Sujet Précédent Sujet Suivant

Virus Csrss.exe & Winlogon.exe

Mister$ims Messages postés 77 Statut Membre -  
Mister$ims Messages postés 77 Statut Membre -
Bonjour,
J'avais récemment chopé un virus sur mon ordi, que j'ai (je crois -_-") viré, seulement, aujourd'hui, en regardant les processus dans le gestionnaire des taches, je remarque deux trucs pas net:

(nom)Csrss.exe (nom d'utilisateur)SYSTEM (processus)00 (mémoire)1 160 K (description) Processus d'exécuttion client-server (Si si, deux T à exécution =S)
Celui la y est deux fois...
Ensuite, le deuxième:
(nom)Winlogon.exe (nom d'utilisateur) [le mien] (processus)00 (mémoire)9 988 K (description) Windows Activision

Je précise pour le dernier qu'il y a un autre winlogon, mais dans System32, avec comme description "Application d'ouverture de session Windows"

Le premier est un introuvable, que se soit en faisant une recherche "partout" comme "Ouvrir le dossier contenant le fichier" (et la rien ne se passe)...

Le second, lui se trouve dans C:\Programmes\Windows User\
Et il m'inquiète, car il se trouve avec de multiples fichiers Txt contenant mes historiques de frappes (au clavier) mes mots de passe, etc.
Et la, je commence vraiment à stresser... Logique

Pour info, j'ai Avast Anti-virus (version gratuite), qui n'a rien trouvé. C'est pas non plus la peine de me demander pour Panda AV, Mc Affe, CCleaner, et je sais plus quel est le nom du dernier... Je les ai installés un par un (donc désinstallé le précédent) puis désinstallé, chacun leur tour, et aucun n'a trouvé quelconque virus.

Un giga-Merci à ceux qui pourront m'aider (et a ceux qui ont eu le courage de tout lire)

PS: je suis sous Vista
A voir également:

37 réponses

Précédent
  • 1
  • 2
Réponse 21 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Bon, en ce qui me concerne, ça fait 10 minutes que l'analyse à commencée et j'en suis environ à 5 %, donc comme je part à 18h45, je risque de poster le résultat de l'analyse que vers 23h ce soir (si il y aura encore du monde à cette heure, sinon ce sera pour demain ;) )

Au fait, il faudrait peut-être que je vous dise tous les processus qu'il y a (a moins que Hijackthis s'en occupe déjà) parce que certains me paraissent louches mais fiable, alors qu'en fait, se sont peut-être aussi des virus, trojan, keylogger, vers, rookits, etc... C'est nécessaire selon vous ?
0
Réponse 22 / 37
Azerking Messages postés 1207 Statut Membre 187
 
RSIT nous en informe je crois.
0
Réponse 23 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Ok, pas de problème. Par contre, en plus de mon Keylogger et de mon Trojan, il est possible que j'ai un virus (mais introuvable dans ce cas), a chaque fois que j'entre un clé USB, il me génère "autorun.ini" (ou inf je sais plus) et "highspeeddrivers.exe" ou un truc du genre (l'autorun démarre donc ce dernier, mais rien ne se passe évidemment) (Un trojan et un virus car j'aurai un logiciel stable (trojan) et un qui se reproduit, donc (virus)...

Ou est-ce que j'ai chopé tout ça ??? o_O"
0
Réponse 24 / 37
Azerking Messages postés 1207 Statut Membre 187
 
Autorun sert a indiquer ce qu'il doit faire automatiquement, highspeeds truc doit accélérer mais pourrait être un virus...
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Justement, c'est ce que je pensais, seulement c'est un fichier permanent dans le sens ou si on le supprime, il réapparait, donc il vient d'un autre fichier... mais introuvable, lui. Bref, je dois y aller, je laisse Hijackthis tourner et vous donne les résultats se soir... Merci encore pour votre aide.
0
Réponse 26 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Re-bonjour ! Il est 23h10, et le Hijackthis (RSIT) que j'avais mis en marche il y à 4h est passé de 5%... à 5% -_-" Je quitte et je re-tente mais je crois que mon PC à un sérieux problème...
0
Réponse 27 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Ouf, ça a marché...

