Pc infecté comment faire !
Résolu
yoshi02
Messages postés
23
Date d'inscription
Statut
Membre
Dernière intervention
-
pimprenelle27 Messages postés 22182 Statut Contributeur sécurité -
pimprenelle27 Messages postés 22182 Statut Contributeur sécurité -
Bonjour, alors voilà suite au scan HijackThis je voulais savoir comment désinfecté mon ordi voilà mon fichié log un peu long !
ogfile of random's system information tool 1.06 (written by random/random)
Run by Yoann at 2009-08-09 14:40:54
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 38 GB (25%) free of 153 GB
Total RAM: 447 MB (37% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:41:34, on 09/08/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Mumble\mumble.exe
C:\Program Files\Mumble\dbus-daemon.exe
C:\Documents and Settings\Yoann.NICOL-6584690D9\Mes documents\Téléchargements\RSIT.exe
C:\Program Files\trend micro\Yoann.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [BtTray] "C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-220523388-515967899-839522115-1003\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Fabienne et André')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-21-220523388-515967899-839522115-1003 Startup: Notification de cadeaux MSN.lnk = ? (User 'Fabienne et André')
O4 - S-1-5-21-220523388-515967899-839522115-1003 User Startup: Notification de cadeaux MSN.lnk = ? (User 'Fabienne et André')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: Envoyer via Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
O8 - Extra context menu item: Envoyer via message(&M)... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\WINDOWS\system32\skype4com.dll
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: BlueSoleilCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
O23 - Service: BsHelpCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
O23 - Service: BsMobileCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
O23 - Service: Service Google Update (gupdate1c9c8be9e495ade) (gupdate1c9c8be9e495ade) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
--
End of file - 6847 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-05-23 312928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-24 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-24 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NVMixerTray"=C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [2004-12-20 131072]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-11-17 7700480]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-11-17 86016]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-24 148888]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-05-23 198160]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-09-06 413696]
"Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2006-03-28 94208]
""= []
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"BtTray"=C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe [2009-02-10 278528]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]
C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Steam\steamapps\yoshi8402\counter-strike source\hl2.exe"="C:\Program Files\Steam\steamapps\yoshi8402\counter-strike source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC"
"C:\Program Files\Mumble\murmur.exe"="C:\Program Files\Mumble\murmur.exe:*:Enabled:Murmur - Low-latency VoIP server"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Program Files\Ratajik Software\StationRipper\StationRipperConsole.exe"="C:\Program Files\Ratajik Software\StationRipper\StationRipperConsole.exe:*:Enabled:StationRipperConsole"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:*:Enabled:BlueSoleilCS"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
======List of files/folders created in the last 1 months======
2009-08-09 14:40:59 ----D---- C:\Program Files\trend micro
2009-08-09 14:40:54 ----D---- C:\rsit
2009-08-09 10:51:15 ----D---- C:\WINDOWS\LastGood
2009-08-08 19:54:16 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2009-08-08 19:54:16 ----N---- C:\WINDOWS\system32\prntvpt.dll
2009-08-08 19:54:15 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2009-08-08 19:54:15 ----D---- C:\7f88b115ae5e6acfe3ab5748d4fe9865
2009-08-08 19:32:13 ----D---- C:\Program Files\K-Lite Codec Pack
2009-08-08 19:32:13 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\DivX
2009-08-08 19:31:54 ----HD---- C:\WINDOWS\$NtUninstallKB887472$
2009-08-08 19:31:54 ----HD---- C:\WINDOWS\$NtUninstallKB886185$
2009-08-08 19:31:54 ----HD---- C:\WINDOWS\$NtUninstallKB885836$
2009-08-08 19:31:54 ----HD---- C:\WINDOWS\$NtUninstallKB885835$
2009-08-08 19:31:54 ----HD---- C:\WINDOWS\$NtUninstallKB873339$
2009-08-08 19:31:53 ----HD---- C:\WINDOWS\$NtUninstallKB890046$
2009-08-08 19:31:53 ----HD---- C:\WINDOWS\$NtUninstallKB888302$
2009-08-08 19:31:52 ----HD---- C:\WINDOWS\$NtUninstallKB893756$
2009-08-08 19:31:52 ----HD---- C:\WINDOWS\$NtUninstallKB891781$
2009-08-08 19:31:52 ----HD---- C:\WINDOWS\$NtUninstallKB890859$
2009-08-08 19:31:51 ----HD---- C:\WINDOWS\$NtUninstallKB896428$
2009-08-08 19:31:51 ----HD---- C:\WINDOWS\$NtUninstallKB896423$
2009-08-08 19:31:51 ----HD---- C:\WINDOWS\$NtUninstallKB896358$
2009-08-08 19:31:51 ----HD---- C:\WINDOWS\$NtUninstallKB894391$
2009-08-08 19:31:50 ----HD---- C:\WINDOWS\$NtUninstallKB899587$
2009-08-08 19:31:50 ----HD---- C:\WINDOWS\$NtUninstallKB898461$
2009-08-08 19:31:49 ----HD---- C:\WINDOWS\$NtUninstallKB900725$
2009-08-08 19:31:49 ----HD---- C:\WINDOWS\$NtUninstallKB900485$
2009-08-08 19:31:49 ----HD---- C:\WINDOWS\$NtUninstallKB899591$
2009-08-08 19:31:48 ----HD---- C:\WINDOWS\$NtUninstallKB901214$
2009-08-08 19:31:48 ----HD---- C:\WINDOWS\$NtUninstallKB901017$
2009-08-08 19:31:46 ----HD---- C:\WINDOWS\$NtUninstallKB905414$
2009-08-08 19:31:46 ----HD---- C:\WINDOWS\$NtUninstallKB904942$
2009-08-08 19:31:46 ----HD---- C:\WINDOWS\$NtUninstallKB902400$
2009-08-08 19:31:45 ----HD---- C:\WINDOWS\$NtUninstallKB908531$
2009-08-08 19:31:45 ----HD---- C:\WINDOWS\$NtUninstallKB908519$
2009-08-08 19:31:45 ----HD---- C:\WINDOWS\$NtUninstallKB905749$
2009-08-08 19:31:44 ----HD---- C:\WINDOWS\$NtUninstallKB911564$
2009-08-08 19:31:44 ----HD---- C:\WINDOWS\$NtUninstallKB911562$
2009-08-08 19:31:44 ----HD---- C:\WINDOWS\$NtUninstallKB911280$
2009-08-08 19:31:44 ----HD---- C:\WINDOWS\$NtUninstallKB910437$
