Antivirus 2009

impossible d'accéder à la touche "Y" de SDFIX, quand je saisie "y" le logicile se ferme et puis plus rien, même en désactivant l'antivirus et mode sans echec avec réseau ne fonctionne pas

Voici les 2 rapports :

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) M processor 1.73GHz )
BIOS : Ver 1.00PARTTBL
USER : proprietaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1169 [VPS 080703-0] 4.8.1169 (Not Activated)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:58 Go)
D:\ (CD or DVD)
E:\ (USB) - FAT - Total:503 Mo (Free:0 Go)
F:\ (USB) - FAT - Total:961 Mo (Free:0 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 01/02/2009|23:22 )

--------------------\\ Listing des dossiers dans APPLIC~1

[05/04/2007|05:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[11/05/2008|12:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[31/01/2009|18:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[25/09/2007|18:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ciel
[31/01/2009|10:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CrucialSoft Ltd
[18/12/2008|12:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[01/02/2009|00:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[24/08/2006|16:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[16/09/2005|07:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[01/02/2009|17:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[02/03/2006|22:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[25/08/2006|12:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

[16/09/2005|09:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[16/09/2005|07:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/09/2005|09:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[16/09/2005|10:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sonic
[16/09/2005|10:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[16/09/2005|10:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\toshiba

[18/02/2007|11:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[31/01/2009|11:01] C:\DOCUME~1\NETWOR~1\APPLIC~1\Adobe
[31/01/2009|12:00] C:\DOCUME~1\NETWOR~1\APPLIC~1\Macromedia
[16/09/2005|07:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[04/10/2006|15:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[05/04/2007|05:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\AdobeUM
[19/03/2007|19:45] C:\DOCUME~1\PROPRI~1\APPLIC~1\Anuman Interactive
[24/09/2006|09:49] C:\DOCUME~1\PROPRI~1\APPLIC~1\Apple Computer
[14/08/2007|17:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\ArcSoft
[25/03/2007|16:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\Azureus
[12/05/2008|13:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\Brother
[20/12/2008|15:04] C:\DOCUME~1\PROPRI~1\APPLIC~1\Google
[21/01/2006|07:49] C:\DOCUME~1\PROPRI~1\APPLIC~1\Hewlett-Packard
[16/09/2005|07:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[14/08/2007|17:42] C:\DOCUME~1\PROPRI~1\APPLIC~1\InstallShield
[21/01/2006|06:25] C:\DOCUME~1\PROPRI~1\APPLIC~1\InterVideo
[05/06/2006|10:33] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[25/09/2007|18:34] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[24/02/2006|19:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft Web Folders
[01/02/2009|00:21] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla
[24/08/2006|15:45] C:\DOCUME~1\PROPRI~1\APPLIC~1\MSNInstaller
[14/08/2007|17:56] C:\DOCUME~1\PROPRI~1\APPLIC~1\Panasonic
[16/09/2005|10:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sonic
[20/01/2006|14:20] C:\DOCUME~1\PROPRI~1\APPLIC~1\Symantec
[21/01/2006|19:41] C:\DOCUME~1\PROPRI~1\APPLIC~1\Template
[13/02/2008|21:54] C:\DOCUME~1\PROPRI~1\APPLIC~1\toshiba
[31/01/2009|10:29] C:\DOCUME~1\PROPRI~1\APPLIC~1\VirusRemover2008

--------------------\\ Tâches planifiées dans C:\windows\tasks

[01/02/2009 23:00][--a------] C:\windows\tasks\At72.job
[01/02/2009 22:00][--a------] C:\windows\tasks\At71.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At69.job
[01/02/2009 21:00][--a------] C:\windows\tasks\At70.job
[01/02/2009 18:00][--a------] C:\windows\tasks\At67.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At68.job
[01/02/2009 17:00][--a------] C:\windows\tasks\At66.job
[01/02/2009 16:00][--a------] C:\windows\tasks\At65.job
[01/02/2009 15:00][--a------] C:\windows\tasks\At64.job
[01/02/2009 13:33][--a------] C:\windows\tasks\At62.job
[01/02/2009 14:00][--a------] C:\windows\tasks\At63.job
[01/02/2009 12:00][--a------] C:\windows\tasks\At61.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At59.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At58.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At60.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At55.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At56.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At57.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At54.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At53.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At52.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At51.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At50.job
[01/02/2009 11:52][--a------] C:\windows\tasks\At49.job
[01/02/2009 15:00][--a------] C:\windows\tasks\At40.job
[31/01/2009 10:00][--a------] C:\windows\tasks\At33.job
[31/01/2009 10:00][--a------] C:\windows\tasks\At30.job
[31/01/2009 19:43][--a------] C:\windows\tasks\At20.job
[01/02/2009 16:00][--a------] C:\windows\tasks\At17.job
[31/01/2009 10:00][--a------] C:\windows\tasks\At10.job
[03/05/2008 07:31][--a------] C:\windows\tasks\AppleSoftwareUpdate.job
[01/02/2009 23:12][--a------] C:\windows\tasks\SyncBack DES.job
[01/02/2009 23:12][--a------] C:\windows\tasks\SyncBack Devis DES.job
[11/08/2007 06:52][--a------] C:\windows\tasks\FRU Task #Hewlett-Packard#hp psc 2170 series#1137826143.job
[20/01/2006 13:54][--a------] C:\windows\tasks\Rappel d'enregistrement 3.job
[20/01/2006 13:54][--a------] C:\windows\tasks\Rappel d'enregistrement 2.job
[20/01/2006 13:54][--a------] C:\windows\tasks\Rappel d'enregistrement 1.job
[01/02/2009 20:50][--ah-----] C:\windows\tasks\SA.DAT
[05/08/2004 11:00][-r-h-c---] C:\windows\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[25/08/2006|18:50] C:\Program Files\2BrightSparks
[16/09/2005|09:48] C:\Program Files\Adobe
[07/06/2006|17:13] C:\Program Files\Ahead
[02/03/2006|22:27] C:\Program Files\Alwil Software
[31/01/2009|20:25] C:\Program Files\AntiSpywareExpert
[30/01/2009|12:50] C:\Program Files\Antivirus 2009
[19/03/2007|19:42] C:\Program Files\Anuman Interactive
[16/09/2005|09:22] C:\Program Files\Apoint2K
[24/09/2006|09:16] C:\Program Files\Apple Software Update
[14/08/2007|17:49] C:\Program Files\ArcSoft
[31/01/2009|18:55] C:\Program Files\Avira
[17/02/2007|22:40] C:\Program Files\Azureus
[01/02/2009|15:36] C:\Program Files\CCleaner
[24/02/2006|21:57] C:\Program Files\Ciel
[17/03/2008|15:42] C:\Program Files\Common Files
[16/09/2005|07:35] C:\Program Files\ComPlus Applications
[09/04/2008|16:13] C:\Program Files\Fichiers communs
[05/06/2006|09:25] C:\Program Files\Friendly Technologies
[05/06/2006|23:16] C:\Program Files\GLtron
[18/12/2008|12:41] C:\Program Files\Google
[21/01/2006|07:41] C:\Program Files\Hewlett-Packard
[14/08/2007|17:49] C:\Program Files\InstallShield Installation Information
[20/01/2006|13:54] C:\Program Files\Intel
[13/12/2008|08:14] C:\Program Files\Internet Explorer
[20/01/2006|13:55] C:\Program Files\InterVideo
[16/09/2005|07:49] C:\Program Files\Java
[16/09/2005|09:12] C:\Program Files\ltmoh
[01/02/2009|15:47] C:\Program Files\Malwarebytes' Anti-Malware
[22/12/2008|06:50] C:\Program Files\Messenger
[16/08/2007|18:39] C:\Program Files\Micro Application
[24/02/2006|19:24] C:\Program Files\microsoft frontpage
[24/02/2006|19:24] C:\Program Files\Microsoft Office
[31/01/2009|19:00] C:\Program Files\Microsoft Security Adviser
[19/09/2005|09:47] C:\Program Files\Microsoft Works
[16/09/2005|10:09] C:\Program Files\Microsoft.NET
[15/02/2008|10:25] C:\Program Files\Mindscape
[22/12/2008|06:46] C:\Program Files\Movie Maker
[01/02/2009|13:54] C:\Program Files\Mozilla Firefox
[24/08/2006|15:44] C:\Program Files\MSN
[16/09/2005|07:34] C:\Program Files\MSN Gaming Zone
[16/09/2005|10:16] C:\Program Files\MSN Toolbar Suite
[25/11/2006|16:09] C:\Program Files\MSXML 4.0
[22/12/2008|06:43] C:\Program Files\NetMeeting
[19/09/2005|08:45] C:\Program Files\Offre Wanadoo
[16/09/2005|07:34] C:\Program Files\Online Services
[22/12/2008|06:43] C:\Program Files\Outlook Express
[14/08/2007|17:46] C:\Program Files\Panasonic
[24/09/2006|09:16] C:\Program Files\QuickTime
[16/09/2005|09:17] C:\Program Files\Realtek AC97
[16/09/2005|07:36] C:\Program Files\Services en ligne
[25/08/2006|15:07] C:\Program Files\Sokoban
[16/09/2005|10:01] C:\Program Files\Sonic
[24/08/2006|12:57] C:\Program Files\Symantec
[12/02/2008|10:51] C:\Program Files\Téléchargement PHOTOWAYS
[26/02/2006|22:14] C:\Program Files\ToniArts
[18/02/2007|15:29] C:\Program Files\Toshiba
[01/02/2009|15:30] C:\Program Files\Trend Micro
[16/09/2005|07:57] C:\Program Files\Uninstall Information
[05/06/2006|09:01] C:\Program Files\Utilitaire de gestion du LAN Wifi IEEE 802.11g
[01/02/2009|17:09] C:\Program Files\VirusRemover2008
[27/08/2007|21:24] C:\Program Files\Windows Media Connect 2
[22/12/2008|06:43] C:\Program Files\Windows Media Player
[22/12/2008|06:43] C:\Program Files\Windows NT
[16/09/2005|07:36] C:\Program Files\WindowsUpdate
[17/02/2007|23:31] C:\Program Files\WinRAR
[16/09/2005|07:38] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[05/04/2007|05:31] C:\Program Files\Fichiers communs\Adobe
[07/06/2006|17:13] C:\Program Files\Fichiers communs\Ahead
[14/08/2007|17:51] C:\Program Files\Fichiers communs\ArcSoft
[09/04/2008|16:13] C:\Program Files\Fichiers communs\Ciel
[24/02/2006|19:27] C:\Program Files\Fichiers communs\Designer
[05/06/2006|09:25] C:\Program Files\Fichiers communs\FTL Shared
[21/01/2006|07:36] C:\Program Files\Fichiers communs\Hewlett-Packard
[16/09/2005|09:26] C:\Program Files\Fichiers communs\InstallShield
[16/09/2005|07:49] C:\Program Files\Fichiers communs\Java
[11/05/2008|12:54] C:\Program Files\Fichiers communs\Microsoft Shared
[16/09/2005|07:35] C:\Program Files\Fichiers communs\MSSoap
[16/09/2005|09:30] C:\Program Files\Fichiers communs\ODBC
[16/09/2005|07:35] C:\Program Files\Fichiers communs\Services
[11/05/2008|12:52] C:\Program Files\Fichiers communs\Softwin
[16/09/2005|09:30] C:\Program Files\Fichiers communs\SpeechEngines
[24/08/2006|11:31] C:\Program Files\Fichiers communs\Symantec Shared
[22/12/2008|06:43] C:\Program Files\Fichiers communs\System

