N'arrive pas à effectuer de téléchargements

Fermé
Lilia - 31 juil. 2009 à 22:39
 Lilia - 4 août 2009 à 10:32
Bonsoir,

Je viens tout juste d'acquerir un PC portable sous windows vista edition familiale.J'aimerais installer avast antivirus seulement au moment d'installer le programme,une fois le téléchargement fini,avast me signale une erreur et ne peux continuer à télécharger.J'ai aussi tenter d'installer d'autres logiciels comme Windows Live messenger ou itunes:même résultat.Je suis donc parvenue à la conclusion que les télechargements étaient impossibles.J'ai tout de suite pensé à un virus et ait téléchargé combofix.Malheuresement,cela n'a rien changé

Je pense que mon ordi est configuré pour empêcher les téléchargements,par sécurité,seulement je ne sais pas comment désactiver ce processus.
Si pouviez m'aider,je ne sais plus quoi faire...
A voir également:

13 réponses

denrou Messages postés 432 Date d'inscription vendredi 31 juillet 2009 Statut Membre Dernière intervention 10 septembre 2010 132
31 juil. 2009 à 22:43
Dans internet explorer, va dans option --> outils --> Sécurité (2ème ou 3ème onglet) et mais la sécurité sur moyen, normalement ça devrait le faire.

Si tu viens d'acheter ton ordinateur et qu'il te la fait directement, je ne pense pas que ça soit un virus. Faut pas croire qu'on attrape un virus dès qu'on se connecte sur internet sans antivirus.
0
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
31 juil. 2009 à 22:45
Salut

Pourquoi faire combofix ?
Comment utiliser Vista avec certains outils ?
Connais tu le mode administrateur?
0
Denrou > Merci pour ta méthode mais malheuresement ça n'a rien changé
Marie > Combofix pour détecter un éventuel virus.Et non,je ne connais pas le mode administrateur,qu'est-ce que c'est ?
0
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
31 juil. 2009 à 23:50
Fais ce qui suit dans l’ordre :

· Télécharge ToolsCleaner de A.Roshtein& dj QUIOU sur ton Bureau.(sur un des 2 liens)
http://pc-system.fr/
https://www.commentcamarche.net/telecharger/securite/22061-toolscleaner/
· Clique sur Recherche et laisse le scan se terminer.
· Clique, sur Suppression pour finaliser.
· Tu peux, si tu le souhaites, te servir des Options facultatives.
· Clique sur Quitter, pour que le rapport puisse se créer.
· Poste moi le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur( C:\).
Tu supprimes ToolsCleaner sur ton Bureau et C:\TCleaner.txt.


C - Ccleaner :
(nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc.)
* Télécharge CCleaner.
(attention à l'installation penser à DECOCHER l'installation de Yahoo toolbar discrètement proposé en plus de CCleaner).

https://www.pcastuces.com/logitheque/ccleaner.htm
https://www.commentcamarche.net/telecharger/utilitaires/5647-ccleaner/
Installe le dans un répertoire dédié.
Décoche pendant l'installation
--- les deux cases "Ajouter l'option ... "
--- Contrôler les mises à jour
* Lance Ccleaner pour un nettoyage complet.
Tutorial ici:
https://kerio.probb.fr/t242-tuto-ccleaner-v-2
https://www.malekal.com/tutoriel-ccleaner/
ET
http://perso.orange.fr/jesses/Docs/Logiciels/CCleaner.htm



> Télécharge random's system information tool (RSIT) : http://images.malwareremoval.com/random/RSIT.exe
- Enregistre le programme sur ton bureau.

- Double clique sur RSIT.exe

- A l'écran "Disclaimer" choisis "1 months" dans le menu déroulant puis clique sur <continue>.

- Si HiJackThis n'est pas détecté sur ton PC, RSIT le téléchargera ; accepte alors la licence.

- Une fois le scanne terminé tu obtiendras un rapport log.txt. Poste le sur le forum.

NB : Il se peut que tu obtiennes un second rapport nommé info.txt. Dans ce cas poste le aussi.



et pour finir refais un nouveau rapport rsit mais en faisant comme ceci :

0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Narco!4 Messages postés 2385 Date d'inscription dimanche 25 janvier 2009 Statut Contributeur Dernière intervention 25 octobre 2012 467
1 août 2009 à 00:21
bonsoir

ToolsCleaner et CCleaner servent à quoi avant des logs ainsi ?
0
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
1 août 2009 à 12:31
Salut Narco

Je fais passer Tool car l'internaute a utilisé des fix. (combo)
Donc, je préfère travailler sans Fix installé au préalable
Quand à CCleaner, j'ai toujours procédé ainsi. D'ailleurs GenProc aussi ;)

++
0
Utilisateur anonyme
1 août 2009 à 00:28
salut Narco

certainement afin d'eviter d'avoir des "temp" qui pourraient faire penser à des infections
0
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
1 août 2009 à 12:31
Salut

Evite de répondre.
0
Narco!4 Messages postés 2385 Date d'inscription dimanche 25 janvier 2009 Statut Contributeur Dernière intervention 25 octobre 2012 467
1 août 2009 à 00:35
vous plaisanté j'espère
0
Utilisateur anonyme
1 août 2009 à 00:37
je sais pas je ne le fais jamais avant moi ^^
0
Le rapport de Toolscleaner n'arrive pas à se créer,je ne peux donc pas le poster.


1er rapport RSIT:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Kristy at 2009-08-01 14:40:36
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 1
System drive C: has 203 GB (89%) free of 228 GB
Total RAM: 2041 MB (43% free)