2009-08-08 19:31:43 ----HD---- C:\WINDOWS\$NtUninstallKB913580$
2009-08-08 19:31:43 ----HD---- C:\WINDOWS\$NtUninstallKB911927$
2009-08-08 19:31:42 ----HD---- C:\WINDOWS\$NtUninstallKB914389$
2009-08-08 19:31:42 ----HD---- C:\WINDOWS\$NtUninstallKB914388$
2009-08-08 19:31:41 ----HD---- C:\WINDOWS\$NtUninstallKB918118$
2009-08-08 19:31:41 ----HD---- C:\WINDOWS\$NtUninstallKB916595$
2009-08-08 19:31:41 ----HD---- C:\WINDOWS\$NtUninstallKB915865$
2009-08-08 19:31:41 ----HD---- C:\WINDOWS\$NtUninstallKB914440$
2009-08-08 19:31:40 ----HD---- C:\WINDOWS\$NtUninstallKB920670$
2009-08-08 19:31:40 ----HD---- C:\WINDOWS\$NtUninstallKB920213$
2009-08-08 19:31:40 ----HD---- C:\WINDOWS\$NtUninstallKB918439$
2009-08-08 19:31:39 ----HD---- C:\WINDOWS\$NtUninstallKB920872$
2009-08-08 19:31:39 ----HD---- C:\WINDOWS\$NtUninstallKB920685$
2009-08-08 19:31:39 ----HD---- C:\WINDOWS\$NtUninstallKB920683$
2009-08-08 19:31:38 ----HD---- C:\WINDOWS\$NtUninstallKB923191$
2009-08-08 19:31:38 ----HD---- C:\WINDOWS\$NtUninstallKB922582$
2009-08-08 19:31:37 ----HD---- C:\WINDOWS\$NtUninstallKB923561$
2009-08-08 19:31:37 ----D---- C:\WINDOWS\$NtUninstallKB923689$
2009-08-08 19:31:36 ----HD---- C:\WINDOWS\$NtUninstallKB925398_WMP64$
2009-08-08 19:31:36 ----HD---- C:\WINDOWS\$NtUninstallKB924667$
2009-08-08 19:31:36 ----HD---- C:\WINDOWS\$NtUninstallKB924270$
2009-08-08 19:31:36 ----HD---- C:\WINDOWS\$NtUninstallKB923980$
2009-08-08 19:31:34 ----HD---- C:\WINDOWS\$NtUninstallKB926436$
2009-08-08 19:31:34 ----HD---- C:\WINDOWS\$NtUninstallKB926255$
2009-08-08 19:31:34 ----HD---- C:\WINDOWS\$NtUninstallKB926239$
2009-08-08 19:31:34 ----HD---- C:\WINDOWS\$NtUninstallKB925902$
2009-08-08 19:31:33 ----HD---- C:\WINDOWS\$NtUninstallKB927779$
2009-08-08 19:31:32 ----HD---- C:\WINDOWS\$NtUninstallKB927891$
2009-08-08 19:31:32 ----HD---- C:\WINDOWS\$NtUninstallKB927802$
2009-08-08 19:31:31 ----HD---- C:\WINDOWS\$NtUninstallKB928843$
2009-08-08 19:31:31 ----HD---- C:\WINDOWS\$NtUninstallKB928255$
2009-08-08 19:31:30 ----HD---- C:\WINDOWS\$NtUninstallKB930178$
2009-08-08 19:31:30 ----HD---- C:\WINDOWS\$NtUninstallKB929399$
2009-08-08 19:31:30 ----HD---- C:\WINDOWS\$NtUninstallKB929123$
2009-08-08 19:31:29 ----HD---- C:\WINDOWS\$NtUninstallKB933729$
2009-08-08 19:31:29 ----HD---- C:\WINDOWS\$NtUninstallKB932168$
2009-08-08 19:31:29 ----HD---- C:\WINDOWS\$NtUninstallKB931261$
2009-08-08 19:31:29 ----HD---- C:\WINDOWS\$NtUninstallKB930916$
2009-08-08 19:31:28 ----HD---- C:\WINDOWS\$NtUninstallKB935839$
2009-08-08 19:31:25 ----HD---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
2009-08-08 19:31:24 ----HD---- C:\WINDOWS\$NtUninstallKB936782_WMP9$
2009-08-08 19:31:23 ----HD---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-08-08 19:31:23 ----HD---- C:\WINDOWS\$NtUninstallKB938464$
2009-08-08 19:31:23 ----HD---- C:\WINDOWS\$NtUninstallKB938127$
2009-08-08 19:31:23 ----HD---- C:\WINDOWS\$NtUninstallKB937894$
2009-08-08 19:31:23 ----D---- C:\WINDOWS\$NtUninstallKB938464-v2$(2)
2009-08-08 19:31:22 ----HD---- C:\WINDOWS\$NtUninstallKB939683$
2009-08-08 19:31:22 ----HD---- C:\WINDOWS\$NtUninstallKB938828$
2009-08-08 19:31:21 ----HD---- C:\WINDOWS\$NtUninstallKB943485$
2009-08-08 19:31:21 ----HD---- C:\WINDOWS\$NtUninstallKB943055$
2009-08-08 19:31:21 ----HD---- C:\WINDOWS\$NtUninstallKB941569$
2009-08-08 19:31:20 ----HD---- C:\WINDOWS\$NtUninstallKB945553$
2009-08-08 19:31:20 ----HD---- C:\WINDOWS\$NtUninstallKB944653$
2009-08-08 19:31:20 ----HD---- C:\WINDOWS\$NtUninstallKB944338-v2$
2009-08-08 19:31:19 ----HD---- C:\WINDOWS\$NtUninstallKB946648$
2009-08-08 19:31:19 ----HD---- C:\WINDOWS\$NtUninstallKB946026$
2009-08-08 19:31:19 ----D---- C:\WINDOWS\$NtUninstallKB946648$(2)
2009-08-08 19:31:16 ----HD---- C:\WINDOWS\$NtUninstallKB950762$
2009-08-08 19:31:16 ----HD---- C:\WINDOWS\$NtUninstallKB950760$
2009-08-08 19:31:16 ----HD---- C:\WINDOWS\$NtUninstallKB950749$
2009-08-08 19:31:16 ----D---- C:\WINDOWS\$NtUninstallKB950762$(2)
2009-08-08 19:31:15 ----HD---- C:\WINDOWS\$NtUninstallKB950974$
2009-08-08 19:31:15 ----D---- C:\WINDOWS\$NtUninstallKB950974$(2)
2009-08-08 19:31:14 ----HD---- C:\WINDOWS\$NtUninstallKB951698$
2009-08-08 19:31:14 ----HD---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-08-08 19:31:14 ----HD---- C:\WINDOWS\$NtUninstallKB951066$
2009-08-08 19:31:14 ----D---- C:\WINDOWS\$NtUninstallKB951698$(2)
2009-08-08 19:31:14 ----D---- C:\WINDOWS\$NtUninstallKB951376-v2$(2)
2009-08-08 19:31:14 ----D---- C:\WINDOWS\$NtUninstallKB951066$(2)
2009-08-08 19:31:13 ----HD---- C:\WINDOWS\$NtUninstallKB951978$
2009-08-08 19:31:13 ----HD---- C:\WINDOWS\$NtUninstallKB951748$
2009-08-08 19:31:13 ----D---- C:\WINDOWS\$NtUninstallKB951748$(2)
2009-08-08 19:31:12 ----HD---- C:\WINDOWS\$NtUninstallKB952004$
2009-08-08 19:31:11 ----HD---- C:\WINDOWS\$NtUninstallKB952287$
2009-08-08 19:31:11 ----HD---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-08-08 19:31:11 ----D---- C:\WINDOWS\$NtUninstallKB952287$(2)
2009-08-08 19:31:10 ----HD---- C:\WINDOWS\$NtUninstallKB954600$
2009-08-08 19:31:10 ----HD---- C:\WINDOWS\$NtUninstallKB954459$
2009-08-08 19:31:10 ----HD---- C:\WINDOWS\$NtUninstallKB954211$
2009-08-08 19:31:10 ----HD---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2009-08-08 19:31:10 ----HD---- C:\WINDOWS\$NtUninstallKB952954$
2009-08-08 19:31:10 ----D---- C:\WINDOWS\$NtUninstallKB954600$(2)
2009-08-08 19:31:10 ----D---- C:\WINDOWS\$NtUninstallKB952954$(2)
2009-08-08 19:31:09 ----HD---- C:\WINDOWS\$NtUninstallKB956391$
2009-08-08 19:31:09 ----HD---- C:\WINDOWS\$NtUninstallKB955839$
2009-08-08 19:31:09 ----HD---- C:\WINDOWS\$NtUninstallKB955069$
2009-08-08 19:31:09 ----D---- C:\WINDOWS\$NtUninstallKB955069$(2)
2009-08-08 19:31:06 ----HD---- C:\WINDOWS\$NtUninstallKB956572$
2009-08-08 19:31:05 ----HD---- C:\WINDOWS\$NtUninstallKB956841$
2009-08-08 19:31:05 ----HD---- C:\WINDOWS\$NtUninstallKB956803$
2009-08-08 19:31:05 ----HD---- C:\WINDOWS\$NtUninstallKB956802$
2009-08-08 19:31:05 ----D---- C:\WINDOWS\$NtUninstallKB956841$(2)
2009-08-08 19:31:05 ----D---- C:\WINDOWS\$NtUninstallKB956803$(2)
2009-08-08 19:31:05 ----D---- C:\WINDOWS\$NtUninstallKB956802$(2)
2009-08-08 19:31:04 ----HD---- C:\WINDOWS\$NtUninstallKB957097$
2009-08-08 19:31:04 ----HD---- C:\WINDOWS\$NtUninstallKB957095$
2009-08-08 19:31:04 ----D---- C:\WINDOWS\$NtUninstallKB957097$(2)
