
2009-01-18 17:42:19 ----D---- C:\WINDOWS\Debug
2009-01-18 03:00:41 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-01-18 03:00:17 ----D---- C:\WINDOWS\system32\CatRoot
2009-01-17 19:38:20 ----D---- C:\WINDOWS\system32\Setup
2009-01-17 19:38:20 ----D---- C:\WINDOWS\AppPatch
2009-01-17 19:38:19 ----RSD---- C:\WINDOWS\Fonts
2009-01-17 19:38:19 ----D---- C:\WINDOWS\system32\wbem
2009-01-17 19:37:49 ----D---- C:\WINDOWS\security
2009-01-17 17:52:42 ----D---- C:\Program Files\Messenger
2009-01-17 17:50:09 ----D---- C:\WINDOWS\WinSxS
2009-01-17 17:50:04 ----D---- C:\WINDOWS\Help
2009-01-17 17:50:04 ----D---- C:\Program Files\Windows Media Player
2009-01-17 17:49:58 ----D---- C:\WINDOWS\ime
2009-01-17 17:49:49 ----D---- C:\WINDOWS\system32\usmt
2009-01-17 17:49:48 ----D---- C:\Program Files\Movie Maker
2009-01-17 17:48:07 ----D---- C:\WINDOWS\system32\Restore
2009-01-17 17:48:07 ----D---- C:\WINDOWS\system32\npp
2009-01-17 17:48:06 ----D---- C:\WINDOWS\msagent
2009-01-17 17:48:05 ----D---- C:\WINDOWS\srchasst
2009-01-17 17:48:05 ----D---- C:\Program Files\NetMeeting
2009-01-17 17:48:04 ----D---- C:\WINDOWS\system32\Com
2009-01-17 17:48:02 ----D---- C:\Program Files\Windows NT
2009-01-17 17:48:02 ----D---- C:\Program Files\Outlook Express
2009-01-17 17:48:00 ----D---- C:\Program Files\Fichiers communs\System
2009-01-17 17:47:49 ----D---- C:\WINDOWS\system32\oobe
2009-01-17 17:47:48 ----D---- C:\WINDOWS\system
2009-01-15 22:28:16 ----D---- C:\Program Files\Fichiers communs\Symantec Shared
2009-01-15 13:40:14 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2009-01-15 13:39:39 ----D---- C:\Program Files\Symantec
2009-01-14 09:32:04 ----RASH---- C:\boot.ini
2009-01-14 09:32:04 ----A---- C:\WINDOWS\system.ini
2009-01-13 18:36:19 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-01-13 18:36:19 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-01-13 12:06:08 ----D---- C:\Program Files\Internet Explorer
2009-01-13 12:03:57 ----D---- C:\WINDOWS\system32\config
2009-01-13 12:03:47 ----D---- C:\WINDOWS\Media
2009-01-13 11:12:18 ----SHD---- C:\System Volume Information
2009-01-13 10:39:29 ----D---- C:\WINDOWS\system32\mui
2009-01-13 10:36:12 ----RD---- C:\WINDOWS\Web
2009-01-13 10:36:04 ----RASH---- C:\NTDETECT.COM
2009-01-13 10:35:40 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-01-12 16:58:38 ----D---- C:\WINDOWS\Registration
2009-01-12 16:57:17 ----D---- C:\WINDOWS\PCHealth
2009-01-12 16:48:21 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-01-12 16:36:32 ----D---- C:\WINDOWS\system32\DirectX
2009-01-12 16:26:09 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-01-12 16:16:14 ----HD---- C:\Program Files\WindowsUpdate