HijackThis download failed

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{089FD14D-132B-48FC-8861-0048AE113215}]
C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28 910624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
BHO_Startup Class - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2008-05-02 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll [2008-03-25 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9}]
AOL Toolbar BHO - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-03 1185120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2008-05-21 58128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0} - McAfee SiteAdvisor - C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28 910624]
{DE9C389F-3316-41A7-809B-AA305ED9D922} - AOL Toolbar - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-03 1185120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
"accrdsub"=c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
"PTHOSTTR"=c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2008-05-08 238984]
"CognizanceTS"=c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2008-05-21 24848]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2008-05-12 318488]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1045800]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
"MVS Splash"=C:\Program Files\McAfee\Managed VirusScan\Agent\Splash.exe [2008-05-05 550208]
"McAfee Managed Services Tray"=C:\Program Files\McAfee\Managed VirusScan\Agent\StartMyAgtTry.Exe [2008-05-05 91456]
"SiteAdvisor"=C:\Program Files\SiteAdvisor\6173\SiteAdv.exe [2007-08-28 36640]
"File Sanitizer"=C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2008-05-02 10244096]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe [2008-03-25 144784]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-05-14 177456]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-05-24 197904]
"HP Software Update"=c:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2007-05-09 54840]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-03-18 2289664]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\Windows\System32\APSHook.dll APSHook.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2009-08-01 14:40:36 ----D---- C:\rsit
2009-08-01 14:40:36 ----D---- C:\Program Files\trend micro
2009-08-01 14:34:42 ----D---- C:\Program Files\CCleaner
2009-08-01 13:54:01 ----A---- C:\windows\system32\rpcnetp.exe
2009-08-01 13:07:22 ----A---- C:\windows\system32\msshooks.dll
2009-08-01 13:07:21 ----A---- C:\windows\system32\msscb.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\thawbrkr.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\srchadmin.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\SearchFilterHost.exe
2009-08-01 13:07:20 ----A---- C:\windows\system32\propsys.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\propdefs.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\msstrc.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\mssprxy.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\mssitlb.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\msshsq.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\korwbrkr.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\xmlfilter.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\wsepno.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\rtffilt.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\offfilt.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\nlhtml.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\msscntrs.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\mimefilt.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\chtbrkr.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\chsbrkr.dll
2009-08-01 13:07:18 ----A---- C:\windows\system32\tquery.dll
2009-08-01 13:07:18 ----A---- C:\windows\system32\SearchProtocolHost.exe
2009-08-01 13:07:18 ----A---- C:\windows\system32\SearchIndexer.exe
2009-08-01 13:07:18 ----A---- C:\windows\system32\mssvp.dll
2009-08-01 13:07:18 ----A---- C:\windows\system32\mssrch.dll
2009-08-01 13:07:18 ----A---- C:\windows\system32\mssphtb.dll
2009-08-01 13:07:18 ----A---- C:\windows\system32\mssph.dll
2009-08-01 13:06:23 ----A---- C:\windows\system32\tzres.dll
2009-08-01 12:53:38 ----D---- C:\Program Files\MSXML 4.0
2009-08-01 01:26:05 ----A---- C:\windows\system32\aswBoot.exe
2009-08-01 01:26:02 ----D---- C:\Program Files\Alwil Software
2009-08-01 01:25:11 ----D---- C:\Program Files\Microsoft
2009-08-01 01:24:57 ----D---- C:\Program Files\Windows Live SkyDrive
2009-08-01 01:24:39 ----D---- C:\Program Files\Windows Live
2009-08-01 01:17:55 ----D---- C:\Program Files\Common Files\Windows Live
2009-07-31 22:06:13 ----SHD---- C:\$RECYCLE.BIN
2009-07-31 22:06:12 ----A---- C:\ComboFix.txt
2009-07-31 21:55:48 ----A---- C:\windows\PEV.exe
2009-07-31 21:55:48 ----A---- C:\windows\NIRCMD.exe
2009-07-31 21:55:47 ----A---- C:\windows\zip.exe
2009-07-31 21:55:47 ----A---- C:\windows\SWXCACLS.exe
2009-07-31 21:55:47 ----A---- C:\windows\SWSC.exe
2009-07-31 21:55:47 ----A---- C:\windows\SWREG.exe
2009-07-31 21:55:47 ----A---- C:\windows\sed.exe
2009-07-31 21:55:47 ----A---- C:\windows\grep.exe
2009-07-31 21:55:37 ----D---- C:\windows\ERDNT
2009-07-31 11:03:55 ----A---- C:\windows\system32\NlsLexicons0007.dll
2009-07-31 11:03:52 ----A---- C:\windows\system32\NlsLexicons0009.dll
2009-07-31 11:03:41 ----A---- C:\windows\system32\NaturalLanguage6.dll
2009-07-31 10:58:51 ----A---- C:\windows\system32\IPSECSVC.DLL
2009-07-31 10:58:50 ----A---- C:\windows\system32\PortableDeviceApi.dll
2009-07-31 10:58:48 ----A---- C:\windows\system32\t2embed.dll
2009-07-31 10:58:48 ----A---- C:\windows\system32\fontsub.dll
2009-07-31 10:58:48 ----A---- C:\windows\system32\dciman32.dll
2009-07-31 10:58:48 ----A---- C:\windows\system32\atmfd.dll
2009-07-31 10:58:38 ----A---- C:\windows\system32\pacerprf.dll
2009-07-31 10:58:35 ----A---- C:\windows\system32\xolehlp.dll
2009-07-31 10:58:35 ----A---- C:\windows\system32\msdtcprx.dll
2009-07-31 10:58:34 ----A---- C:\windows\system32\winhttp.dll
2009-07-31 10:58:32 ----A---- C:\windows\system32\gdi32.dll
2009-07-31 10:58:30 ----A---- C:\windows\system32\es.dll
2009-07-31 10:58:27 ----A---- C:\windows\system32\gameux.dll
2009-07-31 10:58:27 ----A---- C:\windows\system32\Apphlpdm.dll
2009-07-31 10:58:26 ----A---- C:\windows\system32\GameUXLegacyGDFs.dll
2009-07-31 10:58:20 ----A---- C:\windows\system32\wmpeffects.dll
2009-07-31 10:58:18 ----A---- C:\windows\system32\msxml3.dll
2009-07-31 10:58:17 ----A---- C:\windows\system32\netapi32.dll
2009-07-31 10:58:13 ----A---- C:\windows\system32\wmp.dll
2009-07-31 10:58:12 ----A---- C:\windows\system32\spwmp.dll
2009-07-31 10:58:12 ----A---- C:\windows\system32\dxmasf.dll
2009-07-31 10:58:11 ----A---- C:\windows\system32\wmploc.DLL
2009-07-31 10:58:05 ----A---- C:\windows\system32\shell32.dll
2009-07-31 10:57:55 ----A---- C:\windows\system32\localspl.dll
2009-07-31 10:57:53 ----A---- C:\windows\explorer.exe
2009-07-31 10:57:50 ----A---- C:\windows\system32\secur32.dll
2009-07-31 10:57:50 ----A---- C:\windows\system32\lsasrv.dll
2009-07-31 10:57:50 ----A---- C:\windows\system32\kernel32.dll
2009-07-31 10:57:50 ----A---- C:\windows\system32\apilogen.dll
2009-07-31 10:57:50 ----A---- C:\windows\system32\amxread.dll
2009-07-31 10:57:43 ----A---- C:\windows\system32\rpcss.dll
2009-07-31 10:57:43 ----A---- C:\windows\system32\ntoskrnl.exe
2009-07-31 10:57:43 ----A---- C:\windows\system32\ntkrnlpa.exe
2009-07-31 10:57:42 ----A---- C:\windows\system32\sdohlp.dll
2009-07-31 10:57:42 ----A---- C:\windows\system32\printfilterpipelinesvc.exe
2009-07-31 10:57:42 ----A---- C:\windows\system32\printfilterpipelineprxy.dll
2009-07-31 10:57:42 ----A---- C:\windows\system32\iasrecst.dll
2009-07-31 10:57:42 ----A---- C:\windows\system32\iashost.exe
2009-07-31 10:57:42 ----A---- C:\windows\system32\iasdatastore.dll
2009-07-31 10:57:42 ----A---- C:\windows\system32\iasads.dll
2009-07-31 10:57:36 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2009-07-31 10:57:36 ----A---- C:\windows\system32\WindowsCodecs.dll
2009-07-31 10:57:36 ----A---- C:\windows\system32\PhotoMetadataHandler.dll
2009-07-31 10:57:28 ----A---- C:\windows\system32\mshtml.dll
2009-07-31 10:57:27 ----A---- C:\windows\system32\occache.dll
2009-07-31 10:57:26 ----A---- C:\windows\system32\ieframe.dll
2009-07-31 10:57:25 ----A---- C:\windows\system32\wininet.dll
2009-07-31 10:57:25 ----A---- C:\windows\system32\urlmon.dll
2009-07-31 10:57:25 ----A---- C:\windows\system32\msfeeds.dll
2009-07-31 10:57:25 ----A---- C:\windows\system32\iertutil.dll
2009-07-31 10:57:25 ----A---- C:\windows\system32\iedkcs32.dll
2009-07-31 10:57:24 ----A---- C:\windows\system32\mstime.dll
2009-07-31 10:57:24 ----A---- C:\windows\system32\jsproxy.dll
2009-07-31 10:57:24 ----A---- C:\windows\system32\ieUnatt.exe
2009-07-31 10:57:24 ----A---- C:\windows\system32\ieencode.dll
2009-07-31 10:57:24 ----A---- C:\windows\system32\ieaksie.dll
2009-07-31 10:57:12 ----A---- C:\windows\system32\emdmgmt.dll
2009-07-31 10:57:12 ----A---- C:\windows\system32\dataclen.dll
2009-07-31 10:57:12 ----A---- C:\windows\system32\cdd.dll
2009-07-31 10:57:10 ----A---- C:\windows\system32\win32spl.dll
2009-07-31 10:57:09 ----A---- C:\windows\system32\wersvc.dll
2009-07-31 10:57:09 ----A---- C:\windows\system32\Faultrep.dll
2009-07-31 10:57:05 ----A---- C:\windows\system32\schannel.dll
2009-07-31 10:57:03 ----A---- C:\windows\system32\mf.dll
2009-07-31 10:57:02 ----A---- C:\windows\system32\WMVCORE.DLL
2009-07-31 10:57:02 ----A---- C:\windows\system32\WMNetMgr.dll
2009-07-31 10:57:02 ----A---- C:\windows\system32\logagent.exe
2009-07-31 10:57:00 ----A---- C:\windows\system32\wshext.dll
2009-07-31 10:57:00 ----A---- C:\windows\system32\wscript.exe
2009-07-31 10:57:00 ----A---- C:\windows\system32\vbscript.dll
2009-07-31 10:57:00 ----A---- C:\windows\system32\scrrun.dll
2009-07-31 10:57:00 ----A---- C:\windows\system32\scrobj.dll
2009-07-31 10:57:00 ----A---- C:\windows\system32\jscript.dll
2009-07-31 10:57:00 ----A---- C:\windows\system32\cscript.exe
2009-07-31 10:56:58 ----A---- C:\windows\system32\inetcomm.dll
2009-07-31 10:56:57 ----A---- C:\windows\system32\connect.dll
2009-07-31 10:56:56 ----A---- C:\windows\system32\rpcrt4.dll
2009-07-31 10:56:54 ----A---- C:\windows\system32\quartz.dll
2009-07-31 10:56:53 ----A---- C:\windows\system32\msxml6.dll
2009-07-31 10:40:56 ----A---- C:\windows\system32\wups2.dll
2009-07-31 10:40:56 ----A---- C:\windows\system32\wucltux.dll
2009-07-31 10:40:56 ----A---- C:\windows\system32\wuaueng.dll
2009-07-31 10:40:56 ----A---- C:\windows\system32\wuauclt.exe
2009-07-31 10:40:25 ----A---- C:\windows\system32\wups.dll
2009-07-31 10:40:25 ----A---- C:\windows\system32\wudriver.dll
2009-07-31 10:40:25 ----A---- C:\windows\system32\wuapi.dll
2009-07-31 10:40:20 ----A---- C:\windows\system32\wuwebv.dll
2009-07-31 10:40:20 ----A---- C:\windows\system32\wuapp.exe
2009-07-31 01:07:51 ----D---- C:\Users\Kristy\AppData\Roaming\Apple Computer
2009-07-31 01:07:36 ----DC---- C:\windows\system32\DRVSTORE
2009-07-31 01:07:10 ----D---- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-07-31 01:06:33 ----D---- C:\Program Files\Bonjour
2009-07-31 01:05:44 ----D---- C:\Program Files\QuickTime
2009-07-31 01:05:43 ----D---- C:\ProgramData\Apple Computer
2009-07-31 01:05:21 ----D---- C:\Program Files\Apple Software Update
2009-07-31 01:03:31 ----D---- C:\Program Files\Common Files\Apple
2009-07-31 01:03:30 ----D---- C:\ProgramData\Apple
2009-07-29 21:19:35 ----D---- C:\Users\Kristy\AppData\Roaming\InterVideo
2009-07-29 13:52:48 ----D---- C:\Users\Kristy\AppData\Roaming\ATI
2009-07-29 13:52:48 ----D---- C:\ProgramData\ATI
2009-07-29 13:52:39 ----D---- C:\Users\Kristy\AppData\Roaming\HPQLOG
2009-07-29 13:52:19 ----D---- C:\Users\Kristy\AppData\Roaming\SiteAdvisor
2009-07-29 13:51:56 ----D---- C:\Users\Kristy\AppData\Roaming\Identities
2009-07-29 13:49:42 ----D---- C:\Users\Kristy\AppData\Roaming\Macromedia
2009-07-29 13:49:31 ----D---- C:\Users\Kristy\AppData\Roaming\Adobe
2009-07-29 13:49:26 ----D---- C:\Users\Kristy\AppData\Roaming\Hewlett-Packard
2009-07-29 13:46:57 ----D---- C:\Program Files\HP Webcam Application
2009-07-29 13:46:11 ----A---- C:\windows\system32\rsnp2uvc.dll
2009-07-29 13:46:10 ----D---- C:\Program Files\Common Files\SNP2UVC
2009-07-29 13:46:10 ----A---- C:\windows\system32\csnp2uvc.dll
2009-07-29 13:46:10 ----A---- C:\windows\snp2uvc.ini
2009-07-29 13:45:16 ----D---- C:\windows\Hewlett-Packard
2009-07-29 13:40:45 ----D---- C:\Program Files\ATI Technologies
2009-07-29 13:40:17 ----D---- C:\Program Files\ATI
2009-07-29 13:39:10 ----D---- C:\Users\Kristy\AppData\Roaming\InstallShield
2009-07-29 13:38:47 ----SD---- C:\Users\Kristy\AppData\Roaming\Microsoft
2009-07-29 13:34:24 ----SHD---- C:\ProgramData\Modèles
2009-07-29 13:34:24 ----SHD---- C:\ProgramData\Menu Démarrer
2009-07-29 13:34:24 ----SHD---- C:\ProgramData\Favoris
2009-07-29 13:34:24 ----SHD---- C:\ProgramData\Bureau
2009-07-29 13:34:24 ----SHD---- C:\Program Files\Fichiers communs
2009-07-29 12:28:59 ----D---- C:\windows\SoftwareDistribution
2009-07-29 12:24:40 ----D---- C:\windows\Prefetch
2009-07-09 12:16:16 ----A---- C:\windows\system32\usbaaplrc.dll