--------------------\\ Process

( 55 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme


--------------------\\ Recherche d'autres infections

C:\windows\Tasks\At10.job
C:\windows\Tasks\At17.job
C:\windows\Tasks\At20.job
C:\windows\Tasks\At30.job
C:\windows\Tasks\At33.job
C:\windows\Tasks\At40.job
C:\windows\Tasks\At49.job
C:\windows\Tasks\At50.job
C:\windows\Tasks\At51.job
C:\windows\Tasks\At52.job
C:\windows\Tasks\At53.job
C:\windows\Tasks\At54.job
C:\windows\Tasks\At55.job
C:\windows\Tasks\At56.job
C:\windows\Tasks\At57.job
C:\windows\Tasks\At58.job
C:\windows\Tasks\At59.job
C:\windows\Tasks\At60.job
C:\windows\Tasks\At61.job
C:\windows\Tasks\At62.job
C:\windows\Tasks\At63.job
C:\windows\Tasks\At64.job
C:\windows\Tasks\At65.job
C:\windows\Tasks\At66.job
C:\windows\Tasks\At67.job
C:\windows\Tasks\At68.job
C:\windows\Tasks\At69.job
C:\windows\Tasks\At70.job
C:\windows\Tasks\At71.job
C:\windows\Tasks\At72.job

--------------------\\ ROOTKIT !!

Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_TDSSSERV.SYS]
Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_TDSSSERV.SYS]
Rootkit Tibs ! .. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TDSSSERV.SYS]

--------------------\\ ROGUES ..

C:\DOCUME~1\PROPRI~1\APPLIC~1\VirusRemover2008
C:\PROGRA~1\AntiSpywareExpert
C:\PROGRA~1\Antivirus 2009
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\VirusRemover2008
C:\PROGRA~1\VirusRemover2008



[F:1][D:4]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp
[F:1][D:0]-> C:\DOCUME~1\PROPRI~1\Cookies
[F:9][D:3]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 01/02/2009|23:33 - Option : [1]

--------------------\\ Fin du rapport a 23:33:18

mais toujours impossible d'utiliser fdfix

c'est parti..... je croise les doigts....

mse fonctionne, fdfix aussi, quelle option je choisis ?

le voici

[b]System Report[/b]
*************

Run on 02/02/2009 at 01:10

Microsoft Windows XP [version 5.1.2600]

Current user is an administrator

[b]Running Processes[/b]:

\SystemRoot\System32\smss.exe [760]
\??\C:\windows\system32\csrss.exe [808]
\??\C:\windows\system32\winlogon.exe [832]
C:\windows\system32\services.exe [876]
C:\windows\system32\lsass.exe [888]
C:\windows\system32\svchost.exe [1080]
C:\windows\system32\svchost.exe [1160]
C:\windows\System32\svchost.exe [1308]
C:\windows\system32\svchost.exe [1528]
C:\windows\system32\svchost.exe [1660]
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [1816]
C:\windows\Explorer.EXE [580]
C:\WINDOWS\system32\igfxtray.exe [688]
C:\WINDOWS\system32\hkcmd.exe [696]
C:\WINDOWS\system32\igfxpers.exe [424]
C:\Program Files\ltmoh\Ltmoh.exe [704]
C:\windows\AGRSMMSG.exe [736]
C:\Program Files\Apoint2K\Apoint.exe [776]
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [800]
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [852]
C:\windows\system32\ZoomingHook.exe [1208]
C:\windows\system32\TCtrlIOHook.exe [1220]
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe [1236]
C:\Program Files\TOSHIBA\Commandes TOSHIBA\TFncKy.exe [1244]
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [1252]
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [1260]
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe [1284]
C:\WINDOWS\system32\dla\tfswctrl.exe [1296]
C:\Program Files\TOSHIBA\ConfigFree\CFSServ.exe [1348]
C:\Program Files\Friendly Technologies\BroadbandAccess\fts.exe [1396]
C:\Program Files\QuickTime\qttask.exe [1452]
C:\windows\system32\TPSBattM.exe [1504]
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [1520]
C:\windows\system32\ctfmon.exe [1712]
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [1724]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [1736]
C:\Program Files\Apoint2K\Apntex.exe [1788]
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe [1808]
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [1924]
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [1940]
C:\Program Files\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exe [1952]
C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE [1972]
C:\Program Files\2BrightSparks\SyncBack\SyncBack.exe [1988]
C:\windows\system32\spoolsv.exe [480]
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [428]
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [648]
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [664]
C:\windows\System32\svchost.exe [1368]
C:\windows\system32\svchost.exe [2136]
C:\windows\System32\alg.exe [2732]
C:\Program Files\TOSHIBA\ConfigFree\CFXFER.exe [2900]
C:\windows\system32\rundll32.exe [3436]
C:\windows\system32\wuauclt.exe [3472]


[b]Drivers - Running[/b]:

Aavmker4
ACPI
ACPIEC
AFD
AFS2K
AgereSoftModem
ALCXWDM
ApfiltrService
Arp1394
aswFsBlk
aswMon2
aswSP
aswTdi
atapi
audstub
avgio
avgntflt
avipbb
Beep
Cdfs
Cdrom
CmBatt
Compbatt
Disk
drvmcdb
drvnddm
Fastfat
Fips
FltMgr
Ftdisk
Gpc
HidUsb
HTTP
i8042prt
ialm
Imapi
IntelIde
intelppm
Ip6Fw
IpNat
IPSec
isapnp
Iviaspi
Kbdclass
kmixer
KSecDD
MDC8021X
mnmdd
Modem
Mouclass
mouhid
MountMgr
MRxDAV
MRxSmb
Msfs
mssmbios
Mup
NDIS
NdisTapi
Ndisuio
NdisWan
NDProxy
NetBIOS
NetBT
Netdevio
NIC1394
Npfs
Ntfs
Null
ohci1394
PartMgr
PCI
PCIIde
Pcmcia
Pfc
PPPoEWin
PptpMiniport
PSched
Ptilink
PxHelp20
RasAcd
Rasl2tp
RasPppoe
Raspti
Rdbss
RDPCDD
redbook
RTL8023xp
sdbus
sr
Srv
SrvcSSIOMngr
sscdbhk5
ssmdrv
ssrtln
swenum
sysaudio
Tcpip
TermDD
tfsnboio
tfsncofs
tfsndrct
tfsndres
tfsnifs
tfsnopio
tfsnpool
tfsnudf
tfsnudfa
tifm21
TPwSav
Tvs
Update
usbccgp
usbehci
usbhub
USBSTOR
usbuhci
VgaSave
VolSnap
w29n51
Wanarp
wdmaud


[b]Drivers - Stopped[/b]:

Abiosdsk
abp480n5
adpu160m
aec
Aha154x
aic78u2
aic78xx
AliIde
amsint
asc
asc3350p
asc3550
aswRdr
AsyncMac
Atdisk
Atmarpc
catchme
cbidf2k
cd20xrnt
Cdaudio
Changer
CmdIde
Cpqarray
dac960nt
dmboot
dmio
dmload
DMusic
dpti2o
drmkaud
Fdc
Flpydisk
hpn
HPZid412
HPZipr12
HPZius12
i2omgmt
i2omp
ini910u
IpFilterDriver
IpInIp
IRENUM
kbdhid
lbrtfdc
mraid35x
MSKSSRV
MSPCLOCK
MSPQM
NBXG7031
NwlnkFlt
NwlnkFwd
Parport
ParVdm
PCANDIS5
PCIDump
PDCOMP
PDFRAME
PDRELI
PDRFRAME
perc2
perc2hib
ql1080
Ql10wnt
ql12160
ql1240
ql1280
RDPWD
rtl8139
Secdrv
Ser2pl
Serenum
Serial
sffdisk
sffp_sd
Sfloppy
Simbad
Sparrow
splitter
swmidi
symc810
symc8xx
sym_hi
sym_u3
TDPIPE
TDTCP
TosIde
tosrfec
Udfs
ultra
usbprint
usbscan
ViaIde
WDICA
WudfPf
WudfRd


[b]Services - Running[/b]:

ALG
AntiVirScheduler
AntiVirService
aswUpdSv
AudioSrv
BITS
Browser
CFSvcs
CryptSvc
DcomLaunch
Dhcp
dmserver
Dnscache
EapHost
ERSvc
Eventlog
EventSystem
FastUserSwitchingCompatibility
helpsvc
HidServ
lanmanserver
lanmanworkstation
LmHosts
Messenger
Netman
Nla
NtmsSvc
PlugPlay
PolicyAgent
ProtectedStorage
RasMan
RpcSs
SamSs
Schedule
seclogon
SENS
SharedAccess
ShellHWDetection
Spooler
srservice
SSDPSRV
stisvc
TapiSrv
TermService
Themes
TrkWks
WebClient
winmgmt
wscsvc
wuauserv
WZCSVC