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 APPFLT;App Filter Plugin; \??\C:\WINDOWS\system32\Drivers\APPFLT.SYS []
R1 DMICall;Sony DMI Call service; C:\WINDOWS\System32\DRIVERS\DMICall.sys [2000-12-05 3952]
R1 DSAFLT;DSA Filter Plugin; \??\C:\WINDOWS\system32\Drivers\DSAFLT.SYS []
R1 FNETMON;NetMon Filter Plugin; \??\C:\WINDOWS\system32\Drivers\fnetmon.SYS []
R1 IDSFLT;Ids Filter Plugin; \??\C:\WINDOWS\system32\Drivers\IDSFLT.SYS []
R1 IKSysFlt;System Filter Driver; C:\WINDOWS\system32\drivers\iksysflt.sys [2009-01-13 66952]
R1 IKSysSec;System Security Driver; C:\WINDOWS\system32\drivers\iksyssec.sys [2009-01-13 81288]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 NETFLTDI;Panda Net Driver [TDI Layer]; \??\C:\WINDOWS\system32\Drivers\NETFLTDI.SYS []
R1 ShldDrv;Panda File Shield Driver; C:\WINDOWS\System32\DRIVERS\ShlDrv51.sys [2007-05-23 38968]
R1 SMSFLT;SMS Filter Plugin; \??\C:\WINDOWS\system32\Drivers\SMSFLT.SYS []
R1 WNMFLT;Wifi Monitor Filter Plugin; \??\C:\WINDOWS\system32\Drivers\WNMFLT.SYS []
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2002-08-30 12032]
R2 cpoint;Panda CPoint Driver; C:\WINDOWS\system32\Drivers\cpoint.sys [2007-06-08 24760]
R2 PAVDRV;pavdrv; C:\WINDOWS\system32\DRIVERS\pavdrv51.sys [2007-06-06 83640]
R2 PavProc;Panda Process Protection Driver; \??\C:\WINDOWS\system32\DRIVERS\PavProc.sys []
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2003-07-06 587264]
R3 AvFlt;Antivirus Filter Driver; C:\WINDOWS\system32\drivers\av5flt.sys []
R3 ComFiltr;Panda Anti-Dialer; \??\C:\WINDOWS\system32\DRIVERS\COMFiltr.sys []
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\System32\DRIVERS\e100b325.sys [2003-03-04 145408]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NETIMFLT;PANDA NDIS IM Filter Miniport; C:\WINDOWS\system32\DRIVERS\netimflt.sys [2007-04-24 142128]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 P0630VID;Creative WebCam Live!; C:\WINDOWS\System32\DRIVERS\P0630Vid.sys [2005-06-06 91841]
R3 PavSRK.sys;PavSRK.sys; \??\C:\WINDOWS\system32\PavSRK.sys []
R3 PavTPK.sys;PavTPK.sys; \??\C:\WINDOWS\system32\PavTPK.sys []
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-07-17 578752]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\System32\DRIVERS\AGRSM.sys [2003-05-23 1171648]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2003-04-02 1265130]
S3 sdthook;sdthook; \??\C:\WINDOWS\system32\drivers\sdthook.sys []
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 smrt;Sony MPEG RealTime encoder board; C:\WINDOWS\System32\DRIVERS\smrt.sys [2003-07-15 761472]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SYMIDSCO;SYMIDSCO; C:\WINDOWS\System32\Drivers\SYMIDSCO.SYS []
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 lxdd_device;lxdd_device; C:\WINDOWS\system32\lxddcoms.exe [2007-02-13 537520]
R2 Panda Software Controller;Panda Software Controller; C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe [2007-07-12 169264]
R2 PAVFNSVR;Panda Function Service; C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe [2007-07-12 173360]
R2 PavPrSrv;Panda Process Protection Service; C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe [2007-06-14 63024]
R2 PAVSRV;Panda anti-virus service; C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe [2007-07-16 148272]
R2 pmshellsrv;Panda Antispam Engine; C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe [2007-01-15 67120]
R2 PSHost;Panda Host Service; c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE [2007-04-04 226864]
R2 PSIMSVC;Panda IManager Service; C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe [2007-05-24 108592]
R2 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2008-06-13 356920]
R2 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2009-01-13 1079176]
R2 TPSrv;Panda TPSrv; C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe [2007-07-02 404784]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-01-13 182768]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\System32\nvsvc32.exe [2003-04-02 69632]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]

-----------------EOF-----------------
info.txt logfile of random's system information tool 1.05 2009-01-28 14:37:44