======List of files/folders modified in the last 1 months======

2009-08-01 14:40:41 ----D---- C:\windows\Temp
2009-08-01 14:40:36 ----RD---- C:\Program Files
2009-08-01 14:36:44 ----D---- C:\windows\Debug
2009-08-01 14:36:44 ----D---- C:\Windows
2009-08-01 14:17:57 ----D---- C:\windows\winsxs
2009-08-01 14:12:17 ----D---- C:\windows\rescache
2009-08-01 14:10:59 ----SHD---- C:\System Volume Information
2009-08-01 14:02:18 ----D---- C:\windows\System32
2009-08-01 14:02:18 ----A---- C:\windows\system32\PerfStringBackup.INI
2009-08-01 14:02:17 ----D---- C:\windows\inf
2009-08-01 13:57:09 ----D---- C:\windows\system32\catroot
2009-08-01 13:57:05 ----D---- C:\windows\system32\catroot2
2009-08-01 13:55:02 ----A---- C:\windows\system32\rpcnetp.dll
2009-08-01 13:55:01 ----D---- C:\ProgramData\hpqLog
2009-08-01 13:17:10 ----D---- C:\windows\system32\drivers
2009-08-01 13:17:10 ----D---- C:\windows\AppPatch
2009-08-01 13:17:10 ----D---- C:\Program Files\Windows Mail
2009-08-01 13:17:09 ----D---- C:\windows\PolicyDefinitions
2009-08-01 13:17:09 ----AD---- C:\windows\system32\nl-NL
2009-08-01 13:17:09 ----AD---- C:\windows\system32\it-IT
2009-08-01 13:17:09 ----AD---- C:\windows\system32\fr-FR
2009-08-01 13:17:08 ----D---- C:\Program Files\Windows Media Player
2009-08-01 13:17:03 ----D---- C:\windows\system32\wbem
2009-08-01 13:17:03 ----D---- C:\windows\system32\manifeststore
2009-08-01 13:17:03 ----D---- C:\Program Files\Internet Explorer
2009-08-01 13:16:57 ----D---- C:\windows\system32\en-US
2009-08-01 13:14:33 ----SHD---- C:\windows\Installer
2009-08-01 13:14:32 ----D---- C:\ProgramData\Microsoft Help
2009-08-01 10:35:44 ----AD---- C:\windows\system32\de-DE
2009-08-01 01:29:47 ----SD---- C:\ProgramData\Microsoft
2009-08-01 01:25:01 ----D---- C:\Program Files\Common Files\microsoft shared
2009-08-01 01:17:55 ----D---- C:\Program Files\Common Files
2009-07-31 22:04:08 ----A---- C:\windows\system.ini
2009-07-31 18:20:08 ----D---- C:\windows\system32\WDI
2009-07-31 14:33:44 ----D---- C:\windows\system32\Tasks
2009-07-31 01:07:10 ----HD---- C:\ProgramData
2009-07-30 11:09:43 ----D---- C:\windows\system32\LogFiles
2009-07-29 21:21:45 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-29 21:21:45 ----D---- C:\Program Files\InterVideo
2009-07-29 15:19:33 ----D---- C:\windows\Logs
2009-07-29 14:00:14 ----D---- C:\windows\system32\NDF
2009-07-29 13:59:51 ----D---- C:\windows\ModemLogs
2009-07-29 13:51:46 ----D---- C:\windows\system
2009-07-29 13:49:15 ----D---- C:\ProgramData\Hewlett-Packard
2009-07-29 13:49:06 ----HD---- C:\System.sav
2009-07-29 13:49:06 ----D---- C:\Swsetup
2009-07-29 13:46:28 ----D---- C:\windows\twain_32
2009-07-29 13:43:49 ----D---- C:\windows\Panther
2009-07-29 13:42:42 ----RSD---- C:\windows\assembly
2009-07-29 13:39:32 ----D---- C:\Program Files\Analog Devices
2009-07-29 13:39:27 ----D---- C:\ProgramData\SonicFocus
2009-07-29 13:39:15 ----D---- C:\windows\system32\restore
2009-07-29 13:38:47 ----RD---- C:\Users
2009-07-29 13:34:24 ----D---- C:\Program Files\Windows NT
2009-07-29 12:29:09 ----D---- C:\windows\Registration