[b]Services - Stopped[/b]:

Alerter
AppMgmt
aspnet_state
avast!
avast!
avast!
CiSvc
ClipSrv
COMSysApp
dmadmin
Dot3svc
gusvc
hkmsvc
HTTPFilter
IDriverT
ImapiService
mnmsrvc
MSDTC
MSIServer
napagent
NetDDE
NetDDEdsdm
Netlogon
NtLmSsp
ose
Pml
RasAuto
RDSessMgr
RemoteAccess
RpcLocator
RSVP
SCardSvr
SwPrv
SysmonLog
upnphost
UPS
VSS
W32Time
WmdmPmSN
WmiApSrv
WMPNetworkSvc
WudfSvc
xmlprov


[b]Files Created/Modified - 60 Days[/b]:


C:\

2 Feb 2009 1:04:44 526 897 152 A.SH. "C:\hiberfil.sys"
31 Jan 2009 13:37:18 56 362 A.... "C:\install.exe"
2 Feb 2009 1:04:42 792 723 456 A.SH. "C:\pagefile.sys"


C:\windows\

2 Feb 2009 1:04:44 2 048 A.S.. "C:\WINDOWS\bootstat.dat"
1 Feb 2009 0:21:18 0 A.... "C:\WINDOWS\nsreg.dat"
30 Jan 2009 12:43:34 233 472 A.... "C:\WINDOWS\odb.exe"
30 Jan 2009 12:46:00 109 A.SH. "C:\WINDOWS\system32\3495238276.dat"
12 Dec 2008 0:57:44 78 336 A.... "C:\WINDOWS\system32\Agent.OMZ.Fix.exe"
1 Feb 2009 12:24:46 401 408 A.... "C:\WINDOWS\system32\CF11977.exe"
1 Feb 2009 13:33:02 164 320 A.... "C:\WINDOWS\system32\FNTCACHE.DAT"
10 Jan 2009 2:35:28 20 853 704 A.... "C:\WINDOWS\system32\MRT.exe"
13 Dec 2008 7:37:56 3 593 216 A.... "C:\WINDOWS\system32\mshtml.dll"
1 Feb 2009 23:57:48 53 098 A.... "C:\WINDOWS\system32\perfc009.dat"
1 Feb 2009 23:57:48 64 052 A.... "C:\WINDOWS\system32\perfc00C.dat"
1 Feb 2009 23:57:48 380 684 A.... "C:\WINDOWS\system32\perfh009.dat"
1 Feb 2009 23:57:48 445 672 A.... "C:\WINDOWS\system32\perfh00C.dat"
1 Feb 2009 1:02:16 5 176 A.... "C:\WINDOWS\system32\tmp.reg"
2 Feb 2009 1:05:18 6 A..H. "C:\WINDOWS\Tasks\SA.DAT"
2 Feb 2009 1:09:42 211 A.... "C:\WINDOWS\Temp\scsC.tmp"
13 Dec 2008 7:37:56 3 593 216 ..... "C:\WINDOWS\system32\dllcache\mshtml.dll"
11 Dec 2008 11:57:10 333 952 ..... "C:\WINDOWS\system32\dllcache\srv.sys"
2 Feb 2009 0:37:44 579 584 A.... "C:\WINDOWS\system32\dllcache\user32.dll"
31 Jan 2009 10:02:12 112 624 A.... "C:\WINDOWS\system32\drivers\2b640eb8.sys"
11 Dec 2008 11:57:10 333 952 A.... "C:\WINDOWS\system32\drivers\srv.sys"
22 Dec 2008 7:03:04 32 047 A.... "C:\WINDOWS\system32\oobe\updshell.htm"
22 Dec 2008 6:48:50 77 175 A.... "C:\WINDOWS\pchealth\helpctr\OfflineCache\index.dat"
18 Dec 2008 12:41:22 89 102 A.... "C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe"
22 Dec 2008 7:03:04 5 723 A.... "C:\WINDOWS\system32\oobe\setup\autoupdt.htm"
22 Dec 2008 7:03:04 15 646 A.... "C:\WINDOWS\system32\oobe\setup\au_plcy.htm"
22 Dec 2008 6:48:08 16 302 A.... "C:\WINDOWS\pchealth\helpctr\Vendors\CN=Microsoft Corporation,L=Redmond,S=Washington,C=US\Remote Assistance\rcstatus.htm"
22 Dec 2008 6:48:08 5 691 A.... "C:\WINDOWS\pchealth\helpctr\Vendors\CN=Microsoft Corporation,L=Redmond,S=Washington,C=US\Remote Assistance\Common\ConnIssue.htm"
22 Dec 2008 6:48:08 3 151 A.... "C:\WINDOWS\pchealth\helpctr\Vendors\CN=Microsoft Corporation,L=Redmond,S=Washington,C=US\Remote Assistance\Common\RCMoreInfo.htm"
22 Dec 2008 6:48:08 3 623 A.... "C:\WINDOWS\pchealth\helpctr\Vendors\CN=Microsoft Corporation,L=Redmond,S=Washington,C=US\Remote Assistance\Escalation\Email\escalationhelp.htm"
22 Dec 2008 6:48:08 8 188 A.... "C:\WINDOWS\pchealth\helpctr\Vendors\CN=Microsoft Corporation,L=Redmond,S=Washington,C=US\Remote Assistance\Escalation\Email\rcscreen7.htm"
22 Dec 2008 6:48:08 30 864 A.... "C:\WINDOWS\pchealth\helpctr\Vendors\CN=Microsoft Corporation,L=Redmond,S=Washington,C=US\Remote Assistance\Escalation\Email\rcscreen6.htm"
22 Dec 2008 6:48:08 3 311 A.... "C:\WINDOWS\pchealth\helpctr\Vendors\CN=Microsoft Corporation,L=Redmond,S=Washington,C=US\Remote Assistance\Escalation\Email\ShieldsUpMsg.htm"