Je copie/colle le rapport:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Simon at 2010-02-25 23:13:36
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2
System drive C: has 26 GB (18%) free of 145 GB
Total RAM: 3036 MB (48% free)

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\User_Feed_Synchronization-{19A60B22-AECD-43A9-BB68-75922F94C31B}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - D:\Programmes\Internet Download Manager\IDMIECC.dll [2010-01-20 181680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-28 279664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [2010-01-28 812528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll [2009-06-29 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-05 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-10-30 1019336]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-28 279664]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-03-12 61440]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-02-13 6814240]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-08-28 1049896]
"UCam_Menu"=C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [2008-12-03 218408]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-10-28 141600]
"UVS12 Preload"=D:\Programmes\Pinnacle Studio 12\uvPL.exe [2008-06-09 397456]
"winlogon"=C:\Program Files\Windows User\winlogon.exe [2009-11-11 1232896]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2010-01-05 149280]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
"QuickTime Task"=D:\Programmes\QuickTime\QTTask.exe [2009-11-10 417792]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"ATI Technologies"=C:\Users\Simon\AppData\Roaming\ATI_disp.exe [2009-03-01 93696]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-02-11 2756488]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-10 39408]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-07-26 3883856]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"Steam"=d:\program files\steam\steam.exe [2010-02-20 1217872]
"AdobeBridge"= []
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]
"ATI Technologies"=C:\Users\Simon\AppData\Roaming\ATI_disp.exe [2009-03-01 93696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft]
C:\Windows\microsoft.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NetFxUpdate_v1.1.4322]
C:\Windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe 1 v1.1.4322 GAC + NI NID []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Service Host]
C:\Users\Simon\AppData\Roaming\svost.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\xQJhdWxYWyTd]
C:\Users\Simon\AppData\Local\Temp\h5qHU.exe []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1c24c757-aaa9-11de-8a44-00245403007c}]
shell\AutoRun\command - .\Highspeed drivers.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4d4a45f7-7744-11de-9362-00245403007c}]
shell\AutoRun\command - .\Highspeed drivers.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a713c314-0cc6-11df-a007-00245403007c}]
shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL G:\NoLimit.exe