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr.sys [2009-02-05 23152]
R1 aswSP;avast! Self Protection; C:\windows\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 MPFP;MPFP; C:\windows\System32\Drivers\Mpfp.sys [2007-03-02 120360]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2008-05-14 12496]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2008-05-08 3552256]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2008-04-14 9344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 NETw5v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits ; C:\windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2008-03-27 199472]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\windows\system32\DRIVERS\yk60x86.sys [2008-01-17 298496]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712]
S3 catchme;catchme; \??\C:\Users\Kristy\AppData\Local\Temp\catchme.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2008-01-21 45624]
S3 USBAAPL;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl.sys [2009-07-09 39424]
S3 usbvideo;Périphérique vidéo USB (WDM); C:\windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712]
R2 ASBroker;Logon Session Broker; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 Ati External Event Utility;Ati External Event Utility; C:\windows\system32\Ati2evxx.exe [2008-05-08 671744]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-05-14 34184]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-05-14 256512]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-05-02 77824]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 McAfee HackerWatch Service;McAfee HackerWatch Service; C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe [2007-02-13 540776]
R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2007-05-24 841256]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service; C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [2008-05-05 202048]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2008-05-12 576024]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 SiteAdvisor Service;SiteAdvisor Service; C:\Program Files\SiteAdvisor\6173\SAService.exe [2008-06-17 341280]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-04-16 165192]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-01-21 33800]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-27 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]

-----------------EOF-----------------



2ème rapport RSIT:


info.txt logfile of random's system information tool 1.06 2009-08-01 14:40:44

======Uninstall list======

-->C:\Program Files\Common Files\McAfee\Installer\mcinst.exe "C:\Program Files\McAfee\MPF\mpfapi.inf" /uninstall
2007 Microsoft Office system-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROHYBRIDR /dll OSETUP.DLL
32 Bit HP CIO Components Installer-->MsiExec.exe /I{F7B0E599-C114-4493-BC4D-D8FC7CBBABBB}
ActivClient 6.1 x86-->MsiExec.exe /I{AC194855-F7AC-4D04-B4C9-07BA46FCB697}
Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Agere Systems HDA Modem-->agrsmdel
AOL Toolbar 5.0-->"C:\Program Files\AOL\AOL Toolbar 5.0\uninstall.exe"
Apple Mobile Device Support-->MsiExec.exe /I{C337BDAF-CB4E-47E2-BE1A-CB31BB7DD0E3}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
BIOS Configuration for HP ProtectTools-->MsiExec.exe /X{A1410161-F615-4B91-A019-FA33833EF00D}
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Catalyst Control Center - Branding-->MsiExec.exe /I{30BF4E6C-D866-46F7-A4F6-81A45E97706E}
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Credential Manager for HP ProtectTools-->rundll32.exe "c:\Program Files\Hewlett-Packard\IAM\Bin\SetupHelper.dll",ExecMain /Uninstall {0F98662A-EA83-414F-8766-3FCE46A32641}
Drive Encryption for HP ProtectTools-->MsiExec.exe /I{9DBD8BEE-B3EC-4D82-A81C-0F6250176DCC}
ESU for Microsoft Vista SP1-->MsiExec.exe /I{BC1DC565-8B34-4B29-9DB2-BF281C2FB56E}
File Sanitizer For HP ProtectTools-->C:\Program Files\InstallShield Installation Information\{789C97CE-9E17-4126-BDF4-11FF458BF705}\setup.exe -runfromtemp -l0x0009 -removeonly
Hewlett-Packard Active Check for Health Check-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Hewlett-Packard Asset Agent for Health Check-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
HP 3D DriveGuard-->MsiExec.exe /X{4C203E35-B5C7-4E35-9834-619668C0FFEE}
HP Active Support Library-->C:\Program Files\InstallShield Installation Information\{9E2CCD5E-1990-4EF2-9B61-32F0BBACC29B}\setup.exe -runfromtemp -l0x0409
HP Customer Experience Enhancements-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{420BBA1D-B275-4891-838C-EA88FE87A632}\setup.exe" -l0x9 -removeonly
HP Doc Viewer-->MsiExec.exe /I{082702D5-5DD8-4600-BCE5-48B15174687F}
HP Easy Setup - Frontend-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8BB128BE-2670-485D-A221-B00715BCEBCF}\setup.exe" -l0x9 -removeonly
HP Help and Support-->MsiExec.exe /X{E333CA5F-00ED-4EEF-90E5-6A33A8FE969F}
HP JavaCard for HP ProtectTools-->MsiExec.exe /I{2086797F-A4BA-4CD3-8104-09B8D39DA5D8}
HP ProtectTools Security Manager Suite-->C:\Windows\Installer\HPPTSuiteInstallEngine.exe /uninstall=C:\Windows\Installer\49351200.msi
HP ProtectTools Security Manager-->MsiExec.exe /I{926F4D5F-C8FC-4FB7-8E09-BCB8A997D1C7}
HP Quick Launch Buttons 6.40 E1-->C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe -runfromtemp -l0x0009 -removeonly uninst
HP Software Setup 5.00.A.7-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{70CEFEBA-F757-4DBE-8A21-027C326137CE}\SETUP.EXE" -l0x9
HP Update-->MsiExec.exe /X{C8FD5BC1-92EF-4C15-92A9-F9AC7F61985F}
HP User Guides 0108-->MsiExec.exe /I{B79DB290-9F72-4B20-9776-848D7832705B}
HP Wallpaper-->MsiExec.exe /I{F173C2B3-296F-458C-98FF-1676A42EBA02}
HP Webcam Application-->C:\Program Files\InstallShield Installation Information\{154E4F71-DFC0-4B31-8D99-F97615031B02}\setup.exe -runfromtemp -l0x040c -removeonly
HP Webcam-->C:\Program Files\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x040c -removeonly
HP Wireless Assistant-->MsiExec.exe /I{9ADABDDE-9644-461B-9E73-83FA3EFCAB50}
HPNetworkAssistant-->MsiExec.exe /I{228C6B46-64E2-404E-898A-EF0830603EF4}
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Intel® Matrix Storage Manager-->C:\Windows\system32\imsmudlg.exe -uninstall
InterVideo DVD Check-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5D97A4A7-C274-4B63-86D9-07A33435F505}\setup.exe" REMOVEALL
Java(TM) 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
LightScribe System Software 1.12.37.1-->MsiExec.exe /X{004C5DA2-2051-4D25-94BA-51CF810C91EB}
McAfee Browser Protection Service-->C:\Program Files\McAfee\Managed VirusScan\Agent\myInx.exe /Script=C:\Program Files\McAfee\Managed VirusScan\BrowseProtection\BrowseProtection.inx /Section=DefaultUninstall
Microsoft .NET Framework 1.1 Hotfix (KB929729)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M929729\M929729Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Office Access MUI (Dutch) 2007-->MsiExec.exe /X{90120000-0015-0413-0000-0000000FF1CE}
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Access MUI (German) 2007-->MsiExec.exe /X{90120000-0015-0407-0000-0000000FF1CE}
Microsoft Office Access MUI (Italian) 2007-->MsiExec.exe /X{90120000-0015-0410-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Excel 2007 Help - Aggiornamento (KB963678)-->msiexec /package {90120000-0016-0410-0000-0000000FF1CE} /uninstall {9F57BDED-B51B-4D2F-B360-5B4EFAAF0F1A}
Microsoft Office Excel MUI (Dutch) 2007-->MsiExec.exe /X{90120000-0016-0413-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (German) 2007-->MsiExec.exe /X{90120000-0016-0407-0000-0000000FF1CE}
Microsoft Office Excel MUI (Italian) 2007-->MsiExec.exe /X{90120000-0016-0410-0000-0000000FF1CE}
Microsoft Office Outlook 2007 Help - Aggiornamento (KB963677)-->msiexec /package {90120000-001A-0410-0000-0000000FF1CE} /uninstall {2278E02A-AB15-4BF7-B2B4-5C0EEB4B7EEB}
Microsoft Office Outlook MUI (Dutch) 2007-->MsiExec.exe /X{90120000-001A-0413-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (German) 2007-->MsiExec.exe /X{90120000-001A-0407-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Italian) 2007-->MsiExec.exe /X{90120000-001A-0410-0000-0000000FF1CE}
Microsoft Office Powerpoint 2007 Help - Aggiornamento (KB963669)-->msiexec /package {90120000-0018-0410-0000-0000000FF1CE} /uninstall {C76C02F1-B07F-4974-876A-A18DEC9887C8}
Microsoft Office PowerPoint MUI (Dutch) 2007-->MsiExec.exe /X{90120000-0018-0413-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (German) 2007-->MsiExec.exe /X{90120000-0018-0407-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Italian) 2007-->MsiExec.exe /X{90120000-0018-0410-0000-0000000FF1CE}
Microsoft Office Professional Hybrid 2007-->MsiExec.exe /X{91120000-0031-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Italian) 2007-->MsiExec.exe /X{90120000-001F-0410-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (Dutch) 2007-->MsiExec.exe /X{90120000-002C-0413-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Proofing (German) 2007-->MsiExec.exe /X{90120000-002C-0407-0000-0000000FF1CE}
Microsoft Office Proofing (Italian) 2007-->MsiExec.exe /X{90120000-002C-0410-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Dutch) 2007-->MsiExec.exe /X{90120000-0019-0413-0000-0000000FF1CE}
Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (German) 2007-->MsiExec.exe /X{90120000-0019-0407-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Italian) 2007-->MsiExec.exe /X{90120000-0019-0410-0000-0000000FF1CE}
Microsoft Office Shared MUI (Dutch) 2007-->MsiExec.exe /X{90120000-006E-0413-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (German) 2007-->MsiExec.exe /X{90120000-006E-0407-0000-0000000FF1CE}
Microsoft Office Shared MUI (Italian) 2007-->MsiExec.exe /X{90120000-006E-0410-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Suite Activation Assistant-->MsiExec.exe /X{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
Microsoft Office Word 2007 Help - Aggiornamento (KB963665)-->msiexec /package {90120000-001B-0410-0000-0000000FF1CE} /uninstall {E5B82DB3-DD7D-4C45-BC5E-09864B26F9BC}
Microsoft Office Word MUI (Dutch) 2007-->MsiExec.exe /X{90120000-001B-0413-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (German) 2007-->MsiExec.exe /X{90120000-001B-0407-0000-0000000FF1CE}
Microsoft Office Word MUI (Italian) 2007-->MsiExec.exe /X{90120000-001B-0410-0000-0000000FF1CE}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C}
Mise à jour Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {51EFB347-1F3D-4BAC-8B79-F056B904FE21}
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3}
Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223}
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PDF Complete-->C:\Program Files\PDF Complete\uninstall.exe
QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68}
Roxio Activation Module-->MsiExec.exe /I{EC877639-07AB-495C-BFD1-D63AF9140810}
Roxio Creator Audio-->MsiExec.exe /I{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
Roxio Creator Business v10-->MsiExec.exe /I{ED439A64-F018-4DD4-8BA5-328D85AB09AB}
Roxio Creator Business-->C:\ProgramData\Uninstall\{537BF16E-7412-448C-95D8-846E85A1D817}\setup.exe /x {537BF16E-7412-448C-95D8-846E85A1D817}
Roxio Creator Copy-->MsiExec.exe /I{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
Roxio Creator Data-->MsiExec.exe /I{08E81ABD-79F7-49C2-881F-FD6CB0975693}
Roxio Creator Tools-->MsiExec.exe /I{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}
Roxio Express Labeler 3-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Roxio MyDVD-->MsiExec.exe /I{30A2A953-DEB1-466A-B660-F4399C7C6B9D}
Sonic CinePlayer Decoder Pack-->MsiExec.exe /I{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}
SoundMAX-->C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe -runfromtemp -l0x040c -removeonly
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft Office 2007 Help for Common Features (KB963673)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {AB365889-0395-4FAD-B702-CA5985D53D42}
Update for Microsoft Office Access 2007 Help (KB963663)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}
Update for Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {199DF7B6-169C-448C-B511-1054101BE9C9}
Update for Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {0451F231-E3E3-4943-AB9F-58EB96171784}
Update for Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {397B1D4F-ED7B-4ACA-A637-43B670843876}
Update for Microsoft Office Publisher 2007 Help (KB963667)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {2E40DE55-B289-4C8B-8901-5D369B16814F}
Update for Microsoft Office Script Editor Help (KB963671)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {CD11C6A2-FFC6-4271-8EAB-79C3582F505C}
Update for Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {80E762AA-C921-4839-9D7D-DB62A72C0726}
Update for Office 2007 (KB934528)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {2B939677-2FFD-48F6-9075-7BF48CB87C80}
Update for Outlook 2007 Junk Email Filter (kb971933)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {53C200F4-3B4B-49A5-8539-2C61F1A88CA2}
Update für Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0407-0000-0000000FF1CE} /uninstall {BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}
Update für Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-0407-0000-0000000FF1CE} /uninstall {F6828576-6F79-470D-AB50-69D1BBADBD30}
Update für Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0407-0000-0000000FF1CE} /uninstall {EA160DA3-E9B5-4D03-A518-21D306665B96}
Update für Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0407-0000-0000000FF1CE} /uninstall {38472199-D7B6-4833-A949-10E4EE6365A1}
Update voor Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0413-0000-0000000FF1CE} /uninstall {5CF7002F-6F49-4482-9564-5614FBE560FA}
Update voor Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0413-0000-0000000FF1CE} /uninstall {15D84E79-1ED7-42C5-B2FD-745C3FBDDDC5}
Update voor Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0413-0000-0000000FF1CE} /uninstall {A66AE6A1-8D8C-4102-BC18-38CBDE40F809}
Vista Default Settings-->MsiExec.exe /I{207A8D54-51C9-48B6-80E6-CBA5403B3ED4}
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}