C:\Program Files\

1 Feb 2009 0:18:48 7 617 568 A.... "C:\Program Files\Firefox Setup 3.0.5.exe"
20 Jan 2009 17:00:48 1 451 248 A.... "C:\Program Files\CCleaner\CCleaner.exe"
1 Feb 2009 15:36:18 114 658 A.... "C:\Program Files\CCleaner\uninst.exe"
18 Dec 2008 12:41:32 2 436 160 A...R "C:\Program Files\Google\GoogleToolbar1.dll"
18 Dec 2008 12:41:34 52 272 A.... "C:\Program Files\Google\googletoolbar1user.exe"
2 Dec 2008 22:38:24 17 400 A.... "C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll"
2 Dec 2008 22:38:24 185 848 A.... "C:\Program Files\Mozilla Firefox\crashreporter.exe"
2 Dec 2008 22:38:24 307 704 A.... "C:\Program Files\Mozilla Firefox\firefox.exe"
2 Dec 2008 9:04:40 233 472 A.... "C:\Program Files\Mozilla Firefox\freebl3.dll"
2 Dec 2008 22:38:24 696 824 A.... "C:\Program Files\Mozilla Firefox\js3250.dll"
2 Dec 2008 22:38:24 710 136 A.... "C:\Program Files\Mozilla Firefox\mozcrt19.dll"
2 Dec 2008 22:38:24 198 136 A.... "C:\Program Files\Mozilla Firefox\nspr4.dll"
2 Dec 2008 22:38:24 718 328 A.... "C:\Program Files\Mozilla Firefox\nss3.dll"
2 Dec 2008 22:38:24 288 248 A.... "C:\Program Files\Mozilla Firefox\nssckbi.dll"
2 Dec 2008 22:38:24 103 928 A.... "C:\Program Files\Mozilla Firefox\nssdbm3.dll"
2 Dec 2008 22:38:24 87 544 A.... "C:\Program Files\Mozilla Firefox\nssutil3.dll"
2 Dec 2008 22:38:24 20 472 A.... "C:\Program Files\Mozilla Firefox\plc4.dll"
2 Dec 2008 22:38:24 17 400 A.... "C:\Program Files\Mozilla Firefox\plds4.dll"
2 Dec 2008 22:38:24 103 928 A.... "C:\Program Files\Mozilla Firefox\smime3.dll"
2 Dec 2008 9:04:40 151 552 A.... "C:\Program Files\Mozilla Firefox\softokn3.dll"
2 Dec 2008 22:38:24 395 768 A.... "C:\Program Files\Mozilla Firefox\sqlite3.dll"
2 Dec 2008 22:38:24 136 696 A.... "C:\Program Files\Mozilla Firefox\ssl3.dll"
2 Dec 2008 22:38:24 242 168 A.... "C:\Program Files\Mozilla Firefox\updater.exe"
2 Dec 2008 22:38:24 17 912 A.... "C:\Program Files\Mozilla Firefox\xpcom.dll"
2 Dec 2008 22:38:24 9 742 840 A.... "C:\Program Files\Mozilla Firefox\xul.dll"
1 Feb 2009 1:34:36 1 122 A.... "C:\Program Files\2BrightSparks\SyncBack\DES_Log_Page1.html"
1 Feb 2009 1:34:36 1 134 A.... "C:\Program Files\2BrightSparks\SyncBack\Devis DES_Log_Page1.html"
31 Jan 2009 18:57:52 176 501 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aecore.dll"
31 Jan 2009 18:57:54 328 053 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aegen.dll"
31 Jan 2009 18:57:56 119 159 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aehelp.dll"
31 Jan 2009 18:58:08 1 569 143 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aeheur.dll"
31 Jan 2009 18:58:08 196 987 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aeoffice.dll"
31 Jan 2009 18:58:14 393 588 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aepack.dll"
31 Jan 2009 18:58:16 127 348 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aescn.dll"
31 Jan 2009 18:58:18 344 443 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aescript.dll"
31 Jan 2009 18:58:20 2 158 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aeset.dat"
31 Jan 2009 18:58:20 106 868 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\aevdf.dll"
2 Dec 2008 14:55:22 16 931 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\build.dat"
23 Jan 2009 21:01:28 22 016 A.... "C:\Program Files\CCleaner\Lang\lang-1063.dll"
23 Jan 2009 21:02:00 21 504 A.... "C:\Program Files\CCleaner\Lang\lang-1071.dll"
23 Jan 2009 21:02:12 21 504 A.... "C:\Program Files\CCleaner\Lang\lang-1066.dll"
23 Jan 2009 21:02:08 22 528 A.... "C:\Program Files\CCleaner\Lang\lang-1050.dll"
23 Jan 2009 21:00:52 21 504 A.... "C:\Program Files\CCleaner\Lang\lang-1030.dll"
23 Jan 2009 21:01:18 23 552 A.... "C:\Program Files\CCleaner\Lang\lang-1040.dll"
23 Jan 2009 21:01:48 25 088 A.... "C:\Program Files\CCleaner\Lang\lang-1034.dll"
23 Jan 2009 21:01:32 21 504 A.... "C:\Program Files\CCleaner\Lang\lang-1044.dll"
23 Jan 2009 21:01:14 23 040 A.... "C:\Program Files\CCleaner\Lang\lang-1038.dll"
23 Jan 2009 21:00:46 11 776 A.... "C:\Program Files\CCleaner\Lang\lang-1028.dll"
23 Jan 2009 21:01:44 22 016 A.... "C:\Program Files\CCleaner\Lang\lang-1048.dll"
23 Jan 2009 21:01:06 21 504 A.... "C:\Program Files\CCleaner\Lang\lang-1110.dll"
23 Jan 2009 21:00:26 21 504 A.... "C:\Program Files\CCleaner\Lang\lang-1051.dll"
23 Jan 2009 21:01:50 21 504 A.... "C:\Program Files\CCleaner\Lang\lang-1055.dll"
23 Jan 2009 21:00:40 19 456 A.... "C:\Program Files\CCleaner\Lang\lang-1025.dll"
23 Jan 2009 21:01:00 23 552 A.... "C:\Program Files\CCleaner\Lang\lang-1035.dll"
23 Jan 2009 21:01:34 22 016 A.... "C:\Program Files\CCleaner\Lang\lang-1045.dll"
23 Jan 2009 21:00:50 20 480 A.... "C:\Program Files\CCleaner\Lang\lang-1029.dll"
23 Jan 2009 21:00:28 22 016 A.... "C:\Program Files\CCleaner\Lang\lang-1052.dll"
23 Jan 2009 21:01:08 26 112 A.... "C:\Program Files\CCleaner\Lang\lang-1032.dll"
23 Jan 2009 21:01:24 11 776 A.... "C:\Program Files\CCleaner\Lang\lang-1042.dll"
23 Jan 2009 21:02:02 24 064 A.... "C:\Program Files\CCleaner\Lang\lang-1026.dll"
23 Jan 2009 21:01:02 24 576 A.... "C:\Program Files\CCleaner\Lang\lang-1036.dll"
23 Jan 2009 21:01:40 24 576 A.... "C:\Program Files\CCleaner\Lang\lang-1046.dll"
23 Jan 2009 21:00:56 25 088 A.... "C:\Program Files\CCleaner\Lang\lang-1043.dll"
23 Jan 2009 21:00:38 23 040 A.... "C:\Program Files\CCleaner\Lang\lang-1027.dll"
23 Jan 2009 21:01:12 19 456 A.... "C:\Program Files\CCleaner\Lang\lang-1037.dll"
23 Jan 2009 21:00:34 22 016 A.... "C:\Program Files\CCleaner\Lang\lang-1031.dll"
23 Jan 2009 21:01:20 14 848 A.... "C:\Program Files\CCleaner\Lang\lang-1041.dll"
23 Jan 2009 21:01:48 20 992 A.... "C:\Program Files\CCleaner\Lang\lang-1049.dll"
23 Jan 2009 21:00:32 22 016 A.... "C:\Program Files\CCleaner\Lang\lang-1053.dll"
23 Jan 2009 21:01:38 25 088 A.... "C:\Program Files\CCleaner\Lang\lang-2070.dll"
23 Jan 2009 21:00:42 11 776 A.... "C:\Program Files\CCleaner\Lang\lang-2052.dll"
23 Jan 2009 21:01:56 20 992 A.... "C:\Program Files\CCleaner\Lang\lang-2074.dll"
23 Jan 2009 21:01:54 20 992 A.... "C:\Program Files\CCleaner\Lang\lang-3098.dll"
23 Jan 2009 21:02:04 21 504 A.... "C:\Program Files\CCleaner\Lang\lang-5146.dll"
22 Jan 2009 21:18:14 68 856 A.... "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
2 Dec 2008 22:38:24 23 032 A.... "C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll"
2 Dec 2008 22:38:26 134 648 A.... "C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll"
1 Feb 2009 0:21:12 143 076 A.... "C:\Program Files\Mozilla Firefox\components\compreg.dat"
1 Feb 2009 0:21:06 96 270 A.... "C:\Program Files\Mozilla Firefox\components\xpti.dat"
2 Dec 2008 22:38:26 65 528 A.... "C:\Program Files\Mozilla Firefox\plugins\npnul32.dll"
2 Dec 2008 9:04:40 117 A.... "C:\Program Files\Mozilla Firefox\res\hiddenWindow.html"
2 Dec 2008 22:38:22 510 592 A.... "C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
2 Feb 2009 1:06:08 70 766 A.... "C:\Program Files\Alwil Software\Avast4\DATA\iNews.htm"
31 Jan 2009 18:57:52 176 501 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aecore.dll"
31 Jan 2009 18:57:54 328 053 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aegen.dll"
31 Jan 2009 18:57:56 119 159 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aehelp.dll"
31 Jan 2009 18:58:08 1 569 143 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aeheur.dll"
31 Jan 2009 18:58:08 196 987 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aeoffice.dll"
31 Jan 2009 18:58:14 393 588 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aepack.dll"
31 Jan 2009 18:58:16 127 348 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aescn.dll"
31 Jan 2009 18:58:18 344 443 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aescript.dll"
31 Jan 2009 18:58:20 2 158 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aeset.dat"
31 Jan 2009 18:58:20 106 868 A.... "C:\Program Files\Avira\AntiVir PersonalEdition Classic\FAILSAFE\aevdf.dll"
18 Dec 2008 12:41:32 138 168 A.... "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"
22 Jan 2009 21:18:14 10 736 A.... "C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\gth.dll"
22 Jan 2009 21:18:14 130 544 A.... "C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\gtn.dll"
22 Jan 2009 21:18:14 737 776 A.... "C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll"
22 Jan 2009 21:18:12 1 082 864 A.... "C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\swg-3.1.807.1746\SearchWithGoogleUpdate.exe"


[b]Files with hidden attributes[/b]:

Sat 8 Jul 2006 4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Fri 7 Sep 2007 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv02.tmp"
Sat 14 Apr 2007 32,768 A..H. --- "C:\Documents and Settings\proprietaire\Mes documents\devis D.E.S\DEVIS DIVERS\~WRL0001.tmp"
Mon 11 Sep 2006 31,232 A..H. --- "C:\Documents and Settings\proprietaire\Mes documents\devis D.E.S\DEVIS SERRURERIE\~WRL2793.tmp"
Sat 15 Mar 2008 30,720 A..H. --- "C:\Documents and Settings\proprietaire\Mes documents\devis D.E.S\DEVIS SERRURERIE\CONSEIL INVEST\~WRL0001.tmp"


[b]Program Folders[/b]:

C:\Program Files\

2BrightSparks
Adobe
Ahead
Alwil Software
AntiSpywareExpert
Anuman Interactive
Apoint2K
Apple Software Update
ArcSoft
Avira
Azureus
CCleaner
Ciel
Common Files
ComPlus Applications
Fichiers communs
Friendly Technologies
GLtron
Google
Hewlett-Packard
InstallShield Installation Information
Intel
Internet Explorer
InterVideo
Java
ltmoh
Messenger
Micro Application
microsoft frontpage
Microsoft Office
Microsoft Security Adviser
Microsoft Works
Microsoft.NET
Mindscape
Movie Maker
Mozilla Firefox
MSN
MSN Gaming Zone
MSN Toolbar Suite
MSXML 4.0
NetMeeting
Offre Wanadoo
Online Services
Outlook Express
Panasonic
QuickTime
Realtek AC97
Services en ligne
Sokoban
Sonic
Symantec
Téléchargement PHOTOWAYS
ToniArts
Toshiba
Trend Micro
Uninstall Information
Utilitaire de gestion du LAN Wifi IEEE 802.11g
VirusRemover2008
Windows Media Connect 2
Windows Media Player
Windows NT
WindowsUpdate
WinRAR
xerox

C:\Program Files\Fichiers communs\

Adobe
Ahead
ArcSoft
Ciel
Designer
FTL Shared
Hewlett-Packard
InstallShield
Java
Microsoft Shared
MSSoap
ODBC
Services
Softwin
SpeechEngines
Symantec Shared
System


[b]Add/Remove Programs[/b]:

Adobe Flash Player 10 ActiveX
ADS Users
Avira AntiVir Personal - Free Antivirus
avast! Antivirus
Azureus
Friendly PPPoE v3.0.0.26
GLtron version 0.70
Photo et imagerie HP 2.0 - hp psc 2170 series
Microsoft Internationalized Domain Names Mitigation APIs
Windows Internet Explorer 7
TOSHIBA Accessibility
TOSHIBA Mot de passe responsable
TOSHIBA Hardware Setup
Utilitaire Hotkey TOSHIBA
Utilitaire TouchPad ON/OFF
Texas Instruments PCIxx21/x515 drivers.
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
Mise à jour de sécurité pour Lecteur Windows Media (KB911564)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
Mise à jour de sécurité pour Windows XP (KB923689)
Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)
Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
Hotfix for Windows Media Format 11 SDK (KB929399)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
Mise à jour de sécurité pour Windows XP (KB938464)
Correctif pour Lecteur Windows Media 11 (KB939683)
Mise à jour de sécurité pour Windows XP (KB941569)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)
Mise à jour de sécurité pour Windows XP (KB946648)
Correctif pour Windows Internet Explorer 7 (KB947864)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)
Mise à jour de sécurité pour Windows XP (KB950760)
Mise à jour de sécurité pour Windows XP (KB950762)
Mise à jour de sécurité pour Windows XP (KB950974)
Mise à jour de sécurité pour Windows XP (KB951066)
Mise à jour pour Windows XP (KB951072-v2)
Mise à jour de sécurité pour Windows XP (KB951376-v2)
Mise à jour de sécurité pour Windows XP (KB951698)
Mise à jour de sécurité pour Windows XP (KB951748)
Mise à jour pour Windows XP (KB951978)
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)
Correctif pour Windows XP (KB952287)
Mise à jour de sécurité pour Windows XP (KB952954)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)
Mise à jour de sécurité pour Windows XP (KB953839)
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)
Mise à jour de sécurité pour Windows XP (KB954211)
Mise à jour de sécurité pour Windows XP (KB954459)
Mise à jour de sécurité pour Windows XP (KB954600)
Mise à jour de sécurité pour Windows XP (KB955069)
Mise à jour pour Windows XP (KB955839)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)
Mise à jour de sécurité pour Windows XP (KB956391)
Mise à jour de sécurité pour Windows XP (KB956802)
Mise à jour de sécurité pour Windows XP (KB956803)
Mise à jour de sécurité pour Windows XP (KB956841)
Mise à jour de sécurité pour Windows XP (KB957095)
Mise à jour de sécurité pour Windows XP (KB957097)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)
Mise à jour de sécurité pour Windows XP (KB958644)
Mise à jour de sécurité pour Windows XP (KB958687)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)
Lapin Malin Maternelle 1 v2
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 1.1
Mozilla Firefox (3.0.5)
Microsoft Compression Client Pack 1.0 for Windows XP
MSN
Nero OEM
Microsoft National Language Support Downlevel APIs
Outil de diagnostic PC TOSHIBA
Gestion d'énergie TOSHIBA
Réceptions et fêtes
Adobe Flash Player 9 ActiveX
Sokoban 3.4.0.0
SyncBack
TOSHIBA Software Modem
Téléchargement PHOTOWAYS 3.0.8
Windows Genuine Advantage Notifications (KB905474)
WinCom Plus 1.0.6
Windows Media Format 11 runtime
Lecteur Windows Media 11
Windows XP Service Pack 3
Archiveur WinRAR
Windows Media Format 11 runtime
Windows Media Player 11
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Office 2000 Professional
Macromedia Flash Player
Ciel Devis Factures 7.0
Sonic DLA
Utility Common Driver
Assist TOSHIBA
Adiboud'Chou et le Jardin des Surprises
Google Earth
Google Toolbar for Internet Explorer
LUMIX Simple Viewer
InterVideo WinDVD Creator 2
J2SE Runtime Environment 5.0 Update 3
MSXML 4.0 SP2 (KB927978)
TOSHIBA Accessibility
Manuels TOSHIBA
Formatage de carte mémoire SD TOSHIBA
TOSHIBA Supervisor Password
TOSHIBA Hardware Setup
Apple Software Update
TOSHIBA Power Saver Driver
TOSHIBA Controls Driver
Touch and Launch
Utilitaire de zoom TOSHIBA
Photo et imagerie HP 2.0 - All-in-One Pilote
TOSHIBA Hotkey Utility
TouchPad On/Off Utility
MSXML 4.0 SP2 (KB954430)
Intel(R) Graphics Media Accelerator Driver for Mobile
Son virtuel TOSHIBA
Utilitaire de gestion du LAN Wifi IEEE 802.11g
InterVideo WinDVD for TOSHIBA
Microsoft Office OneNote 2003
hp psc 2170 series
REALTEK Gigabit and Fast Ethernet NIC Driver
Sonic RecordNow!
Photo et imagerie HP 2.0 - All-in-One
Microsoft .NET Framework 1.1 French Language Pack
PHOTOfunSTUDIO -viewer-
ALPS Touch Pad Driver
Réducteur de bruit lect. CD/DVD
Microsoft Works
Commandes TOSHIBA
Adobe Reader 7.0.9 - Français
Disque de souvenirs HP
TOSHIBA ConfigFree
MSXML 4.0 SP2 (KB936181)
SD Secure Module
Microsoft .NET Framework 1.1
Bluetooth Stack for Windows by Toshiba
Google Toolbar for Internet Explorer
ArcSoft Software Suite
TIxx21/x515
QuickTime
EasyCleaner
Realtek AC'97 Audio
TOSHIBA Zooming Hook


[b]Run Values[/b]:

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"igfxtray"="C:\\WINDOWS\\system32\\igfxtray.exe"
"igfxhkcmd"="C:\\WINDOWS\\system32\\hkcmd.exe"
"igfxpers"="C:\\WINDOWS\\system32\\igfxpers.exe"
"LtMoh"="C:\\Program Files\\ltmoh\\Ltmoh.exe"
"AGRSMMSG"="AGRSMMSG.exe"
"Apoint"="C:\\Program Files\\Apoint2K\\Apoint.exe"
"CeEKEY"="C:\\Program Files\\TOSHIBA\\E-KEY\\CeEKey.exe"
"TPNF"="C:\\Program Files\\TOSHIBA\\TouchPad\\TPTray.exe"
"HWSetup"="C:\\Program Files\\TOSHIBA\\TOSHIBA Applet\\HWSetup.exe hwSetUP"
"SVPWUTIL"="C:\\Program Files\\Toshiba\\Windows Utilities\\SVPWUTIL.exe SVPwUTIL"
"Zooming"="ZoomingHook.exe"
"TCtryIOHook"="TCtrlIOHook.exe"
"TPSMain"="TPSMain.exe"
"SmoothView"="C:\\Program Files\\TOSHIBA\\Utilitaire de zoom TOSHIBA\\SmoothView.exe"
"TFncKy"="TFncKy.exe"
"PadTouch"="C:\\Program Files\\TOSHIBA\\Touch and Launch\\PadExe.exe"
"Tvs"="C:\\Program Files\\TOSHIBA\\Tvs\\TvsTray.exe"
"NDSTray.exe"="NDSTray.exe"
"dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe"
"CFSServ.exe"="CFSServ.exe -NoClient"
"%FP%Friendly fts.exe"="\"C:\\Program Files\\Friendly Technologies\\BroadbandAccess\\fts.exe\""
"NeroFilterCheck"="C:\\WINDOWS\\system32\\NeroCheck.exe"
"PeerFolders"="\"C:\\Program Files\\JYK Technologies\\PeerFolders\\PeerFolders.exe\""
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"mssadv.exe"=""
"lrijh8s73jhbfgfd"="C:\\DOCUME~1\\PROPRI~1\\LOCALS~1\\Temp\\winlognn.exe"
"avgnt"="\"C:\\Program Files\\Avira\\AntiVir PersonalEdition Classic\\avgnt.exe\" /min"
"SDFix"="F:\\PHIL.EXE\\SDFIX\\RUNTHIS.BAT /second"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\windows\\system32\\ctfmon.exe"
"TOSCDSPD"="C:\\Program Files\\TOSHIBA\\TOSCDSPD\\toscdspd.exe"
"swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe"
"mssadv.exe"=""


[b]Bot Check[/b]:

SERVICE_NAME: wscsvc
DISPLAY_NAME : Centre de sécurité
START_TYPE : 2 AUTO_START

SERVICE_NAME: sharedaccess
DISPLAY_NAME : Pare-feu Windows / Partage de connexion Internet
START_TYPE : 2 AUTO_START

SERVICE_NAME: wuauserv
DISPLAY_NAME : Mises à jour automatiques
START_TYPE : 2 AUTO_START

SERVICE_NAME: srservice
DISPLAY_NAME : Service de restauration système
START_TYPE : 2 AUTO_START

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole]
"EnableDCOM"="Y"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"restrictanonymous"=dword:00000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update]
"AUOptions"=dword:00000004

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify"=dword:00000000
"FirewallDisableNotify"=dword:00000000
"UpdatesDisableNotify"=dword:00000000
"AntiVirusOverride"=dword:00000000
"FirewallOverride"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"WaitToKillServiceTimeout"="20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"SFCDisable"=dword:00000000
"Shell"="Explorer.exe"
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shell extensions]



[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters]
"TransportBindName"="\\Device\\"


[b]ShellExecuteHooks[/b]:

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""



[b]Environment[/b]:


HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager\environment
ComSpec REG_EXPAND_SZ %SystemRoot%\system32\cmd.exe
Path REG_EXPAND_SZ %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
windir REG_EXPAND_SZ %SystemRoot%
OS REG_SZ Windows_NT
PATHEXT REG_SZ .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
TEMP REG_EXPAND_SZ %SystemRoot%\TEMP
TMP REG_EXPAND_SZ %SystemRoot%\TEMP
CLASSPATH REG_SZ .;C:\Program Files\Java\jre1.5.0_03\lib\ext\QTJava.zip
QTJAVA REG_SZ C:\Program Files\Java\jre1.5.0_03\lib\ext\QTJava.zip

[b]SecurityProviders[/b]:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders
SecurityProviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll


[b]Authentication Packages[/b]:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
Authentication Packages REG_MULTI_SZ msv1_0\0\0


[b]Subsystem Startup[/b]:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems]
"Windows"="%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16"


[b]Midi Drivers[/b]:

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midi"="wdmaud.drv"


[b]Non-Default IFEO Debugger[/b]:


[b]Non-Default Installed Components[/b]:


[b]Non-Default Safeboot Minimal[/b]:


[b]File Associations[/b]:


[HKEY_CLASSES_ROOT\batfile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\cmdfile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\comfile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\exefile\shell\open\command]
@="\"%1\" %*"

[HKEY_CLASSES_ROOT\htafile\shell\open\command]
@="C:\\WINDOWS\\system32\\mshta.exe \"%1\" %*"

[HKEY_CLASSES_ROOT\http\shell\open\command]
@="\"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE\" -nohome"

[HKEY_CLASSES_ROOT\htmlfile\shell\open\command]
@="\"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE\" -nohome"

[HKEY_CLASSES_ROOT\regedit\shell\open\command]
@="regedit.exe %1"

[HKEY_CLASSES_ROOT\regfile\shell\open\command]
@="regedit.exe \"%1\""

[HKEY_CLASSES_ROOT\scrfile\shell\open\command]
@="\"%1\" /S"

[HKEY_CLASSES_ROOT\txtfile\shell\open\command]
@="%SystemRoot%\system32\NOTEPAD.EXE %1"