2009-08-08 19:31:02 ----HD---- C:\WINDOWS\$NtUninstallKB958215$
2009-08-08 19:31:02 ----D---- C:\WINDOWS\$NtUninstallKB958215$(2)
2009-08-08 19:31:01 ----HD---- C:\WINDOWS\$NtUninstallKB958690$
2009-08-08 19:31:01 ----HD---- C:\WINDOWS\$NtUninstallKB958687$
2009-08-08 19:31:01 ----HD---- C:\WINDOWS\$NtUninstallKB958644$
2009-08-08 19:31:01 ----D---- C:\WINDOWS\$NtUninstallKB958690$(2)
2009-08-08 19:31:01 ----D---- C:\WINDOWS\$NtUninstallKB958687$(2)
2009-08-08 19:31:01 ----D---- C:\WINDOWS\$NtUninstallKB958644$(2)
2009-08-08 19:31:00 ----HD---- C:\WINDOWS\$NtUninstallKB959426$
2009-08-08 19:30:57 ----HD---- C:\WINDOWS\$NtUninstallKB960225$
2009-08-08 19:30:57 ----HD---- C:\WINDOWS\$NtUninstallKB959772_WM11$
2009-08-08 19:30:57 ----D---- C:\WINDOWS\$NtUninstallKB960225$(2)
2009-08-08 19:30:56 ----HD---- C:\WINDOWS\$NtUninstallKB960803$
2009-08-08 19:30:56 ----HD---- C:\WINDOWS\$NtUninstallKB960715$
2009-08-08 19:30:56 ----HD---- C:\WINDOWS\$NtUninstallKB960714$
2009-08-08 19:30:56 ----D---- C:\WINDOWS\$NtUninstallKB960714$(2)
2009-08-08 19:30:55 ----HD---- C:\WINDOWS\$NtUninstallKB961371$
2009-08-08 19:30:54 ----HD---- C:\WINDOWS\$NtUninstallKB961503$
2009-08-08 19:30:54 ----HD---- C:\WINDOWS\$NtUninstallKB961501$
2009-08-08 19:30:54 ----HD---- C:\WINDOWS\$NtUninstallKB961373$
2009-08-08 19:30:50 ----HD---- C:\WINDOWS\$NtUninstallKB963027$
2009-08-08 19:30:49 ----HD---- C:\WINDOWS\$NtUninstallKB967715$
2009-08-08 19:30:49 ----D---- C:\WINDOWS\$NtUninstallKB967715$(2)
2009-08-08 19:30:48 ----HD---- C:\WINDOWS\$NtUninstallKB968537$
2009-08-08 19:30:45 ----HD---- C:\WINDOWS\$NtUninstallKB969898$
2009-08-08 19:30:45 ----HD---- C:\WINDOWS\$NtUninstallKB969897$
2009-08-08 19:30:44 ----HD---- C:\WINDOWS\$NtUninstallKB971633$
2009-08-08 19:30:44 ----HD---- C:\WINDOWS\$NtUninstallKB970238$
2009-08-08 19:30:41 ----HD---- C:\WINDOWS\$NtUninstallKB973346$
2009-08-08 19:30:41 ----HD---- C:\WINDOWS\$NtUninstallKB972260$
2009-08-08 19:30:40 ----HD---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2009-08-08 17:50:15 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
2009-08-08 17:42:27 ----D---- C:\Program Files\SLD Codec Pack(2)
2009-08-06 23:19:08 ----D---- C:\WINDOWS\system32\XPSViewer
2009-08-06 23:18:59 ----D---- C:\WINDOWS\system32\en-US
2009-08-06 23:18:47 ----D---- C:\Program Files\Reference Assemblies
2009-08-02 01:17:34 ----D---- C:\Program Files\Windows Live Safety Center
2009-08-02 00:47:31 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\FileZilla
2009-08-02 00:43:42 ----D---- C:\Program Files\FileZilla FTP Client
2009-07-30 20:11:13 ----D---- C:\Program Files\Seagrand
2009-07-29 20:14:46 ----A---- C:\WINDOWS\system32\BSPRINT.INI
2009-07-29 15:42:35 ----D---- C:\Sounds
2009-07-29 15:38:04 ----A---- C:\WINDOWS\system32\NMSDVDXU.dll
2009-07-29 15:37:59 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\LG Electronics
2009-07-29 15:35:56 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\InstallShield
2009-07-26 16:33:04 ----D---- C:\Program Files\PhotoFiltre
2009-07-21 17:15:31 ----D---- C:\Program Files\Avira
2009-07-21 17:15:31 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Avira
2009-07-18 18:09:17 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2009-07-18 18:00:50 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\WLInstaller
2009-07-14 19:10:12 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony
2009-07-14 19:02:44 ----D---- C:\WINDOWS\SxsCaPendDel
2009-07-14 17:50:42 ----D---- C:\Program Files\FormatFactory
2009-07-14 17:09:15 ----D---- C:\Program Files\Avex
======List of files/folders modified in the last 1 months======
2009-08-09 14:40:59 ----RD---- C:\Program Files
2009-08-09 14:40:44 ----D---- C:\WINDOWS\Prefetch
2009-08-09 14:21:55 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-08-09 14:19:57 ----D---- C:\Program Files\Steam
2009-08-09 13:28:22 ----D---- C:\Program Files\Mozilla Firefox
2009-08-09 13:26:07 ----D---- C:\WINDOWS\Temp
2009-08-09 13:19:23 ----HD---- C:\WINDOWS\inf
2009-08-09 13:19:23 ----D---- C:\WINDOWS
2009-08-09 11:52:15 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-08-09 10:56:08 ----D---- C:\WINDOWS\Microsoft.NET
2009-08-09 10:56:06 ----RSD---- C:\WINDOWS\assembly
2009-08-09 10:51:15 ----D---- C:\WINDOWS\system32\CatRoot2
2009-08-09 10:47:25 ----A---- C:\WINDOWS\system32\bscs.ini
2009-08-09 10:30:21 ----D---- C:\Config.Msi
2009-08-08 20:06:24 ----SHD---- C:\WINDOWS\Installer
2009-08-08 20:04:13 ----D---- C:\WINDOWS\system32
2009-08-08 20:04:13 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-08-08 20:03:28 ----D---- C:\WINDOWS\WinSxS
2009-08-08 19:57:27 ----RSD---- C:\WINDOWS\Fonts
2009-08-08 19:56:56 ----D---- C:\WINDOWS\system32\spool
2009-08-08 19:56:51 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-08-08 19:56:43 ----D---- C:\WINDOWS\system32\CatRoot
2009-08-08 19:35:28 ----D---- C:\WINDOWS\system32\config
2009-08-08 19:35:08 ----D---- C:\WINDOWS\system32\wbem
2009-08-08 19:35:07 ----D---- C:\WINDOWS\Registration
2009-08-07 21:03:38 ----HD---- C:\WINDOWS\$hf_mig$
2009-08-06 23:19:01 ----D---- C:\Program Files\MSBuild
2009-08-06 21:14:41 ----D---- C:\Program Files\Mumble
2009-08-06 17:07:08 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\mIRC
2009-08-06 17:03:08 ----D---- C:\Program Files\mIRC
2009-08-03 13:20:50 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\teamspeak2
2009-08-03 12:53:39 ----D---- C:\Program Files\LimeWire
2009-07-31 11:12:39 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\LimeWire
2009-07-30 22:41:00 ----D---- C:\Program Files\Mozilla Sunbird
2009-07-29 21:00:06 ----D---- C:\Program Files\Internet Explorer
2009-07-29 20:14:12 ----D---- C:\WINDOWS\system32\drivers
2009-07-29 15:43:37 ----D---- C:\Program Files\DivX
2009-07-29 15:39:05 ----D---- C:\Program Files\LG Electronics
2009-07-29 15:36:35 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-29 15:33:41 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\dvdcss
2009-07-22 19:51:25 ----A---- C:\WINDOWS\ModemLog_SoftV92 Data Fax Modem.txt
2009-07-20 21:32:22 ----SD---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\Microsoft
2009-07-20 11:08:43 ----D---- C:\Program Files\Messenger Plus! Live
2009-07-20 06:30:34 ----D---- C:\WINDOWS\system32\DirectX
2009-07-18 18:20:07 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-07-18 18:20:06 ----A---- C:\WINDOWS\system32\mshtml.dll