======Security center information======

FW: Total Protection
AS: Windows Defender

======System event log======

Computer Name: PC-de-Kristy
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB938371(Update) à l’état Permanent(Permanent)
Record Number: 13048
Source Name: Microsoft-Windows-Servicing
Time Written: 20090801121946.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-Kristy
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package KB938371(Update) à l’état Permanent(Permanent)
Record Number: 13049
Source Name: Microsoft-Windows-Servicing
Time Written: 20090801121946.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-Kristy
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package WUClient-SelfUpdate-Aux(Feature Pack) à l’état Installé(Installed)
Record Number: 13050
Source Name: Microsoft-Windows-Servicing
Time Written: 20090801121946.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-Kristy
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package WindowsUpdateClient-SelfUpdate-Aux-Package(Update) à l’état Installé(Installed)
Record Number: 13051
Source Name: Microsoft-Windows-Servicing
Time Written: 20090801121946.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

Computer Name: PC-de-Kristy
Event Code: 4376
Message: Servicing a requis un redémarrage pour terminer la définition du package WindowsUpdateClient-SelfUpdate-Aux-AuxComp-Package(Update) à l’état Installé(Installed)
Record Number: 13052
Source Name: Microsoft-Windows-Servicing
Time Written: 20090801121946.000000-000
Event Type: Avertissement
User: AUTORITE NT\SYSTEM

=====Application event log=====

Computer Name: PC-de-Kristy
Event Code: 1008
Message: Le service Windows Search tente de supprimer l’ancien catalogue.

Record Number: 470
Source Name: Microsoft-Windows-Search
Time Written: 20090801115507.000000-000
Event Type: Avertissement
User:

Computer Name: PC-de-Kristy
Event Code: 10
Message: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.
Record Number: 480
Source Name: Microsoft-Windows-WMI
Time Written: 20090801115518.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Kristy
Event Code: 11
Message: Échec de l'extraction de la liste racine tierce partie depuis le fichier CAB de mise à jour automatique à : <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> avec l'erreur : Données non valides.
.
Record Number: 501
Source Name: Microsoft-Windows-CAPI2
Time Written: 20090801115738.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Kristy
Event Code: 1002
Message: Le programme ToolsCleaner2[1].exe version 0.0.0.0 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans l’application Rapports et solutions aux problèmes du Panneau de configuration. ID de processus : 1294 Heure de début : 01ca129fde7da143 Heure de fin : 3
Record Number: 506
Source Name: Application Hang
Time Written: 20090801120334.000000-000
Event Type: Erreur
User:

Computer Name: PC-de-Kristy
Event Code: 513
Message: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

Details:
AddWin32ServiceFiles: Unable to back up image of service rpcnetp since QueryServiceConfig API failed

System Error:
Le fichier spécifié est introuvable.
.
Record Number: 508
Source Name: Microsoft-Windows-CAPI2
Time Written: 20090801121048.000000-000
Event Type: Erreur
User:

=====Security event log=====

Computer Name: PC-de-Kristy
Event Code: 4672
Message: Privilèges spéciaux attribués à la nouvelle ouverture de session.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : SYSTEM
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7