[b]Finished![/b]

Malwarebytes' Anti-Malware 1.33
Version de la base de données: 1654
Windows 5.1.2600 Service Pack 3

2009-02-02 09:28:52
mbam-log-2009-02-02 (09-28-52).txt

Type de recherche: Examen complet (C:\|F:\|)
Eléments examinés: 111310
Temps écoulé: 39 minute(s), 20 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 5
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 12
Fichier(s) infecté(s): 24

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\{5222008a-dd62-49c7-a735-7bd18ecc7350} (Rogue.VirusRemover) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{020487cc-fc04-4b1e-863f-d9801796230b} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{500bca15-57a7-4eaf-8143-8c619470b13d} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\MSFox (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\tdss (Trojan.Agent) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{020487cc-fc04-4b1e-863f-d9801796230b} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mssadv.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mssadv.exe (Trojan.Agent) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\Microsoft Security Adviser (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Program Files\AntiSpywareExpert (Rogue.AntiSpywareExpert) -> Quarantined and deleted successfully.
C:\Program Files\VirusRemover2008 (Rogue.VirusRemove) -> Quarantined and deleted successfully.
C:\Program Files\VirusRemover2008\database (Rogue.VirusRemove) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009 (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\BASE (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\DELETED (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\LOG (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\SAVED (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\proprietaire\Application Data\VirusRemover2008 (Rogue.VirusRemover) -> Quarantined and deleted successfully.
C:\Documents and Settings\proprietaire\Application Data\VirusRemover2008\Logs (Rogue.VirusRemover) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Qoobox\Quarantine\C\WINDOWS\system32\TDSSoiqt.dll.vir (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{ECB3AD12-64E1-4857-9A37-361E4DEA76A5}\RP177\A0027908.dll (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\TDSS362e.tmp (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\TDSS3d71.tmp (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\TDSS4ef6.tmp (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\TDSS5639.tmp (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\TDSS6666.tmp (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\20090131161024562.log (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\LOG\20090131100035992.log (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\LOG\20090131100321437.log (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\LOG\20090131110432187.log (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\LOG\20090131112301984.log (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\LOG\20090131144552046.log (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\LOG\20090131155649031.log (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\proprietaire\Application Data\VirusRemover2008\Logs\scns.log (Rogue.VirusRemover) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nc45f4EY.exe.a_a (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\odb.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Documents and Settings\proprietaire\Application Data\config.cfg (Malware.Trace) -> Quarantined and deleted successfully.
C:\Documents and Settings\proprietaire\Application Data\~tmp.html (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\TDSS2c4b.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Documents and Settings\proprietaire\Local Settings\Temp\TDSSaccf.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Documents and Settings\proprietaire\Local Settings\Temp\TDSSacfe.tmp (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\TDSSkkai.log (Trojan.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\TDSSoiqh.log (Trojan.TDSS) -> Quarantined and deleted successfully.

me revoilà, voici les 2 rapports :
info.txt logfile of random's system information tool 1.05 2009-02-02 12:04:39

======Uninstall list======

-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adiboud'Chou et le Jardin des Surprises-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{19BA6533-893E-4F17-A95C-4A38043A8721}\setup.exe" -l0x40c -removeonly
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Reader 7.0.9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70900000002}
ADS Users-->C:\WINDOWS\uninst.exe -fC:\FERMAX\ADSUSERS\DeIsL1.isu -cC:\FERMAX\ADSUSERS\_ISREG32.DLL
ALPS Touch Pad Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}\setup.exe" UNINSTALL
Apple Software Update-->MsiExec.exe /I{55FA89BD-21D3-42F7-9249-C94C0094A83C}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ArcSoft Software Suite-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DC67641A-05C4-4FED-A462-1EB1DC6CF2F5}\setup.exe" -l0x40c
Assist TOSHIBA-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12B3A009-A080-4619-9A2A-C6DB151D8D67}\Setup.exe" -l0x40c
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
Azureus-->C:\Program Files\Azureus\Uninstall.exe
Bluetooth Stack for Windows by Toshiba-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}
Ciel Devis Factures 7.0-->MsiExec.exe /I{112423DB-5C0C-40E2-B3E3-DEF9A1A01B2D}
Commandes TOSHIBA-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A6690C0E-B96E-4F0F-A8EB-D5B332454AC6}\Setup.exe" -l0x40c UNINSTALL
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Disque de souvenirs HP-->MsiExec.exe /X{B376402D-58EA-45EA-BD50-DD924EB67A70}
EasyCleaner-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F5346614-B7C4-4E94-826A-E2363155233D}\setup.exe" -l0x9 -removeonly
Formatage de carte mémoire SD TOSHIBA-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48CF9A66-5F03-4025-ABD0-B3A3FA095A59}\setup.exe"
Friendly PPPoE v3.0.0.26-->C:\WINDOWS\AppRun.exe C:\PROGRA~1\FRIEND~1\BROADB~1
Gestion d'énergie TOSHIBA-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\TOSHIBA\Power Saver\Uninst.isu" -c"C:\WINDOWS\system32\TPSDel.dll"
GLtron version 0.70-->"C:\Program Files\GLtron\unins000.exe"
Google Earth-->MsiExec.exe /I{1E04F83B-2AB9-4301-9EF7-E86307F79C72}
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
hp psc 2170 series-->MsiExec.exe /X{93FB47FB-4FDF-4131-B5FD-7A37883868E7}
Intel(R) Graphics Media Accelerator Driver for Mobile-->RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx2ID PCI\VEN_8086&DEV_2792 PCI\VEN_8086&DEV_2592
InterVideo WinDVD Creator 2-->"C:\Program Files\InstallShield Installation Information\{2FCE4FC5-6930-40E7-A4F1-F862207424EF}\setup.exe" REMOVEALL
InterVideo WinDVD for TOSHIBA-->"C:\Program Files\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL
J2SE Runtime Environment 5.0 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150030}
Lapin Malin Maternelle 1 v2-->C:\Program Files\Mindscape\Lapin Malin Maternelle 1 v2\uninstall.exe
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LUMIX Simple Viewer-->C:\Program Files\InstallShield Installation Information\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}\setup.exe -runfromtemp -l0x040c -removeonly
Macromedia Flash Player-->MsiExec.exe /X{0456ebd7-5f67-4ab6-852e-63781e3f389c}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Manuels TOSHIBA-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3EB6332B-AF02-457C-A31C-835458C5B48B}\setup.exe" -l0x40c -removeonly
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2000 Professional-->MsiExec.exe /I{0001040C-78E1-11D2-B60F-006097C998E7}
Microsoft Office OneNote 2003-->MsiExec.exe /I{91A1040C-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Works-->MsiExec.exe /I{A059DE09-1B49-4450-B340-7AE097EC3F04}
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.5)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero OEM-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
Outil de diagnostic PC TOSHIBA-->C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\TOSHIBA\PCDiag\Uninst.isu"
Photo et imagerie HP 2.0 - All-in-One Pilote-->MsiExec.exe /X{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}
Photo et imagerie HP 2.0 - All-in-One-->MsiExec.exe /X{9867A917-5D17-40DE-83BA-BEA5293194B1}
Photo et imagerie HP 2.0 - hp psc 2170 series-->C:\Program Files\Hewlett-Packard\Digital Imaging\{7C8BB31C-E09E-4c7d-BBF1-45E33B467FE1}\Setup\hpzscr01.exe -datfile hposcr02.dat -forcereboot
PHOTOfunSTUDIO -viewer--->C:\Program Files\InstallShield Installation Information\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}\Setup.exe -runfromtemp -l0x040cPackage -removeonly
QuickTime-->MsiExec.exe /I{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" -l0x40c -removeonly
REALTEK Gigabit and Fast Ethernet NIC Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{94FB906A-CF42-4128-A509-D353026A607E}\Setup.exe" -l0x40c REMOVE
Réceptions et fêtes-->"C:\Program Files\Anuman Interactive\Réceptions et fêtes\unins000.exe"
Réducteur de bruit lect. CD/DVD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}\Setup.exe" -l0x40c
SD Secure Module-->MsiExec.exe /X{C45F4811-31D5-4786-801D-F79CD06EDD85}
Sokoban 3.4.0.0-->C:\Program Files\Sokoban\Uninstal.exe
Son virtuel TOSHIBA-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8B12BA86-ADAC-4BA6-B441-FFC591087252}\setup.exe" /uninstall
Sonic DLA-->MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
Sonic RecordNow!-->MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19}
SyncBack-->"C:\Program Files\2BrightSparks\SyncBack\unins000.exe"
Téléchargement PHOTOWAYS 3.0.8-->"C:\Program Files\Téléchargement PHOTOWAYS\uninstall.exe"
Texas Instruments PCIxx21/x515 drivers.-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{E18E644D-4FC1-4E7F-87B7-A0288A14A322} /l1036
TOSHIBA Accessibility-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{3A57482F-BEBC-47E4-ADA1-6302403C7E50} /l1036
TOSHIBA ConfigFree-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}\setup.exe" -l0x40c UNINSTALL
TOSHIBA Hardware Setup-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{5279374D-87FE-4879-9385-F17278EBB9D3} /l1036
TOSHIBA Mot de passe responsable-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE} /l1036
TOSHIBA Software Modem-->Tosmreg -U
Touch and Launch-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5D96E2B1-D9AC-46E0-9073-425C5F63E338}\setup.exe"
Utilitaire de gestion du LAN Wifi IEEE 802.11g-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8F7953DB-3529-4D69-A577-CC22D4F32C51}\setup.exe" -l0x40c
Utilitaire de zoom TOSHIBA-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{64212898-097F-4F3F-AECA-6D34A7EF82DF}\Setup.exe" -l0x40c
Utilitaire Hotkey TOSHIBA-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{7900D3A6-A9E8-4954-ACCB-AB15867978BF} /l1036
Utilitaire TouchPad ON/OFF-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{80977342-27E8-4FF7-8B6A-D8D89461DA7F} /l1036
WinCom Plus 1.0.6-->C:\WINDOWS\uninst.exe -f"C:\FERMAX\WinCom Plus 1.0.6\DeIsL1.isu" -c"C:\FERMAX\WinCom Plus 1.0.6\_ISREG32.DLL"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: Avira AntiVir PersonalEdition Classic (disabled)

System event log

Computer Name: PORTABLE
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 2 Uniprocessor Free.