2009-07-17 18:30:18 ----D---- C:\WINDOWS\Debug
2009-07-16 06:45:54 ----SD---- C:\WINDOWS\Tasks
2009-07-16 06:44:33 ----D---- C:\Program Files\Sony
2009-07-16 06:42:04 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony Corporation
2009-07-14 19:01:06 ----D---- C:\Program Files\Sony Setup
2009-07-14 17:25:36 ----D---- C:\Program Files\AviSynth 2.5
2009-07-14 17:10:00 ----D---- C:\temp
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2004-08-04 41600]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-07-21 28520]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-08-04 11868]
R3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2008-12-07 30088]
R3 fbxusb;Carte réseau virtuelle FreeBox USB (32 bits); C:\WINDOWS\system32\DRIVERS\fbxusb32.sys [2007-08-27 31128]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2002-09-07 9600]
R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSFDPSP2.sys [2004-08-04 1041536]
R3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\system32\DRIVERS\HSFBS2S2.sys [2004-08-04 220032]
R3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2008-07-02 26248]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2006-03-28 13568]
R3 L8042mou;Logitech SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2006-03-28 55808]
R3 LMouKE;Logitech SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2006-03-28 69760]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2002-09-07 12288]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-11-17 3994688]
R3 nvax;Service for NVIDIA(R) nForce(TM) Audio Enumerator; C:\WINDOWS\system32\drivers\nvax.sys [2005-04-13 53376]
R3 NVENET;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENET.sys [2004-01-29 93764]
R3 nvnforce;Service for NVIDIA(R) nForce(TM) Audio; C:\WINDOWS\system32\drivers\nvapu.sys [2005-04-13 414464]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2009-01-08 31880]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSFCXTS2.sys [2004-08-04 685056]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2008-12-07 14088]
S3 BthEnum;Pilote de bloc de demande Bluetooth; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2004-08-03 17024]
S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2004-08-03 100992]
S3 BTHPORT;Pilote de port Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272768]
S3 BTHUSB;Pilote USB radio Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2004-08-03 18944]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2004-08-03 59648]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2008-11-11 13056]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2008-11-11 19968]
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2008-11-11 24832]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2008-01-21 14856]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-07-21 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 BlueSoleilCS;BlueSoleilCS; C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe [2009-02-10 834048]
R2 BsMobileCS;BsMobileCS; C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe [2008-06-04 143467]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-04-24 152984]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-11-17 159811]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
R3 BsHelpCS;BsHelpCS; C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe [2009-01-07 98407]
S2 gupdate1c9c8be9e495ade;Service Google Update (gupdate1c9c8be9e495ade); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-29 133104]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-05-29 234864]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
ogfile of random's system information tool 1.06 (written by random/random)
Run by Yoann at 2009-08-09 14:40:54
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 38 GB (25%) free of 153 GB
Total RAM: 447 MB (37% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:41:34, on 09/08/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Mumble\mumble.exe
C:\Program Files\Mumble\dbus-daemon.exe
C:\Documents and Settings\Yoann.NICOL-6584690D9\Mes documents\Téléchargements\RSIT.exe
C:\Program Files\trend micro\Yoann.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [BtTray] "C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-220523388-515967899-839522115-1003\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Fabienne et André')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-21-220523388-515967899-839522115-1003 Startup: Notification de cadeaux MSN.lnk = ? (User 'Fabienne et André')
O4 - S-1-5-21-220523388-515967899-839522115-1003 User Startup: Notification de cadeaux MSN.lnk = ? (User 'Fabienne et André')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: Envoyer via Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
O8 - Extra context menu item: Envoyer via message(&M)... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\WINDOWS\system32\skype4com.dll
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: BlueSoleilCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
O23 - Service: BsHelpCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
O23 - Service: BsMobileCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
O23 - Service: Service Google Update (gupdate1c9c8be9e495ade) (gupdate1c9c8be9e495ade) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
--
End of file - 6847 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-05-23 312928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-24 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-24 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NVMixerTray"=C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [2004-12-20 131072]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-11-17 7700480]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-11-17 86016]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-24 148888]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-05-23 198160]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-09-06 413696]
"Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2006-03-28 94208]
""= []
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"BtTray"=C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe [2009-02-10 278528]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]