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2010-02-25 17:46:23 ----D---- C:\rsit
2010-02-23 22:20:55 ----A---- C:\Windows\system32\browserchoice.exe
2010-02-23 19:37:04 ----A---- C:\Windows\system32\secproc_isv.dll
2010-02-23 19:37:01 ----A---- C:\Windows\system32\secproc.dll
2010-02-23 19:36:55 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-02-23 19:36:53 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-02-23 19:36:53 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-02-23 19:36:53 ----A---- C:\Windows\system32\RMActivate.exe
2010-02-23 19:36:52 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-02-23 19:36:52 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-02-23 19:36:52 ----A---- C:\Windows\system32\msdrm.dll
2010-02-23 19:34:11 ----A---- C:\Windows\system32\jscript.dll
2010-02-23 19:34:05 ----A---- C:\Windows\system32\tzres.dll
2010-02-23 19:33:34 ----A---- C:\Windows\system32\gameux.dll
2010-02-23 19:33:33 ----A---- C:\Windows\system32\Apphlpdm.dll
2010-02-23 19:33:32 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2010-02-21 16:23:58 ----D---- C:\Users\Simon\AppData\Roaming\IDM
2010-02-21 16:23:58 ----D---- C:\Users\Simon\AppData\Roaming\DMCache
2010-02-20 23:07:30 ----HD---- C:\Program Files\Common Files\Updates
2010-02-20 18:02:20 ----D---- C:\ProgramData\Alwil Software
2010-02-10 12:15:18 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-02-10 12:15:18 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-02-10 12:15:05 ----A---- C:\Windows\system32\tsbyuv.dll
2010-02-10 12:15:05 ----A---- C:\Windows\system32\quartz.dll
2010-02-10 12:15:05 ----A---- C:\Windows\system32\msyuv.dll
2010-02-10 12:15:05 ----A---- C:\Windows\system32\msvidc32.dll
2010-02-10 12:15:04 ----A---- C:\Windows\system32\msvfw32.dll
2010-02-10 12:15:04 ----A---- C:\Windows\system32\msrle32.dll
2010-02-10 12:15:04 ----A---- C:\Windows\system32\mciavi32.dll
2010-02-10 12:15:04 ----A---- C:\Windows\system32\iyuv_32.dll
2010-02-10 12:15:04 ----A---- C:\Windows\system32\avifil32.dll
2010-02-08 22:26:13 ----D---- C:\Users\Simon\AppData\Roaming\Blender Foundation
2010-02-07 23:09:56 ----D---- C:\ProgramData\FLEXnet
2010-02-07 23:09:28 ----A---- C:\Windows\system32\amtlib.dll
2010-02-07 21:43:45 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-02-07 21:38:24 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-02-07 18:49:12 ----D---- C:\ProgramData\TrackMania
2010-02-07 14:38:08 ----D---- C:\Users\Simon\AppData\Roaming\ManyCam
2010-02-06 20:01:52 ----A---- C:\Windows\system32\occache.dll
2010-02-06 20:01:51 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-02-06 20:01:51 ----A---- C:\Windows\system32\msfeeds.dll
2010-02-06 20:01:51 ----A---- C:\Windows\system32\jsproxy.dll
2010-02-06 20:01:51 ----A---- C:\Windows\system32\iepeers.dll
2010-02-06 20:01:50 ----A---- C:\Windows\system32\ieui.dll
2010-02-06 20:01:50 ----A---- C:\Windows\system32\iesetup.dll
2010-02-06 20:01:50 ----A---- C:\Windows\system32\iernonce.dll
2010-02-06 20:01:49 ----A---- C:\Windows\system32\wininet.dll
2010-02-06 20:01:49 ----A---- C:\Windows\system32\msfeedssync.exe
2010-02-06 20:01:49 ----A---- C:\Windows\system32\ie4uinit.exe
2010-02-06 20:01:48 ----A---- C:\Windows\system32\urlmon.dll
2010-02-06 20:01:48 ----A---- C:\Windows\system32\ieUnatt.exe
2010-02-06 20:01:48 ----A---- C:\Windows\system32\iesysprep.dll
2010-02-06 20:01:48 ----A---- C:\Windows\system32\iertutil.dll
2010-02-06 20:01:48 ----A---- C:\Windows\system32\iedkcs32.dll
2010-02-06 20:01:46 ----A---- C:\Windows\system32\ieframe.dll
2010-02-06 20:01:45 ----A---- C:\Windows\system32\mshtml.dll
2010-02-06 20:00:10 ----A---- C:\Windows\system32\mshtmled.dll
2010-02-06 20:00:10 ----A---- C:\Windows\system32\icardie.dll
2010-02-06 20:00:09 ----A---- C:\Windows\system32\msls31.dll