======Uninstall list======

-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{93B80FB1-7A23-11D3-B250-00105A1F4184}\setup.exe"
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D0803DB-8FC8-4C97-AE1F-1C3DCA357B01}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{513D9FB1-27A2-44E4-8F2D-77A6737921A5}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{80426743-0CC7-4967-BFEC-10DE08D1B6F3}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{80426743-0CC7-4967-BFEC-10DE08D1B6F3}\setup.exe" -l0x40c /remove
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{93CC99FD-FCFC-4BAB-BCB0-3814826DF93D}\SETUP.EXE" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E5ABA5FD-EE3D-4F15-895D-B32321E6C96B}\setup.exe" -l0x40c
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
ABBYY FineReader 6.0 Sprint-->MsiExec.exe /X{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\System32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Agere Systems AC'97 Modem-->agrsmdel
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{D6E592B3-67DA-4BBB-9783-E1838FB253A2}
ATI Control Panel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
ATI Display Driver-->rundll32 C:\WINDOWS\System32\atiiie

Afficher la suite

A voir également:

Pc lent pub qui s'affiche /Trojan.Agent!sd6
Pc lent - Guide
Downloader for pc - Télécharger - Téléchargement & Transfert
Reinitialiser pc - Guide
Mon mac est lent comment le nettoyer - Guide
Forcer demarrage pc - Guide

3 réponses

Réponse 1 / 3

kevin05 Messages postés 3814 Date d'inscription Statut Contributeur sécurité Dernière intervention 147

salut :)

Télécharge sur le bureau Navilog1 (Merci à IL-MAFIOSO)

* La console noire de Navilog1 doit s’ouvrir après l’installation
* Sinon, pour l’ouvrir, double-clique sur le raccourci « Navilog1 » sur ton bureau
* Appuie sur la lettre F de ton clavier puis sur la touche Entrée
* Appuie sur une touche de ton clavier pour continuer...
* Tape 1, puis appuie sur la touche Entrée de ton clavier
* Ainsi, Navilog1 va effectuer la recherche des fichiers infectieux sur ton PC.
* NE PAS UTILISER L’OPTION 2, 3, 4 SANS AVIS
* Sois patient, cela peut prendre une dizaine de minutes
* Navilog1 t’informe que la recherche est terminée
* Appuie sur une touche de ton clavier pour afficher le rapport qu’il a généré
* Le rapport sera sauvegardé dans le fichier suivant : « fixnavi.txt » à la racine de ton disque dur (C:\fixnavi.txt).
* Poste le rapport généré

Réponse 2 / 3

packman0023

voila le rapport

Search Navipromo version 3.7.1 commencé le 28/01/2009 à 17:41:07,62

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 02.01.2009 à 19h00 par IL-MAFIOSO

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.20GHz )
BIOS : BIOS Date: 09/19/03 10:23:50 Ver: 08.00.08
USER : moi ( Administrator )
BOOT : Normal boot

Antivirus : Panda Internet Security 2008 12.00.00 (Not Activated)
Firewall : Panda Internet Security 2008 12.00.00 (Not Activated)

A:\ (USB)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:23 Go)
D:\ (Local Disk) - NTFS - Total:147 Go (Free:132 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)

Recherche executé en mode normal

*** Recherche Programmes installés ***

*** Recherche dossiers dans "C:\WINDOWS" ***

*** Recherche dossiers dans "C:\Program Files" ***

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***

*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\moi\applic~1" ***

*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\moi\locals~1\applic~1" ***

*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" ***

*** Recherche dossiers dans "C:\Documents and Settings\moi\menudm~1\progra~1" ***

*** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\menudm~1\progra~1" ***

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\WINDOWS\system32" *

* Recherche dans "C:\Documents and Settings\moi\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *

*** Recherche fichiers ***

*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :

2)Recherche Heuristique :

* Dans "C:\WINDOWS\system32" :

* Dans "C:\Documents and Settings\moi\locals~1\applic~1" :

* Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" :

3)Recherche Certificats :

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche autres dossiers et fichiers connus :

C:\WINDOWS\system32\wxxFMUvw.ini2 trouvé ! Infection Vundo possible non traitée par cet outil !

*** Analyse terminée le 28/01/2009 à 17:43:31,04 ***

Réponse 3 / 3

kevin05 Messages postés 3814 Date d'inscription Statut Contributeur sécurité Dernière intervention 147

Bon rien pour Navilog

Télécharge Combofix de sUBs

▶ et enregistre le sur le Bureau.

▶ désactive tes protections et ferme toutes tes applications(antivirus, parefeu, garde en temps réel de l'antispyware)

Voici le tutoriel officiel de Bleeping Computer pour savoir l utiliser :

https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

▶ Je te conseille d'installer la console de récupération !!

Newsletters