C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Steam\steamapps\yoshi8402\counter-strike source\hl2.exe"="C:\Program Files\Steam\steamapps\yoshi8402\counter-strike source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC"
"C:\Program Files\Mumble\murmur.exe"="C:\Program Files\Mumble\murmur.exe:*:Enabled:Murmur - Low-latency VoIP server"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Program Files\Ratajik Software\StationRipper\StationRipperConsole.exe"="C:\Program Files\Ratajik Software\StationRipper\StationRipperConsole.exe:*:Enabled:StationRipperConsole"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:*:Enabled:BlueSoleilCS"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
======List of files/folders created in the last 1 months======
2009-08-09 14:40:59 ----D---- C:\Program Files\trend micro
2009-08-09 14:40:54 ----D---- C:\rsit
2009-08-09 10:51:15 ----D---- C:\WINDOWS\LastGood
2009-08-08 19:54:16 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2009-08-08 19:54:16 ----N---- C:\WINDOWS\system32\prntvpt.dll
2009-08-08 19:54:15 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2009-08-08 19:54:15 ----D---- C:\7f88b115ae5e6acfe3ab5748d4fe9865
2009-08-08 19:32:13 ----D---- C:\Program Files\K-Lite Codec Pack
2009-08-08 19:32:13 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\DivX
2009-08-08 19:31:54 ----HD---- C:\WINDOWS\$NtUninstallKB887472$
2009-08-08 19:31:54 ----HD---- C:\WINDOWS\$NtUninstallKB886185$
2009-08-08 19:31:54 ----HD---- C:\WINDOWS\$NtUninstallKB885836$
2009-08-08 19:31:54 ----HD---- C:\WINDOWS\$NtUninstallKB885835$
2009-08-08 19:31:54 ----HD---- C:\WINDOWS\$NtUninstallKB873339$
2009-08-08 19:31:53 ----HD---- C:\WINDOWS\$NtUninstallKB890046$
2009-08-08 19:31:53 ----HD---- C:\WINDOWS\$NtUninstallKB888302$
2009-08-08 19:31:52 ----HD---- C:\WINDOWS\$NtUninstallKB893756$
2009-08-08 19:31:52 ----HD---- C:\WINDOWS\$NtUninstallKB891781$
2009-08-08 19:31:52 ----HD---- C:\WINDOWS\$NtUninstallKB890859$
2009-08-08 19:31:51 ----HD---- C:\WINDOWS\$NtUninstallKB896428$
2009-08-08 19:31:51 ----HD---- C:\WINDOWS\$NtUninstallKB896423$
2009-08-08 19:31:51 ----HD---- C:\WINDOWS\$NtUninstallKB896358$
2009-08-08 19:31:51 ----HD---- C:\WINDOWS\$NtUninstallKB894391$
2009-08-08 19:31:50 ----HD---- C:\WINDOWS\$NtUninstallKB899587$
2009-08-08 19:31:50 ----HD---- C:\WINDOWS\$NtUninstallKB898461$
2009-08-08 19:31:49 ----HD---- C:\WINDOWS\$NtUninstallKB900725$
2009-08-08 19:31:49 ----HD---- C:\WINDOWS\$NtUninstallKB900485$
2009-08-08 19:31:49 ----HD---- C:\WINDOWS\$NtUninstallKB899591$
2009-08-08 19:31:48 ----HD---- C:\WINDOWS\$NtUninstallKB901214$
2009-08-08 19:31:48 ----HD---- C:\WINDOWS\$NtUninstallKB901017$
2009-08-08 19:31:46 ----HD---- C:\WINDOWS\$NtUninstallKB905414$
2009-08-08 19:31:46 ----HD---- C:\WINDOWS\$NtUninstallKB904942$
2009-08-08 19:31:46 ----HD---- C:\WINDOWS\$NtUninstallKB902400$
2009-08-08 19:31:45 ----HD---- C:\WINDOWS\$NtUninstallKB908531$
2009-08-08 19:31:45 ----HD---- C:\WINDOWS\$NtUninstallKB908519$
2009-08-08 19:31:45 ----HD---- C:\WINDOWS\$NtUninstallKB905749$
2009-08-08 19:31:44 ----HD---- C:\WINDOWS\$NtUninstallKB911564$
2009-08-08 19:31:44 ----HD---- C:\WINDOWS\$NtUninstallKB911562$
2009-08-08 19:31:44 ----HD---- C:\WINDOWS\$NtUninstallKB911280$
2009-08-08 19:31:44 ----HD---- C:\WINDOWS\$NtUninstallKB910437$
2009-08-08 19:31:43 ----HD---- C:\WINDOWS\$NtUninstallKB913580$
2009-08-08 19:31:43 ----HD---- C:\WINDOWS\$NtUninstallKB911927$
2009-08-08 19:31:42 ----HD---- C:\WINDOWS\$NtUninstallKB914389$
2009-08-08 19:31:42 ----HD---- C:\WINDOWS\$NtUninstallKB914388$
2009-08-08 19:31:41 ----HD---- C:\WINDOWS\$NtUninstallKB918118$
2009-08-08 19:31:41 ----HD---- C:\WINDOWS\$NtUninstallKB916595$
2009-08-08 19:31:41 ----HD---- C:\WINDOWS\$NtUninstallKB915865$
2009-08-08 19:31:41 ----HD---- C:\WINDOWS\$NtUninstallKB914440$
2009-08-08 19:31:40 ----HD---- C:\WINDOWS\$NtUninstallKB920670$
2009-08-08 19:31:40 ----HD---- C:\WINDOWS\$NtUninstallKB920213$
2009-08-08 19:31:40 ----HD---- C:\WINDOWS\$NtUninstallKB918439$
2009-08-08 19:31:39 ----HD---- C:\WINDOWS\$NtUninstallKB920872$
2009-08-08 19:31:39 ----HD---- C:\WINDOWS\$NtUninstallKB920685$
2009-08-08 19:31:39 ----HD---- C:\WINDOWS\$NtUninstallKB920683$
2009-08-08 19:31:38 ----HD---- C:\WINDOWS\$NtUninstallKB923191$
2009-08-08 19:31:38 ----HD---- C:\WINDOWS\$NtUninstallKB922582$
2009-08-08 19:31:37 ----HD---- C:\WINDOWS\$NtUninstallKB923561$
2009-08-08 19:31:37 ----D---- C:\WINDOWS\$NtUninstallKB923689$
2009-08-08 19:31:36 ----HD---- C:\WINDOWS\$NtUninstallKB925398_WMP64$
2009-08-08 19:31:36 ----HD---- C:\WINDOWS\$NtUninstallKB924667$
2009-08-08 19:31:36 ----HD---- C:\WINDOWS\$NtUninstallKB924270$
2009-08-08 19:31:36 ----HD---- C:\WINDOWS\$NtUninstallKB923980$
2009-08-08 19:31:34 ----HD---- C:\WINDOWS\$NtUninstallKB926436$
2009-08-08 19:31:34 ----HD---- C:\WINDOWS\$NtUninstallKB926255$
2009-08-08 19:31:34 ----HD---- C:\WINDOWS\$NtUninstallKB926239$
2009-08-08 19:31:34 ----HD---- C:\WINDOWS\$NtUninstallKB925902$
2009-08-08 19:31:33 ----HD---- C:\WINDOWS\$NtUninstallKB927779$
2009-08-08 19:31:32 ----HD---- C:\WINDOWS\$NtUninstallKB927891$
2009-08-08 19:31:32 ----HD---- C:\WINDOWS\$NtUninstallKB927802$
2009-08-08 19:31:31 ----HD---- C:\WINDOWS\$NtUninstallKB928843$
2009-08-08 19:31:31 ----HD---- C:\WINDOWS\$NtUninstallKB928255$
2009-08-08 19:31:30 ----HD---- C:\WINDOWS\$NtUninstallKB930178$
2009-08-08 19:31:30 ----HD---- C:\WINDOWS\$NtUninstallKB929399$
2009-08-08 19:31:30 ----HD---- C:\WINDOWS\$NtUninstallKB929123$
2009-08-08 19:31:29 ----HD---- C:\WINDOWS\$NtUninstallKB933729$
2009-08-08 19:31:29 ----HD---- C:\WINDOWS\$NtUninstallKB932168$
2009-08-08 19:31:29 ----HD---- C:\WINDOWS\$NtUninstallKB931261$
2009-08-08 19:31:29 ----HD---- C:\WINDOWS\$NtUninstallKB930916$
2009-08-08 19:31:28 ----HD---- C:\WINDOWS\$NtUninstallKB935839$
2009-08-08 19:31:25 ----HD---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
2009-08-08 19:31:24 ----HD---- C:\WINDOWS\$NtUninstallKB936782_WMP9$
2009-08-08 19:31:23 ----HD---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-08-08 19:31:23 ----HD---- C:\WINDOWS\$NtUninstallKB938464$
2009-08-08 19:31:23 ----HD---- C:\WINDOWS\$NtUninstallKB938127$
2009-08-08 19:31:23 ----HD---- C:\WINDOWS\$NtUninstallKB937894$
2009-08-08 19:31:23 ----D---- C:\WINDOWS\$NtUninstallKB938464-v2$(2)
2009-08-08 19:31:22 ----HD---- C:\WINDOWS\$NtUninstallKB939683$