Privilèges : SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 848
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090801121053.325571-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Kristy
Event Code: 4904
Message: Une tentative d’inscription de la source d’un événement de sécurité a été effectuée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-KRISTY$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Processus :
ID du processus : 0x388
Nom du processus : C:\Windows\System32\VSSVC.exe

Source de l’événement :
Nom de la source : VSSAudit
ID de la source de l’événement : 0x913756
Record Number: 849
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090801121133.893571-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Kristy
Event Code: 4905
Message: Une tentative d’annulation d’inscription de la source d’un événement de sécurité a été effectuée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-KRISTY$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Processus :
ID du processus : 0x388
Nom du processus : C:\Windows\System32\VSSVC.exe

Source de l’événement :
Nom de la source : VSSAudit
ID de la source de l’événement : 0x913756
Record Number: 850
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090801121133.894571-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Kristy
Event Code: 4907
Message: Les paramètres d’audit sur l’objet ont changé.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-KRISTY$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Objet :
Serveur de l’objet : Security
Type d’objet : File
Nom de l’objet : C:\Windows\winsxs\Temp\PendingRenames\03c4c817a212ca0130060000a8053002.ServiceModel.mfl
ID du handle : 0xe988

Informations sur le processus :
ID du processus : 0x5a8
Nom du processus : C:\Windows\servicing\TrustedInstaller.exe

Paramètres d’audit :
Descripteur de sécurité d’origine :
Nouveau descripteur de sécurité : S:ARAI
Record Number: 851
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090801121752.707571-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Kristy
Event Code: 4907
Message: Les paramètres d’audit sur l’objet ont changé.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : PC-DE-KRISTY$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Objet :
Serveur de l’objet : Security
Type d’objet : File
Nom de l’objet : C:\Windows\winsxs\Temp\PendingRenames\431aa518a212ca0131060000a8053002.Tracking_Logic.sql
ID du handle : 0xec48

Informations sur le processus :
ID du processus : 0x5a8
Nom du processus : C:\Windows\servicing\TrustedInstaller.exe

Paramètres d’audit :
Descripteur de sécurité d’origine :
Nouveau descripteur de sécurité : S:ARAI
Record Number: 852
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20090801121754.126571-000
Event Type: Succès de l'audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;c:\Program Files\ActivIdentity\ActivClient;c:\Program Files\Hewlett-Packard\IAM\bin;c:\Program Files\Common Files\Roxio Shared\DLLShared;c:\Program Files\Common Files\Roxio Shared\10.0\DLLShared;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\QuickTime\QTSystem
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
"NUMBER_OF_PROCESSORS"=2
"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
"DFSTRACINGON"=FALSE
"OnlineServices"=Online Services
"Platform"=BNB
"RoxioCentral"=c:\Program Files\Common Files\Roxio Shared\10.0\Roxio Central36\
"EMC_AUTOPLAY"=c:\Program Files\Common Files\Roxio Shared\
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_06\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_06\lib\ext\QTJava.zip

-----------------EOF-----------------
0
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
1 août 2009 à 23:18
Salut

Il manque un rapport ;)
0
Oh,oups ^^"
Lequel ? Si tu parles du tout dernier,je n'ai pas pu le faire car tu as oublié d'écrire les instructions...
0
^^Marie^^ Messages postés 113901 Date d'inscription mardi 6 septembre 2005 Statut Membre Dernière intervention 28 août 2020 3 275
2 août 2009 à 11:33
Logfile of random's system information tool 1.06 (written by random/random)
Run by Kristy at 2009-08-01 14:40:36
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 1
System drive C: has 203 GB (89%) free of 228 GB
Total RAM: 2041 MB (43% free)


La suite a du rester dans ta souris ;))
0
Euh,j'ai refait le rapport et apparemment tout y est...Je le reposte quand même:




Logfile of random's system information tool 1.06 (written by random/random)
Run by Kristy at 2009-08-02 14:33:20
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 1
System drive C: has 203 GB (89%) free of 228 GB
Total RAM: 2041 MB (41% free)