Record Number: 21375
Source Name: EventLog
Time Written: 20080810143912.000000+120
Event Type: Informations
User:

Computer Name: PORTABLE
Event Code: 6006
Message: Le service d'Enregistrement d'événement a été arrêté.

Record Number: 21374
Source Name: EventLog
Time Written: 20080809193428.000000+120
Event Type: Informations
User:

Computer Name: PORTABLE
Event Code: 7036
Message: Le service Service de découvertes SSDP est entré dans l'état : en cours d'exécution.

Record Number: 21373
Source Name: Service Control Manager
Time Written: 20080809093922.000000+120
Event Type: Informations
User:

Computer Name: PORTABLE
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service de découvertes SSDP.

Record Number: 21372
Source Name: Service Control Manager
Time Written: 20080809093921.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: PORTABLE
Event Code: 7036
Message: Le service Compatibilité avec le Changement rapide d'utilisateur est entré dans l'état : en cours d'exécution.

Record Number: 21371
Source Name: Service Control Manager
Time Written: 20080809093918.000000+120
Event Type: Informations
User:

Application event log

Computer Name: PORTABLE
Event Code: 0
Message:
Record Number: 2433
Source Name: iPod Service
Time Written: 20080309181001.000000+060
Event Type: Informations
User:

Computer Name: PORTABLE
Event Code: 11707
Message: Produit : Google Earth -- L'installation est terminée.

Record Number: 2432
Source Name: MsiInstaller
Time Written: 20080309143849.000000+060
Event Type: Informations
User: PORTABLE\proprietaire

Computer Name: PORTABLE
Event Code: 0
Message:
Record Number: 2431
Source Name: iPod Service
Time Written: 20080309142448.000000+060
Event Type: Informations
User:

Computer Name: PORTABLE
Event Code: 1517
Message: Windows a sauvegardé le Registre utilisateur PORTABLE\proprietaire alors qu'une application ou un service utilisait toujours le Registre pendant la fermeture de la session. La mémoire utilisée par le Registre de l'utilisateur n'a pas été libérée. le Registre sera déchargé lorsqu'il ne sera plus utilisé.


Cela est souvent causé par des services s'exécutant en tant que compte d'utilisateur, essayez de configurer les services pour s'exécuter dans le compte service réseau ou service local.

Record Number: 2430
Source Name: Userenv
Time Written: 20080308234516.000000+060
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PORTABLE
Event Code: 302
Message: MsnMsgr (2316) \\.\C:\Documents and Settings\proprietaire\Local Settings\Application Data\Microsoft\Messenger\pinho-julie@hotmail.fr\SharingMetadata\Working\database_30D0_554D_D055_1A84\dfsr.db: Le moteur de base de données a exécuté la procédure de récupération avec succès.

Record Number: 2429
Source Name: ESENT
Time Written: 20080308202516.000000+060
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\QuickTime\QTSystem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 13 Stepping 8, GenuineIntel
"PROCESSOR_REVISION"=0d08
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.5.0_03\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.5.0_03\lib\ext\QTJava.zip

-----------------EOF-----------------


et le second :
Logfile of random's system information tool 1.05 (written by random/random)
Run by proprietaire at 2009-02-02 12:04:35
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 60 GB (79%) free of 76 GB
Total RAM: 502 MB (42% free)

HijackThis download failed

======Scheduled tasks folder======

C:\windows\tasks\AppleSoftwareUpdate.job
C:\windows\tasks\At10.job
C:\windows\tasks\At17.job
C:\windows\tasks\At20.job
C:\windows\tasks\At30.job
C:\windows\tasks\At33.job
C:\windows\tasks\At40.job
C:\windows\tasks\At49.job
C:\windows\tasks\At50.job
C:\windows\tasks\At51.job
C:\windows\tasks\At52.job
C:\windows\tasks\At53.job
C:\windows\tasks\At54.job
C:\windows\tasks\At55.job
C:\windows\tasks\At56.job
C:\windows\tasks\At57.job
C:\windows\tasks\At58.job
C:\windows\tasks\At59.job
C:\windows\tasks\At60.job
C:\windows\tasks\At61.job
C:\windows\tasks\At62.job
C:\windows\tasks\At63.job
C:\windows\tasks\At64.job
C:\windows\tasks\At65.job
C:\windows\tasks\At66.job
C:\windows\tasks\At67.job
C:\windows\tasks\At68.job
C:\windows\tasks\At69.job
C:\windows\tasks\At70.job
C:\windows\tasks\At71.job
C:\windows\tasks\At72.job
C:\windows\tasks\FRU Task #Hewlett-Packard#hp psc 2170 series#1137826143.job
C:\windows\tasks\Rappel d'enregistrement 1.job
C:\windows\tasks\Rappel d'enregistrement 2.job
C:\windows\tasks\Rappel d'enregistrement 3.job
C:\windows\tasks\SyncBack DES.job
C:\windows\tasks\SyncBack Devis DES.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5BF4552-94F1-42BD-F434-3604812C807D}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2008-12-18 2436160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2005-07-19 94208]
"igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2005-07-19 77824]
"igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2005-07-19 114688]
"LtMoh"=C:\Program Files\ltmoh\Ltmoh.exe [2003-09-06 184320]
"AGRSMMSG"=C:\windows\AGRSMMSG.exe [2004-12-22 88358]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2004-03-24 196608]
"CeEKEY"=C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [2005-09-06 671744]
"TPNF"=C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [2005-08-25 53248]
"HWSetup"=C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe [2004-05-01 28672]
"SVPWUTIL"=C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe [2004-05-01 65536]
"Zooming"=C:\windows\system32\ZoomingHook.exe [2005-06-06 24576]
"TCtryIOHook"=C:\windows\system32\TCtrlIOHook.exe [2005-08-22 28672]
"TPSMain"=C:\windows\system32\TPSMain.exe [2005-08-12 266240]
"SmoothView"=C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe [2005-05-17 118784]
"TFncKy"=TFncKy.exe []
"PadTouch"=C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe [2005-08-30 1077328]
"Tvs"=C:\Program Files\TOSHIBA\Tvs\TvsTray.exe [2005-04-05 73728]
"NDSTray.exe"=NDSTray.exe []
"dla"=C:\WINDOWS\system32\dla\tfswctrl.exe [2005-05-31 122941]
"CFSServ.exe"=CFSServ.exe -NoClient []
"%FP%Friendly fts.exe"=C:\Program Files\Friendly Technologies\BroadbandAccess\fts.exe [2003-05-06 72192]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2006-09-01 282624]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
"SDFix"=F:\PHIL.EXE\SDFIX\RUNTHIS.BAT [2008-11-06 964661]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2009-01-14 399504]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\windows\system32\ctfmon.exe [2008-04-14 15360]
"TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe [2005-04-11 65536]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-01-22 68856]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
hp psc 2000 Series.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
hpoddt01.exe.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
LUMIX Simple Viewer.lnk - C:\Program Files\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE

C:\Documents and Settings\proprietaire\Menu Démarrer\Programmes\Démarrage
Lancement rapide de Microsoft Office OneNote 2003.lnk - C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
SyncBack.lnk - C:\Program Files\2BrightSparks\SyncBack\SyncBack.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2005-07-19 135168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\windows\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
IPC Configuration Utility - IPC Configuration Utility
erajhsf8743kjrngjnf - {D5BF4552-94F1-42BD-F434-3604812C807D}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSEXESVC]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PSEXESVC]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\JYK Technologies\PeerFolders\PeerFolders.exe"="C:\Program Files\JYK Technologies\PeerFolders\PeerFolders.exe:*:Enabled:PeerFolders"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\Azureus\Azureus.exe"="C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Toshiba\ConfigFree\CFXFER.exe"="C:\Program Files\Toshiba\ConfigFree\CFXFER.exe:*:Enabled:ConfigFree SUMMIT Engine"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2009-02-02 12:04:35 ----D---- C:\rsit
2009-02-02 08:45:03 ----D---- C:\Documents and Settings\proprietaire\Application Data\Malwarebytes
2009-02-02 08:44:55 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-02-02 08:44:55 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-02-02 08:40:05 ----A---- C:\windows\PSEXESVC.EXE
2009-02-02 08:33:55 ----A---- C:\windows\zip.exe
2009-02-02 08:33:55 ----A---- C:\windows\VFIND.exe
2009-02-02 08:33:55 ----A---- C:\windows\SWXCACLS.exe
2009-02-02 08:33:55 ----A---- C:\windows\SWSC.exe
2009-02-02 08:33:55 ----A---- C:\windows\SWREG.exe
2009-02-02 08:33:55 ----A---- C:\windows\sed.exe
2009-02-02 08:33:55 ----A---- C:\windows\NIRCMD.exe
2009-02-02 08:33:55 ----A---- C:\windows\grep.exe
2009-02-02 08:33:55 ----A---- C:\windows\fdsv.exe
2009-02-02 08:33:53 ----D---- C:\windows\ERDNT
2009-02-02 08:33:53 ----D---- C:\Qoobox
2009-02-02 08:33:53 ----D---- C:\ComboFix
2009-02-02 08:33:52 ----A---- C:\windows\system32\CF19493.exe
2009-02-02 00:47:39 ----A---- C:\AdminCheck2.txt
2009-02-02 00:31:46 ----D---- C:\windows\ERUNT
2009-02-02 00:27:07 ----D---- C:\SDFix
2009-02-01 23:52:36 ----A---- C:\FindyKill.txt
2009-02-01 23:22:02 ----A---- C:\lopR.txt
2009-02-01 23:21:37 ----D---- C:\Lop SD
2009-02-01 15:36:16 ----D---- C:\Program Files\CCleaner
2009-02-01 15:31:05 ----A---- C:\TCleaner.txt
2009-02-01 12:24:54 ----A---- C:\windows\system32\CF11977.exe
2009-02-01 02:40:13 ----D---- C:\windows\system32\NtmsData
2009-02-01 01:53:59 ----D---- C:\windows\system32\CatRoot2
2009-02-01 01:38:10 ----A---- C:\Rooter.txt
2009-02-01 01:34:57 ----D---- C:\Rooter$
2009-02-01 01:02:15 ----A---- C:\windows\system32\tmp.txt
2009-02-01 01:02:01 ----A---- C:\rapport.txt
2009-02-01 01:00:42 ----A---- C:\windows\system32\Agent.OMZ.Fix.exe
2009-02-01 01:00:41 ----A---- C:\windows\system32\WS2Fix.exe
2009-02-01 01:00:41 ----A---- C:\windows\system32\VCCLSID.exe
2009-02-01 01:00:41 ----A---- C:\windows\system32\VACFix.exe
2009-02-01 01:00:41 ----A---- C:\windows\system32\o4Patch.exe
2009-02-01 01:00:41 ----A---- C:\windows\system32\IEDFix.exe
2009-02-01 01:00:41 ----A---- C:\windows\system32\IEDFix.C.exe
2009-02-01 01:00:41 ----A---- C:\windows\system32\404Fix.exe
2009-02-01 01:00:40 ----A---- C:\windows\system32\swsc.exe
2009-02-01 01:00:40 ----A---- C:\windows\system32\SrchSTS.exe
2009-02-01 01:00:40 ----A---- C:\windows\system32\Process.exe
2009-02-01 01:00:40 ----A---- C:\windows\system32\dumphive.exe
2009-02-01 00:31:55 ----D---- C:\Program Files\Trend Micro
2009-02-01 00:21:04 ----D---- C:\Documents and Settings\proprietaire\Application Data\Mozilla
2009-02-01 00:20:14 ----D---- C:\Program Files\Mozilla Firefox
2009-02-01 00:18:45 ----A---- C:\Program Files\Firefox Setup 3.0.5.exe
2009-01-31 18:55:15 ----D---- C:\Program Files\Avira
2009-01-31 18:55:15 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-01-31 15:07:00 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-01-31 13:37:15 ----A---- C:\install.exe
2009-01-17 06:38:27 ----HDC---- C:\windows\$NtUninstallKB958687$
2009-01-10 09:25:00 ----HDC---- C:\windows\$NtUninstallKB951978$
2009-01-10 09:24:50 ----HDC---- C:\windows\$NtUninstallKB954459$