2009-08-08 19:31:22 ----HD---- C:\WINDOWS\$NtUninstallKB938828$
2009-08-08 19:31:21 ----HD---- C:\WINDOWS\$NtUninstallKB943485$
2009-08-08 19:31:21 ----HD---- C:\WINDOWS\$NtUninstallKB943055$
2009-08-08 19:31:21 ----HD---- C:\WINDOWS\$NtUninstallKB941569$
2009-08-08 19:31:20 ----HD---- C:\WINDOWS\$NtUninstallKB945553$
2009-08-08 19:31:20 ----HD---- C:\WINDOWS\$NtUninstallKB944653$
2009-08-08 19:31:20 ----HD---- C:\WINDOWS\$NtUninstallKB944338-v2$
2009-08-08 19:31:19 ----HD---- C:\WINDOWS\$NtUninstallKB946648$
2009-08-08 19:31:19 ----HD---- C:\WINDOWS\$NtUninstallKB946026$
2009-08-08 19:31:19 ----D---- C:\WINDOWS\$NtUninstallKB946648$(2)
2009-08-08 19:31:16 ----HD---- C:\WINDOWS\$NtUninstallKB950762$
2009-08-08 19:31:16 ----HD---- C:\WINDOWS\$NtUninstallKB950760$
2009-08-08 19:31:16 ----HD---- C:\WINDOWS\$NtUninstallKB950749$
2009-08-08 19:31:16 ----D---- C:\WINDOWS\$NtUninstallKB950762$(2)
2009-08-08 19:31:15 ----HD---- C:\WINDOWS\$NtUninstallKB950974$
2009-08-08 19:31:15 ----D---- C:\WINDOWS\$NtUninstallKB950974$(2)
2009-08-08 19:31:14 ----HD---- C:\WINDOWS\$NtUninstallKB951698$
2009-08-08 19:31:14 ----HD---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-08-08 19:31:14 ----HD---- C:\WINDOWS\$NtUninstallKB951066$
2009-08-08 19:31:14 ----D---- C:\WINDOWS\$NtUninstallKB951698$(2)
2009-08-08 19:31:14 ----D---- C:\WINDOWS\$NtUninstallKB951376-v2$(2)
2009-08-08 19:31:14 ----D---- C:\WINDOWS\$NtUninstallKB951066$(2)
2009-08-08 19:31:13 ----HD---- C:\WINDOWS\$NtUninstallKB951978$
2009-08-08 19:31:13 ----HD---- C:\WINDOWS\$NtUninstallKB951748$
2009-08-08 19:31:13 ----D---- C:\WINDOWS\$NtUninstallKB951748$(2)
2009-08-08 19:31:12 ----HD---- C:\WINDOWS\$NtUninstallKB952004$
2009-08-08 19:31:11 ----HD---- C:\WINDOWS\$NtUninstallKB952287$
2009-08-08 19:31:11 ----HD---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-08-08 19:31:11 ----D---- C:\WINDOWS\$NtUninstallKB952287$(2)
2009-08-08 19:31:10 ----HD---- C:\WINDOWS\$NtUninstallKB954600$
2009-08-08 19:31:10 ----HD---- C:\WINDOWS\$NtUninstallKB954459$
2009-08-08 19:31:10 ----HD---- C:\WINDOWS\$NtUninstallKB954211$
2009-08-08 19:31:10 ----HD---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2009-08-08 19:31:10 ----HD---- C:\WINDOWS\$NtUninstallKB952954$
2009-08-08 19:31:10 ----D---- C:\WINDOWS\$NtUninstallKB954600$(2)
2009-08-08 19:31:10 ----D---- C:\WINDOWS\$NtUninstallKB952954$(2)
2009-08-08 19:31:09 ----HD---- C:\WINDOWS\$NtUninstallKB956391$
2009-08-08 19:31:09 ----HD---- C:\WINDOWS\$NtUninstallKB955839$
2009-08-08 19:31:09 ----HD---- C:\WINDOWS\$NtUninstallKB955069$
2009-08-08 19:31:09 ----D---- C:\WINDOWS\$NtUninstallKB955069$(2)
2009-08-08 19:31:06 ----HD---- C:\WINDOWS\$NtUninstallKB956572$
2009-08-08 19:31:05 ----HD---- C:\WINDOWS\$NtUninstallKB956841$
2009-08-08 19:31:05 ----HD---- C:\WINDOWS\$NtUninstallKB956803$
2009-08-08 19:31:05 ----HD---- C:\WINDOWS\$NtUninstallKB956802$
2009-08-08 19:31:05 ----D---- C:\WINDOWS\$NtUninstallKB956841$(2)
2009-08-08 19:31:05 ----D---- C:\WINDOWS\$NtUninstallKB956803$(2)
2009-08-08 19:31:05 ----D---- C:\WINDOWS\$NtUninstallKB956802$(2)
2009-08-08 19:31:04 ----HD---- C:\WINDOWS\$NtUninstallKB957097$
2009-08-08 19:31:04 ----HD---- C:\WINDOWS\$NtUninstallKB957095$
2009-08-08 19:31:04 ----D---- C:\WINDOWS\$NtUninstallKB957097$(2)
2009-08-08 19:31:02 ----HD---- C:\WINDOWS\$NtUninstallKB958215$
2009-08-08 19:31:02 ----D---- C:\WINDOWS\$NtUninstallKB958215$(2)
2009-08-08 19:31:01 ----HD---- C:\WINDOWS\$NtUninstallKB958690$
2009-08-08 19:31:01 ----HD---- C:\WINDOWS\$NtUninstallKB958687$
2009-08-08 19:31:01 ----HD---- C:\WINDOWS\$NtUninstallKB958644$
2009-08-08 19:31:01 ----D---- C:\WINDOWS\$NtUninstallKB958690$(2)
2009-08-08 19:31:01 ----D---- C:\WINDOWS\$NtUninstallKB958687$(2)
2009-08-08 19:31:01 ----D---- C:\WINDOWS\$NtUninstallKB958644$(2)
2009-08-08 19:31:00 ----HD---- C:\WINDOWS\$NtUninstallKB959426$
2009-08-08 19:30:57 ----HD---- C:\WINDOWS\$NtUninstallKB960225$
2009-08-08 19:30:57 ----HD---- C:\WINDOWS\$NtUninstallKB959772_WM11$
2009-08-08 19:30:57 ----D---- C:\WINDOWS\$NtUninstallKB960225$(2)
2009-08-08 19:30:56 ----HD---- C:\WINDOWS\$NtUninstallKB960803$
2009-08-08 19:30:56 ----HD---- C:\WINDOWS\$NtUninstallKB960715$
2009-08-08 19:30:56 ----HD---- C:\WINDOWS\$NtUninstallKB960714$
2009-08-08 19:30:56 ----D---- C:\WINDOWS\$NtUninstallKB960714$(2)
2009-08-08 19:30:55 ----HD---- C:\WINDOWS\$NtUninstallKB961371$
2009-08-08 19:30:54 ----HD---- C:\WINDOWS\$NtUninstallKB961503$
2009-08-08 19:30:54 ----HD---- C:\WINDOWS\$NtUninstallKB961501$
2009-08-08 19:30:54 ----HD---- C:\WINDOWS\$NtUninstallKB961373$
2009-08-08 19:30:50 ----HD---- C:\WINDOWS\$NtUninstallKB963027$
2009-08-08 19:30:49 ----HD---- C:\WINDOWS\$NtUninstallKB967715$
2009-08-08 19:30:49 ----D---- C:\WINDOWS\$NtUninstallKB967715$(2)
2009-08-08 19:30:48 ----HD---- C:\WINDOWS\$NtUninstallKB968537$
2009-08-08 19:30:45 ----HD---- C:\WINDOWS\$NtUninstallKB969898$
2009-08-08 19:30:45 ----HD---- C:\WINDOWS\$NtUninstallKB969897$
2009-08-08 19:30:44 ----HD---- C:\WINDOWS\$NtUninstallKB971633$
2009-08-08 19:30:44 ----HD---- C:\WINDOWS\$NtUninstallKB970238$
2009-08-08 19:30:41 ----HD---- C:\WINDOWS\$NtUninstallKB973346$
2009-08-08 19:30:41 ----HD---- C:\WINDOWS\$NtUninstallKB972260$
2009-08-08 19:30:40 ----HD---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2009-08-08 17:50:15 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
2009-08-08 17:42:27 ----D---- C:\Program Files\SLD Codec Pack(2)
2009-08-06 23:19:08 ----D---- C:\WINDOWS\system32\XPSViewer
2009-08-06 23:18:59 ----D---- C:\WINDOWS\system32\en-US
2009-08-06 23:18:47 ----D---- C:\Program Files\Reference Assemblies
2009-08-02 01:17:34 ----D---- C:\Program Files\Windows Live Safety Center
2009-08-02 00:47:31 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\FileZilla
2009-08-02 00:43:42 ----D---- C:\Program Files\FileZilla FTP Client
2009-07-30 20:11:13 ----D---- C:\Program Files\Seagrand
2009-07-29 20:14:46 ----A---- C:\WINDOWS\system32\BSPRINT.INI
2009-07-29 15:42:35 ----D---- C:\Sounds
2009-07-29 15:38:04 ----A---- C:\WINDOWS\system32\NMSDVDXU.dll
2009-07-29 15:37:59 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\LG Electronics
2009-07-29 15:35:56 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\InstallShield
2009-07-26 16:33:04 ----D---- C:\Program Files\PhotoFiltre