HijackThis download failed

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{089FD14D-132B-48FC-8861-0048AE113215}]
C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28 910624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
BHO_Startup Class - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2008-05-02 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll [2008-03-25 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9}]
AOL Toolbar BHO - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-03 1185120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2008-05-21 58128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0} - McAfee SiteAdvisor - C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28 910624]
{DE9C389F-3316-41A7-809B-AA305ED9D922} - AOL Toolbar - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-03 1185120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
"accrdsub"=c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
"PTHOSTTR"=c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2008-05-08 238984]
"CognizanceTS"=c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2008-05-21 24848]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2008-05-12 318488]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1045800]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
"MVS Splash"=C:\Program Files\McAfee\Managed VirusScan\Agent\Splash.exe [2008-05-05 550208]
"McAfee Managed Services Tray"=C:\Program Files\McAfee\Managed VirusScan\Agent\StartMyAgtTry.Exe [2008-05-05 91456]
"SiteAdvisor"=C:\Program Files\SiteAdvisor\6173\SiteAdv.exe [2007-08-28 36640]
"File Sanitizer"=C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2008-05-02 10244096]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe [2008-03-25 144784]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-05-14 177456]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-05-24 197904]
"HP Software Update"=c:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2007-05-09 54840]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-02-05 81000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-03-18 2289664]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\Windows\System32\APSHook.dll APSHook.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2009-08-01 14:40:36 ----D---- C:\rsit
2009-08-01 14:40:36 ----D---- C:\Program Files\trend micro
2009-08-01 14:34:42 ----D---- C:\Program Files\CCleaner
2009-08-01 13:07:22 ----A---- C:\windows\system32\msshooks.dll
2009-08-01 13:07:21 ----A---- C:\windows\system32\msscb.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\thawbrkr.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\srchadmin.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\SearchFilterHost.exe
2009-08-01 13:07:20 ----A---- C:\windows\system32\propsys.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\propdefs.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\msstrc.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\mssprxy.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\mssitlb.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\msshsq.dll
2009-08-01 13:07:20 ----A---- C:\windows\system32\korwbrkr.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\xmlfilter.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\wsepno.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\rtffilt.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\offfilt.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\nlhtml.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\msscntrs.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\mimefilt.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\chtbrkr.dll
2009-08-01 13:07:19 ----A---- C:\windows\system32\chsbrkr.dll
2009-08-01 13:07:18 ----A---- C:\windows\system32\tquery.dll
2009-08-01 13:07:18 ----A---- C:\windows\system32\SearchProtocolHost.exe
2009-08-01 13:07:18 ----A---- C:\windows\system32\SearchIndexer.exe
2009-08-01 13:07:18 ----A---- C:\windows\system32\mssvp.dll
2009-08-01 13:07:18 ----A---- C:\windows\system32\mssrch.dll
2009-08-01 13:07:18 ----A---- C:\windows\system32\mssphtb.dll
2009-08-01 13:07:18 ----A---- C:\windows\system32\mssph.dll
2009-08-01 13:06:23 ----A---- C:\windows\system32\tzres.dll
2009-08-01 12:53:38 ----D---- C:\Program Files\MSXML 4.0
2009-08-01 01:26:05 ----A---- C:\windows\system32\aswBoot.exe
2009-08-01 01:26:02 ----D---- C:\Program Files\Alwil Software
2009-08-01 01:25:11 ----D---- C:\Program Files\Microsoft
2009-08-01 01:24:57 ----D---- C:\Program Files\Windows Live SkyDrive
2009-08-01 01:24:39 ----D---- C:\Program Files\Windows Live
2009-08-01 01:17:55 ----D---- C:\Program Files\Common Files\Windows Live
2009-07-31 22:06:13 ----SHD---- C:\$RECYCLE.BIN
2009-07-31 22:06:12 ----A---- C:\ComboFix.txt
2009-07-31 21:55:48 ----A---- C:\windows\PEV.exe
2009-07-31 21:55:48 ----A---- C:\windows\NIRCMD.exe
2009-07-31 21:55:47 ----A---- C:\windows\zip.exe
2009-07-31 21:55:47 ----A---- C:\windows\SWXCACLS.exe
2009-07-31 21:55:47 ----A---- C:\windows\SWSC.exe
2009-07-31 21:55:47 ----A---- C:\windows\SWREG.exe
2009-07-31 21:55:47 ----A---- C:\windows\sed.exe
2009-07-31 21:55:47 ----A---- C:\windows\grep.exe
2009-07-31 21:55:37 ----D---- C:\windows\ERDNT
2009-07-31 11:03:55 ----A---- C:\windows\system32\NlsLexicons0007.dll
2009-07-31 11:03:52 ----A---- C:\windows\system32\NlsLexicons0009.dll
2009-07-31 11:03:41 ----A---- C:\windows\system32\NaturalLanguage6.dll
2009-07-31 10:58:51 ----A---- C:\windows\system32\IPSECSVC.DLL
2009-07-31 10:58:50 ----A---- C:\windows\system32\PortableDeviceApi.dll
2009-07-31 10:58:48 ----A---- C:\windows\system32\t2embed.dll
2009-07-31 10:58:48 ----A---- C:\windows\system32\fontsub.dll
2009-07-31 10:58:48 ----A---- C:\windows\system32\dciman32.dll
2009-07-31 10:58:48 ----A---- C:\windows\system32\atmfd.dll
2009-07-31 10:58:38 ----A---- C:\windows\system32\pacerprf.dll
2009-07-31 10:58:35 ----A---- C:\windows\system32\xolehlp.dll
2009-07-31 10:58:35 ----A---- C:\windows\system32\msdtcprx.dll
2009-07-31 10:58:34 ----A---- C:\windows\system32\winhttp.dll
2009-07-31 10:58:32 ----A---- C:\windows\system32\gdi32.dll
2009-07-31 10:58:30 ----A---- C:\windows\system32\es.dll
2009-07-31 10:58:27 ----A---- C:\windows\system32\gameux.dll
2009-07-31 10:58:27 ----A---- C:\windows\system32\Apphlpdm.dll
2009-07-31 10:58:26 ----A---- C:\windows\system32\GameUXLegacyGDFs.dll
2009-07-31 10:58:20 ----A---- C:\windows\system32\wmpeffects.dll
2009-07-31 10:58:18 ----A---- C:\windows\system32\msxml3.dll
2009-07-31 10:58:17 ----A---- C:\windows\system32\netapi32.dll
2009-07-31 10:58:13 ----A---- C:\windows\system32\wmp.dll
2009-07-31 10:58:12 ----A---- C:\windows\system32\spwmp.dll
2009-07-31 10:58:12 ----A---- C:\windows\system32\dxmasf.dll
2009-07-31 10:58:11 ----A---- C:\windows\system32\wmploc.DLL
2009-07-31 10:58:05 ----A---- C:\windows\system32\shell32.dll
2009-07-31 10:57:55 ----A---- C:\windows\system32\localspl.dll
2009-07-31 10:57:53 ----A---- C:\windows\explorer.exe
2009-07-31 10:57:50 ----A---- C:\windows\system32\secur32.dll
2009-07-31 10:57:50 ----A---- C:\windows\system32\lsasrv.dll
2009-07-31 10:57:50 ----A---- C:\windows\system32\kernel32.dll
2009-07-31 10:57:50 ----A---- C:\windows\system32\apilogen.dll
2009-07-31 10:57:50 ----A---- C:\windows\system32\amxread.dll
2009-07-31 10:57:43 ----A---- C:\windows\system32\rpcss.dll
2009-07-31 10:57:43 ----A---- C:\windows\system32\ntoskrnl.exe
2009-07-31 10:57:43 ----A---- C:\windows\system32\ntkrnlpa.exe
2009-07-31 10:57:42 ----A---- C:\windows\system32\sdohlp.dll
2009-07-31 10:57:42 ----A---- C:\windows\system32\printfilterpipelinesvc.exe
2009-07-31 10:57:42 ----A---- C:\windows\system32\printfilterpipelineprxy.dll
2009-07-31 10:57:42 ----A---- C:\windows\system32\iasrecst.dll
2009-07-31 10:57:42 ----A---- C:\windows\system32\iashost.exe
2009-07-31 10:57:42 ----A---- C:\windows\system32\iasdatastore.dll
2009-07-31 10:57:42 ----A---- C:\windows\system32\iasads.dll
2009-07-31 10:57:36 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2009-07-31 10:57:36 ----A---- C:\windows\system32\WindowsCodecs.dll
2009-07-31 10:57:36 ----A---- C:\windows\system32\PhotoMetadataHandler.dll
2009-07-31 10:57:28 ----A---- C:\windows\system32\mshtml.dll
2009-07-31 10:57:27 ----A---- C:\windows\system32\occache.dll
2009-07-31 10:57:26 ----A---- C:\windows\system32\ieframe.dll
2009-07-31 10:57:25 ----A---- C:\windows\system32\wininet.dll
2009-07-31 10:57:25 ----A---- C:\windows\system32\urlmon.dll
2009-07-31 10:57:25 ----A---- C:\windows\system32\msfeeds.dll
2009-07-31 10:57:25 ----A---- C:\windows\system32\iertutil.dll
2009-07-31 10:57:25 ----A---- C:\windows\system32\iedkcs32.dll
2009-07-31 10:57:24 ----A---- C:\windows\system32\mstime.dll
2009-07-31 10:57:24 ----A---- C:\windows\system32\jsproxy.dll
2009-07-31 10:57:24 ----A---- C:\windows\system32\ieUnatt.exe
2009-07-31 10:57:24 ----A---- C:\windows\system32\ieencode.dll
2009-07-31 10:57:24 ----A---- C:\windows\system32\ieaksie.dll
2009-07-31 10:57:12 ----A---- C:\windows\system32\emdmgmt.dll
2009-07-31 10:57:12 ----A---- C:\windows\system32\dataclen.dll
2009-07-31 10:57:12 ----A---- C:\windows\system32\cdd.dll
2009-07-31 10:57:10 ----A---- C:\windows\system32\win32spl.dll
2009-07-31 10:57:09 ----A---- C:\windows\system32\wersvc.dll
2009-07-31 10:57:09 ----A---- C:\windows\system32\Faultrep.dll
2009-07-31 10:57:05 ----A---- C:\windows\system32\schannel.dll
2009-07-31 10:57:03 ----A---- C:\windows\system32\mf.dll
2009-07-31 10:57:02 ----A---- C:\windows\system32\WMVCORE.DLL
2009-07-31 10:57:02 ----A---- C:\windows\system32\WMNetMgr.dll
2009-07-31 10:57:02 ----A---- C:\windows\system32\logagent.exe
2009-07-31 10:57:00 ----A---- C:\windows\system32\wshext.dll
2009-07-31 10:57:00 ----A---- C:\windows\system32\wscript.exe
2009-07-31 10:57:00 ----A---- C:\windows\system32\vbscript.dll
2009-07-31 10:57:00 ----A---- C:\windows\system32\scrrun.dll
2009-07-31 10:57:00 ----A---- C:\windows\system32\scrobj.dll
2009-07-31 10:57:00 ----A---- C:\windows\system32\jscript.dll
2009-07-31 10:57:00 ----A---- C:\windows\system32\cscript.exe
2009-07-31 10:56:58 ----A---- C:\windows\system32\inetcomm.dll
2009-07-31 10:56:57 ----A---- C:\windows\system32\connect.dll
2009-07-31 10:56:56 ----A---- C:\windows\system32\rpcrt4.dll
2009-07-31 10:56:54 ----A---- C:\windows\system32\quartz.dll
2009-07-31 10:56:53 ----A---- C:\windows\system32\msxml6.dll
2009-07-31 10:40:56 ----A---- C:\windows\system32\wups2.dll
2009-07-31 10:40:56 ----A---- C:\windows\system32\wucltux.dll
2009-07-31 10:40:56 ----A---- C:\windows\system32\wuaueng.dll
2009-07-31 10:40:56 ----A---- C:\windows\system32\wuauclt.exe
2009-07-31 10:40:25 ----A---- C:\windows\system32\wups.dll
2009-07-31 10:40:25 ----A---- C:\windows\system32\wudriver.dll
2009-07-31 10:40:25 ----A---- C:\windows\system32\wuapi.dll
2009-07-31 10:40:20 ----A---- C:\windows\system32\wuwebv.dll
2009-07-31 10:40:20 ----A---- C:\windows\system32\wuapp.exe
2009-07-31 01:07:51 ----D---- C:\Users\Kristy\AppData\Roaming\Apple Computer
2009-07-31 01:07:36 ----DC---- C:\windows\system32\DRVSTORE
2009-07-31 01:07:10 ----D---- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-07-31 01:06:33 ----D---- C:\Program Files\Bonjour
2009-07-31 01:05:44 ----D---- C:\Program Files\QuickTime
2009-07-31 01:05:43 ----D---- C:\ProgramData\Apple Computer
2009-07-31 01:05:21 ----D---- C:\Program Files\Apple Software Update
2009-07-31 01:03:31 ----D---- C:\Program Files\Common Files\Apple
2009-07-31 01:03:30 ----D---- C:\ProgramData\Apple
2009-07-29 21:19:35 ----D---- C:\Users\Kristy\AppData\Roaming\InterVideo
2009-07-29 13:52:48 ----D---- C:\Users\Kristy\AppData\Roaming\ATI
2009-07-29 13:52:48 ----D---- C:\ProgramData\ATI
2009-07-29 13:52:39 ----D---- C:\Users\Kristy\AppData\Roaming\HPQLOG
2009-07-29 13:52:19 ----D---- C:\Users\Kristy\AppData\Roaming\SiteAdvisor
2009-07-29 13:51:56 ----D---- C:\Users\Kristy\AppData\Roaming\Identities
2009-07-29 13:49:42 ----D---- C:\Users\Kristy\AppData\Roaming\Macromedia
2009-07-29 13:49:31 ----D---- C:\Users\Kristy\AppData\Roaming\Adobe
2009-07-29 13:49:26 ----D---- C:\Users\Kristy\AppData\Roaming\Hewlett-Packard
2009-07-29 13:46:57 ----D---- C:\Program Files\HP Webcam Application
2009-07-29 13:46:11 ----A---- C:\windows\system32\rsnp2uvc.dll
2009-07-29 13:46:10 ----D---- C:\Program Files\Common Files\SNP2UVC
2009-07-29 13:46:10 ----A---- C:\windows\system32\csnp2uvc.dll
2009-07-29 13:46:10 ----A---- C:\windows\snp2uvc.ini
2009-07-29 13:45:16 ----D---- C:\windows\Hewlett-Packard
2009-07-29 13:40:45 ----D---- C:\Program Files\ATI Technologies
2009-07-29 13:40:17 ----D---- C:\Program Files\ATI
2009-07-29 13:39:10 ----D---- C:\Users\Kristy\AppData\Roaming\InstallShield
2009-07-29 13:38:47 ----SD---- C:\Users\Kristy\AppData\Roaming\Microsoft
2009-07-29 13:34:24 ----SHD---- C:\ProgramData\Modèles
2009-07-29 13:34:24 ----SHD---- C:\ProgramData\Menu Démarrer
2009-07-29 13:34:24 ----SHD---- C:\ProgramData\Favoris
2009-07-29 13:34:24 ----SHD---- C:\ProgramData\Bureau
2009-07-29 13:34:24 ----SHD---- C:\Program Files\Fichiers communs
2009-07-29 12:28:59 ----D---- C:\windows\SoftwareDistribution
2009-07-29 12:24:40 ----D---- C:\windows\Prefetch
2009-07-09 12:16:16 ----A---- C:\windows\system32\usbaaplrc.dll