======List of files/folders modified in the last 1 months======

2009-02-02 11:54:18 ----D---- C:\windows\Prefetch
2009-02-02 11:54:08 ----D---- C:\windows\Temp
2009-02-02 09:30:04 ----D---- C:\WINDOWS
2009-02-02 09:28:52 ----RD---- C:\Program Files
2009-02-02 09:28:51 ----D---- C:\windows\system32
2009-02-02 08:44:59 ----D---- C:\windows\system32\drivers
2009-02-02 08:39:11 ----N---- C:\windows\SchedLgU.Txt
2009-02-02 00:37:43 ----RSHDC---- C:\windows\system32\dllcache
2009-02-01 23:57:47 ----AC---- C:\windows\system32\PerfStringBackup.INI
2009-02-01 15:38:26 ----D---- C:\windows\Debug
2009-02-01 15:38:25 ----D---- C:\windows\Minidump
2009-02-01 12:05:34 ----SD---- C:\windows\Tasks
2009-02-01 02:25:28 ----D---- C:\windows\security
2009-02-01 01:54:17 ----D---- C:\windows\system32\CatRoot
2009-02-01 00:23:35 ----A---- C:\windows\win.ini
2009-02-01 00:23:35 ----A---- C:\windows\system.ini
2009-01-31 20:30:04 ----RASH---- C:\boot2.ini
2009-01-31 20:30:04 ----D---- C:\windows\pss
2009-01-31 18:24:50 ----HD---- C:\windows\inf
2009-01-31 17:10:13 ----A---- C:\windows\NeroDigital.ini
2009-01-31 15:46:29 ----AC---- C:\windows\wininit.ini
2009-01-31 15:32:11 ----D---- C:\windows\network diagnostic
2009-01-31 10:55:08 ----AC---- C:\windows\BRWMARK.INI
2009-01-31 10:55:08 ----AC---- C:\windows\BRPP2KA.INI
2009-01-17 06:37:40 ----HD---- C:\windows\$hf_mig$
2009-01-10 02:35:28 ----A---- C:\windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AFS2K;AFS2k; C:\windows\system32\drivers\AFS2K.sys [2006-01-21 82380]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\windows\system32\DRIVERS\avipbb.sys [2008-10-30 75072]
R1 intelppm;Pilote de processeur Intel; C:\windows\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 SrvcSSIOMngr;SrvcSSIOMngr; C:\windows\System32\Drivers\SSIoMngr.sys [2004-07-30 6400]
R1 sscdbhk5;sscdbhk5; C:\windows\system32\drivers\sscdbhk5.sys [2005-05-13 5627]
R1 ssmdrv;ssmdrv; C:\windows\system32\DRIVERS\ssmdrv.sys [2007-11-08 21248]
R1 ssrtln;ssrtln; C:\windows\system32\drivers\ssrtln.sys [2005-05-13 23545]
R1 TPwSav;Common Driver; C:\windows\System32\Drivers\TPwSav.sys [2005-06-03 9600]
R2 drvnddm;drvnddm; C:\windows\system32\drivers\drvnddm.sys [2005-04-21 40544]
R2 MDC8021X;AEGIS Protocol (IEEE 802.1x) v2.3.1.9; C:\windows\system32\DRIVERS\mdc8021x.sys [2004-09-24 15781]
R2 Netdevio;TOSHIBA Network Device Usermode I/O Protocol; C:\windows\system32\DRIVERS\netdevio.sys [2003-01-29 12032]
R2 tfsnboio;tfsnboio; C:\windows\system32\dla\tfsnboio.sys [2005-05-31 25725]
R2 tfsncofs;tfsncofs; C:\windows\system32\dla\tfsncofs.sys [2005-05-31 34845]
R2 tfsndrct;tfsndrct; C:\windows\system32\dla\tfsndrct.sys [2005-05-31 4125]
R2 tfsndres;tfsndres; C:\windows\system32\dla\tfsndres.sys [2005-05-31 2273]
R2 tfsnifs;tfsnifs; C:\windows\system32\dla\tfsnifs.sys [2005-05-31 86876]
R2 tfsnopio;tfsnopio; C:\windows\system32\dla\tfsnopio.sys [2005-05-31 15069]
R2 tfsnpool;tfsnpool; C:\windows\system32\dla\tfsnpool.sys [2005-05-31 6365]
R2 tfsnudf;tfsnudf; C:\windows\system32\dla\tfsnudf.sys [2005-05-31 98716]
R2 tfsnudfa;tfsnudfa; C:\windows\system32\dla\tfsnudfa.sys [2005-05-31 100605]
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2005-03-05 1066278]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\windows\system32\drivers\ALCXWDM.SYS [2005-06-21 2324480]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\windows\system32\DRIVERS\Apfiltr.sys [2004-11-16 101874]
R3 Arp1394;Protocole client ARP 1394; C:\windows\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\windows\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 HidUsb;Pilote de classe HID Microsoft; C:\windows\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\windows\system32\DRIVERS\ialmnt5.sys [2005-07-19 1049180]
R3 Iviaspi;IVI ASPI Shell; C:\windows\system32\drivers\iviaspi.sys [2003-09-10 21060]
R3 mouhid;Pilote HID de souris; C:\windows\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NIC1394;Pilote réseau 1394; C:\windows\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 Pfc;Padus ASPI Shell; C:\windows\system32\drivers\pfc.sys [2003-09-19 21248]
R3 PPPoEWin;PPPoEWin Miniport; C:\windows\system32\DRIVERS\PPPoEWin.SYS [2003-09-25 104375]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\windows\system32\DRIVERS\Rtlnicxp.sys [2005-03-04 74496]
R3 sdbus;sdbus; C:\windows\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
R3 tifm21;tifm21; C:\windows\system32\drivers\tifm21.sys [2005-06-23 162176]
R3 Tvs;Toshiba Virtual Sound with SRS technologies; C:\windows\system32\DRIVERS\Tvs.sys [2005-07-29 30592]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\windows\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\windows\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\windows\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; C:\windows\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\windows\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 w29n51;Pilote de carte de connexion réseau Intel(R) PRO/Wireless 2200BG pour Windows XP; C:\windows\system32\DRIVERS\w29n51.sys [2005-04-30 3281408]
S1 Aavmker4;avast! Asynchronous Virus Monitor; C:\windows\system32\drivers\Aavmker4.sys []
S1 aswSP;avast! Self Protection; C:\windows\system32\drivers\aswSP.sys []
S1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys []
S1 kbdhid;Pilote HID de clavier; C:\windows\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S2 aswFsBlk;aswFsBlk; C:\windows\system32\DRIVERS\aswFsBlk.sys []
S2 aswMon2;avast! Standard Shield Support; C:\windows\system32\drivers\aswMon2.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\catchme.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\windows\system32\DRIVERS\HPZid412.sys [2003-03-09 51024]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\windows\system32\DRIVERS\HPZipr12.sys [2003-03-09 16080]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\windows\system32\DRIVERS\HPZius12.sys [2003-03-09 21456]
S3 NBXG7031;NB 802.11g XG703 SP1 Driver; C:\windows\system32\DRIVERS\WlanUIG.sys [2004-09-24 381312]
S3 PCANDIS5;PCANDIS5 Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\windows\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 Ser2pl;Prolific Serial port driver; C:\windows\system32\DRIVERS\ser2pl.sys [2005-06-17 119424]
S3 sffdisk;Pilote de classe de stockage SFF; C:\windows\system32\DRIVERS\sffdisk.sys [2008-04-13 11904]
S3 sffp_sd;Pilote de protocole de stockage SFF pour SDBus; C:\windows\system32\DRIVERS\sffp_sd.sys [2008-04-13 11008]
S3 tosrfec;Bluetooth ACPI from TOSHIBA; C:\windows\system32\DRIVERS\tosrfec.sys [2005-03-24 8192]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\windows\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\windows\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\windows\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\windows\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;Planificateur Avira AntiVir Personal - Free Antivirus; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-15 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-15 151297]
R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2005-01-18 40960]
S3 aspnet_state;Service d'état ASP.NET; C:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-18 138168]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2003-03-09 65795]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\windows\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------