2009-07-21 17:15:31 ----D---- C:\Program Files\Avira
2009-07-21 17:15:31 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Avira
2009-07-18 18:09:17 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2009-07-18 18:00:50 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\WLInstaller
2009-07-14 19:10:12 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony
2009-07-14 19:02:44 ----D---- C:\WINDOWS\SxsCaPendDel
2009-07-14 17:50:42 ----D---- C:\Program Files\FormatFactory
2009-07-14 17:09:15 ----D---- C:\Program Files\Avex
======List of files/folders modified in the last 1 months======
2009-08-09 14:40:59 ----RD---- C:\Program Files
2009-08-09 14:40:44 ----D---- C:\WINDOWS\Prefetch
2009-08-09 14:21:55 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-08-09 14:19:57 ----D---- C:\Program Files\Steam
2009-08-09 13:28:22 ----D---- C:\Program Files\Mozilla Firefox
2009-08-09 13:26:07 ----D---- C:\WINDOWS\Temp
2009-08-09 13:19:23 ----HD---- C:\WINDOWS\inf
2009-08-09 13:19:23 ----D---- C:\WINDOWS
2009-08-09 11:52:15 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-08-09 10:56:08 ----D---- C:\WINDOWS\Microsoft.NET
2009-08-09 10:56:06 ----RSD---- C:\WINDOWS\assembly
2009-08-09 10:51:15 ----D---- C:\WINDOWS\system32\CatRoot2
2009-08-09 10:47:25 ----A---- C:\WINDOWS\system32\bscs.ini
2009-08-09 10:30:21 ----D---- C:\Config.Msi
2009-08-08 20:06:24 ----SHD---- C:\WINDOWS\Installer
2009-08-08 20:04:13 ----D---- C:\WINDOWS\system32
2009-08-08 20:04:13 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-08-08 20:03:28 ----D---- C:\WINDOWS\WinSxS
2009-08-08 19:57:27 ----RSD---- C:\WINDOWS\Fonts
2009-08-08 19:56:56 ----D---- C:\WINDOWS\system32\spool
2009-08-08 19:56:51 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-08-08 19:56:43 ----D---- C:\WINDOWS\system32\CatRoot
2009-08-08 19:35:28 ----D---- C:\WINDOWS\system32\config
2009-08-08 19:35:08 ----D---- C:\WINDOWS\system32\wbem
2009-08-08 19:35:07 ----D---- C:\WINDOWS\Registration
2009-08-07 21:03:38 ----HD---- C:\WINDOWS\$hf_mig$
2009-08-06 23:19:01 ----D---- C:\Program Files\MSBuild
2009-08-06 21:14:41 ----D---- C:\Program Files\Mumble
2009-08-06 17:07:08 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\mIRC
2009-08-06 17:03:08 ----D---- C:\Program Files\mIRC
2009-08-03 13:20:50 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\teamspeak2
2009-08-03 12:53:39 ----D---- C:\Program Files\LimeWire
2009-07-31 11:12:39 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\LimeWire
2009-07-30 22:41:00 ----D---- C:\Program Files\Mozilla Sunbird
2009-07-29 21:00:06 ----D---- C:\Program Files\Internet Explorer
2009-07-29 20:14:12 ----D---- C:\WINDOWS\system32\drivers
2009-07-29 15:43:37 ----D---- C:\Program Files\DivX
2009-07-29 15:39:05 ----D---- C:\Program Files\LG Electronics
2009-07-29 15:36:35 ----HD---- C:\Program Files\InstallShield Installation Information
2009-07-29 15:33:41 ----D---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\dvdcss
2009-07-22 19:51:25 ----A---- C:\WINDOWS\ModemLog_SoftV92 Data Fax Modem.txt
2009-07-20 21:32:22 ----SD---- C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data\Microsoft
2009-07-20 11:08:43 ----D---- C:\Program Files\Messenger Plus! Live
2009-07-20 06:30:34 ----D---- C:\WINDOWS\system32\DirectX
2009-07-18 18:20:07 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-07-18 18:20:06 ----A---- C:\WINDOWS\system32\mshtml.dll
2009-07-17 18:30:18 ----D---- C:\WINDOWS\Debug
2009-07-16 06:45:54 ----SD---- C:\WINDOWS\Tasks
2009-07-16 06:44:33 ----D---- C:\Program Files\Sony
2009-07-16 06:42:04 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Sony Corporation
2009-07-14 19:01:06 ----D---- C:\Program Files\Sony Setup
2009-07-14 17:25:36 ----D---- C:\Program Files\AviSynth 2.5
2009-07-14 17:10:00 ----D---- C:\temp
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2004-08-04 41600]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-07-21 28520]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-08-04 11868]
R3 btnetBUs;Bluetooth PAN Bus Service; C:\WINDOWS\System32\Drivers\btnetBus.sys [2008-12-07 30088]
R3 fbxusb;Carte réseau virtuelle FreeBox USB (32 bits); C:\WINDOWS\system32\DRIVERS\fbxusb32.sys [2007-08-27 31128]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2002-09-07 9600]
R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSFDPSP2.sys [2004-08-04 1041536]
R3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\system32\DRIVERS\HSFBS2S2.sys [2004-08-04 220032]
R3 IvtBtBUs;IVT Bluetooth Bus Service; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [2008-07-02 26248]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2006-03-28 13568]
R3 L8042mou;Logitech SetPoint PS/2 Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\L8042mou.Sys [2006-03-28 55808]
R3 LMouKE;Logitech SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2006-03-28 69760]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2002-09-07 12288]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-11-17 3994688]
R3 nvax;Service for NVIDIA(R) nForce(TM) Audio Enumerator; C:\WINDOWS\system32\drivers\nvax.sys [2005-04-13 53376]
R3 NVENET;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENET.sys [2004-01-29 93764]
R3 nvnforce;Service for NVIDIA(R) nForce(TM) Audio; C:\WINDOWS\system32\drivers\nvapu.sys [2005-04-13 414464]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-03 17024]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2009-01-08 31880]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSFCXTS2.sys [2004-08-04 685056]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2008-12-07 14088]
S3 BthEnum;Pilote de bloc de demande Bluetooth; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2004-08-03 17024]
S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2004-08-03 100992]
S3 BTHPORT;Pilote de port Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272768]
S3 BTHUSB;Pilote USB radio Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2004-08-03 18944]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2004-08-03 59648]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2008-11-11 13056]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2008-11-11 19968]
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2008-11-11 24832]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2008-01-21 14856]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-07-21 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 BlueSoleilCS;BlueSoleilCS; C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe [2009-02-10 834048]