======List of files/folders modified in the last 1 months======

2009-08-02 14:33:18 ----D---- C:\windows\Temp
2009-08-02 10:03:02 ----SHD---- C:\System Volume Information
2009-08-02 10:00:52 ----D---- C:\windows\winsxs
2009-08-02 09:46:23 ----D---- C:\windows\System32
2009-08-02 09:46:22 ----D---- C:\windows\inf
2009-08-02 09:46:22 ----A---- C:\windows\system32\PerfStringBackup.INI
2009-08-02 09:45:47 ----D---- C:\windows\rescache
2009-08-02 09:40:19 ----D---- C:\windows\system32\catroot
2009-08-02 09:40:18 ----D---- C:\windows\system32\catroot2
2009-08-02 09:38:49 ----D---- C:\ProgramData\hpqLog
2009-08-02 09:38:09 ----D---- C:\Windows
2009-08-01 22:43:20 ----AD---- C:\windows\system32\it-IT
2009-08-01 14:40:36 ----RD---- C:\Program Files
2009-08-01 14:36:44 ----D---- C:\windows\Debug
2009-08-01 13:55:02 ----A---- C:\windows\system32\rpcnetp.dll
2009-08-01 13:17:10 ----D---- C:\windows\system32\drivers
2009-08-01 13:17:10 ----D---- C:\windows\AppPatch
2009-08-01 13:17:10 ----D---- C:\Program Files\Windows Mail
2009-08-01 13:17:09 ----D---- C:\windows\PolicyDefinitions
2009-08-01 13:17:09 ----AD---- C:\windows\system32\nl-NL
2009-08-01 13:17:09 ----AD---- C:\windows\system32\fr-FR
2009-08-01 13:17:08 ----D---- C:\Program Files\Windows Media Player
2009-08-01 13:17:03 ----D---- C:\windows\system32\wbem
2009-08-01 13:17:03 ----D---- C:\windows\system32\manifeststore
2009-08-01 13:17:03 ----D---- C:\Program Files\Internet Explorer
2009-08-01 13:16:57 ----D---- C:\windows\system32\en-US
2009-08-01 13:14:33 ----SHD---- C:\windows\Installer
2009-08-01 13:14:32 ----D---- C:\ProgramData\Microsoft Help
2009-08-01 10:35:44 ----AD---- C:\windows\system32\de-DE
2009-08-01 01:29:47 ----SD---- C:\ProgramData\Microsoft
2009-08-01 01:25:01 ----D---- C:\Program Files\Common Files\microsoft shared
2009-08-01 01:17:55 ----D---- C:\Program Files\Common Files
2009-07-31 22:04:08 ----A---- C:\windows\system.ini
2009-07-31 18:20:08 ----D---- C:\windows\system32\WDI
2009-07-31 14:33:44 ----D---- C:\windows\system32\Tasks
2009-07-31 01:07:10 ----HD---- C:\ProgramData
2009-07-30 11:09:43 ----D---- C:\windows\system32\LogFiles
2009-07-29 21:21:45 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-29 21:21:45 ----D---- C:\Program Files\InterVideo
2009-07-29 15:19:33 ----D---- C:\windows\Logs
2009-07-29 14:00:14 ----D---- C:\windows\system32\NDF
2009-07-29 13:59:51 ----D---- C:\windows\ModemLogs
2009-07-29 13:51:46 ----D---- C:\windows\system
2009-07-29 13:49:15 ----D---- C:\ProgramData\Hewlett-Packard
2009-07-29 13:49:06 ----HD---- C:\System.sav
2009-07-29 13:49:06 ----D---- C:\Swsetup
2009-07-29 13:46:28 ----D---- C:\windows\twain_32
2009-07-29 13:43:49 ----D---- C:\windows\Panther
2009-07-29 13:42:42 ----RSD---- C:\windows\assembly
2009-07-29 13:39:32 ----D---- C:\Program Files\Analog Devices
2009-07-29 13:39:27 ----D---- C:\ProgramData\SonicFocus
2009-07-29 13:39:15 ----D---- C:\windows\system32\restore
2009-07-29 13:38:47 ----RD---- C:\Users
2009-07-29 13:34:24 ----D---- C:\Program Files\Windows NT
2009-07-29 12:29:09 ----D---- C:\windows\Registration

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr.sys [2009-02-05 23152]
R1 aswSP;avast! Self Protection; C:\windows\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 MPFP;MPFP; C:\windows\System32\Drivers\Mpfp.sys [2007-03-02 120360]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2008-05-14 12496]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\DRIVERS\aswMonFlt.sys [2009-02-05 51792]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2008-05-08 3552256]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2008-04-14 9344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 NETw5v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits ; C:\windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2008-03-27 199472]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\windows\system32\DRIVERS\yk60x86.sys [2008-01-17 298496]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712]
S3 catchme;catchme; \??\C:\Users\Kristy\AppData\Local\Temp\catchme.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2008-01-21 45624]
S3 USBAAPL;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl.sys [2009-07-09 39424]
S3 usbvideo;Périphérique vidéo USB (WDM); C:\windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712]
R2 ASBroker;Logon Session Broker; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 Ati External Event Utility;Ati External Event Utility; C:\windows\system32\Ati2evxx.exe [2008-05-08 671744]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-05-14 34184]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-05-14 256512]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-05-02 77824]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 McAfee HackerWatch Service;McAfee HackerWatch Service; C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe [2007-02-13 540776]
R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2007-05-24 841256]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service; C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [2008-05-05 202048]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2008-05-12 576024]
R2 SiteAdvisor Service;SiteAdvisor Service; C:\Program Files\SiteAdvisor\6173\SAService.exe [2008-06-17 341280]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-04-16 165192]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
S2 rpcnetp;rpcnetp; C:\windows\System32\rpcnetp.exe []
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-01-21 33800]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-27 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]

-----------------EOF-----------------
0
up
0