R2 BsMobileCS;BsMobileCS; C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe [2008-06-04 143467]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-04-24 152984]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-11-17 159811]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
R3 BsHelpCS;BsHelpCS; C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe [2009-01-07 98407]
S2 gupdate1c9c8be9e495ade;Service Google Update (gupdate1c9c8be9e495ade); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-04-29 133104]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-05-29 234864]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Configuration: Windows XP Firefox 3.5.2
A voir également:
- Pc infecté comment faire !
- Comment réinitialiser pc - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Forcer demarrage pc - Guide
- Pc lent - Guide
- Temperature pc - Guide
4 réponses
▶ Telecharge FindyKill sur ton bureau :
▶ Lance l installation avec les parametres par default
▶ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir
▶ Double clic sur le raccourci FindyKill sur ton bureau
▶ Au menu principal,choisi l option 1 (Recherche)
▶ Post le rapport FindyKill.txt
* Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
▶ Lance l installation avec les parametres par default
▶ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir
▶ Double clic sur le raccourci FindyKill sur ton bureau
▶ Au menu principal,choisi l option 1 (Recherche)
▶ Post le rapport FindyKill.txt
* Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
Voilà avec le scan findykill
############################## | FindyKill V5.005 |
# User : Yoann (Administrateurs) # NICOL-6584690D9
# Update on 27/07/09 by Chiquitine29
# Start at: 18:53:09 | 09/08/2009
# Website : http://pagesperso-orange.fr/NosTools/index.html
# AMD Athlon(tm) XP 2600+
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
# Internet Explorer 6.0.2900.2180
# Windows Firewall Status : Enabled
# AV : AntiVir Desktop 9.0.1.30 [ (!) Disabled | Updated ]
# A:\ # Lecteur de disquettes 3 ½ pouces
# C:\ # Disque fixe local # 149,04 Go (43,09 Go free) # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Documents and Settings\Fabienne et André\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\Program Files\Fichiers communs\Logitech\KhalShared\KHALMNPR.EXE
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Mumble\dbus-daemon.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## | C: |
################## | C:\WINDOWS |
################## | C:\WINDOWS\system32 |
################## | C:\WINDOWS\system32\drivers |
################## | C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data |
################## | C:\Documents and Settings\Yoann.NICOL-6584690D9\Temporary Internet Files |
################## | Registre / Clés infectieuses |
Présent ! [HKLM\software\microsoft\security center] "AntiVirusOverride" 0x1
################## | Etat / Services / Informations |
# Affichage des fichiers cachés : OK
# Mode sans echec : OK
# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# Ip6Fw -> Start = 3 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )
################## | Cracks / Keygens / Serials |
################## | ! Fin du rapport # FindyKill V5.005 ! |
Alors des solutions?
############################## | FindyKill V5.005 |
# User : Yoann (Administrateurs) # NICOL-6584690D9
# Update on 27/07/09 by Chiquitine29
# Start at: 18:53:09 | 09/08/2009
# Website : http://pagesperso-orange.fr/NosTools/index.html
# AMD Athlon(tm) XP 2600+
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
# Internet Explorer 6.0.2900.2180
# Windows Firewall Status : Enabled
# AV : AntiVir Desktop 9.0.1.30 [ (!) Disabled | Updated ]
# A:\ # Lecteur de disquettes 3 ½ pouces
# C:\ # Disque fixe local # 149,04 Go (43,09 Go free) # NTFS
# D:\ # Disque CD-ROM
# E:\ # Disque CD-ROM
############################## | Processus actifs |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Documents and Settings\Fabienne et André\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\Program Files\Fichiers communs\Logitech\KhalShared\KHALMNPR.EXE
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Mumble\dbus-daemon.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## | C: |
################## | C:\WINDOWS |
################## | C:\WINDOWS\system32 |
################## | C:\WINDOWS\system32\drivers |
################## | C:\Documents and Settings\Yoann.NICOL-6584690D9\Application Data |
################## | C:\Documents and Settings\Yoann.NICOL-6584690D9\Temporary Internet Files |
################## | Registre / Clés infectieuses |
Présent ! [HKLM\software\microsoft\security center] "AntiVirusOverride" 0x1
################## | Etat / Services / Informations |
# Affichage des fichiers cachés : OK
# Mode sans echec : OK
# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# Ip6Fw -> Start = 3 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )
################## | Cracks / Keygens / Serials |
################## | ! Fin du rapport # FindyKill V5.005 ! |
Alors des solutions?
▶ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir
▶ Double clic sur le raccourci FindyKill sur ton bureau
▶ Au menu principal,choisi l option 2 (Suppression)
/!\ il y aura un redémarrage, laisse travailler l outils jusqu a l apparition du message "nettoyage effectué"
/!\ Ne te sert pas du pc durant la suppression , ton bureau ne sera pas accessible c est normal !
▶ ensuite post le rapport FindyKill.txt
* Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
* Note : Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides
A lire :
le danger des cracks
bagle/beagle
▶ Double clic sur le raccourci FindyKill sur ton bureau
▶ Au menu principal,choisi l option 2 (Suppression)
/!\ il y aura un redémarrage, laisse travailler l outils jusqu a l apparition du message "nettoyage effectué"
/!\ Ne te sert pas du pc durant la suppression , ton bureau ne sera pas accessible c est normal !
▶ ensuite post le rapport FindyKill.txt
* Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
* Note : Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides
A lire :
le danger des cracks
bagle/beagle