2010-02-06 20:00:09 ----A---- C:\Windows\system32\mshtmler.dll
2010-02-06 20:00:09 ----A---- C:\Windows\system32\corpol.dll
2010-02-06 20:00:09 ----A---- C:\Windows\system32\admparse.dll
2010-02-06 20:00:08 ----A---- C:\Windows\system32\imgutil.dll
2010-02-06 20:00:08 ----A---- C:\Windows\system32\ieakeng.dll
2010-02-06 20:00:08 ----A---- C:\Windows\system32\dxtrans.dll
2010-02-06 20:00:08 ----A---- C:\Windows\system32\dxtmsft.dll
2010-02-06 20:00:07 ----A---- C:\Windows\system32\webcheck.dll
2010-02-06 20:00:07 ----A---- C:\Windows\system32\msrating.dll
2010-02-06 20:00:07 ----A---- C:\Windows\system32\licmgr10.dll
2010-02-06 20:00:07 ----A---- C:\Windows\system32\inseng.dll
2010-02-06 20:00:07 ----A---- C:\Windows\system32\ieaksie.dll
2010-02-06 20:00:06 ----A---- C:\Windows\system32\WinFXDocObj.exe
2010-02-06 20:00:06 ----A---- C:\Windows\system32\wextract.exe
2010-02-06 20:00:06 ----A---- C:\Windows\system32\mstime.dll
2010-02-06 20:00:06 ----A---- C:\Windows\system32\ieakui.dll
2010-02-06 20:00:06 ----A---- C:\Windows\system32\advpack.dll
2010-02-06 20:00:05 ----A---- C:\Windows\system32\pngfilt.dll
2010-02-06 20:00:05 ----A---- C:\Windows\system32\ieapfltr.dll
2010-02-06 20:00:04 ----A---- C:\Windows\system32\vbscript.dll
2010-02-06 20:00:04 ----A---- C:\Windows\system32\url.dll
2010-02-06 20:00:02 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2010-02-06 20:00:02 ----A---- C:\Windows\system32\SetDepNx.exe
2010-02-06 20:00:02 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2010-02-06 20:00:02 ----A---- C:\Windows\system32\PDMSetup.exe
2010-02-06 20:00:02 ----A---- C:\Windows\system32\mshta.exe
2010-02-06 20:00:02 ----A---- C:\Windows\system32\iexpress.exe
2010-02-03 21:04:12 ----D---- C:\Download
2010-02-03 19:28:29 ----D---- C:\Users\Simon\AppData\Roaming\Apowersoft
2010-01-31 18:40:32 ----A---- C:\wepkeys.txt
2010-01-29 22:14:24 ----D---- C:\Program Files\Common Files\Steam
2010-01-25 15:48:38 ----A---- C:\Windows\system32\idmmbc.dll
2010-01-19 12:34:08 ----A---- C:\Windows\MegaManager.INI
2010-01-13 19:27:53 ----D---- C:\Program Files\Adobe
2010-01-13 12:33:58 ----A---- C:\Windows\system32\t2embed.dll
2010-01-13 12:33:57 ----A---- C:\Windows\system32\fontsub.dll
2010-01-10 00:27:36 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-01-10 00:27:36 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-01-10 00:27:36 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-01-10 00:27:36 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-01-10 00:27:36 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-01-09 00:01:24 ----D---- C:\Windows\Sun
2010-01-06 16:46:53 ----HD---- C:\Windows\PIF
2010-01-06 00:46:35 ----A---- C:\Windows\ntbtlog.txt
2010-01-06 00:39:28 ----D---- C:\SDFix
2010-01-06 00:26:11 ----D---- C:\Program Files\Trend Micro
2010-01-05 23:46:53 ----A---- C:\Windows\system32\aswBoot.exe
2010-01-05 23:09:12 ----A---- C:\Users\Simon\AppData\Roaming\Steam.dll
2010-01-05 23:00:35 ----A---- C:\Windows\system32\javaws.exe
2010-01-05 23:00:35 ----A---- C:\Windows\system32\javaw.exe
2010-01-05 23:00:35 ----A---- C:\Windows\system32\java.exe
2010-01-05 20:11:52 ----D---- C:\SMCLpav
2010-01-05 12:22:57 ----D---- C:\Windows\pss
2010-01-04 22:49:50 ----D---- C:\Users\Simon\AppData\Roaming\WinRAR
2010-01-04 22:43:43 ----RASHD---- C:\autorun.inf
2010-01-04 22:43:01 ----D---- C:\UsbFix
2010-01-04 16:09:14 ----A---- C:\Users\Simon\AppData\Roaming\ATI_disp.exe
2010-01-04 15:46:38 ----D---- C:\Program Files\Windows User
2010-01-02 23:07:14 ----D---- C:\Users\Simon\AppData\Roaming\vlc
2009-12-20 23:26:29 ----D---- C:\Program Files\Common Files\PX Storage Engine
2009-12-20 19:46:25 ----D---- C:\Program Files\Microsoft Office
2009-12-20 18:25:16 ----D---- C:\Program Files\Microsoft Silverlight
2009-12-19 00:08:30 ----D---- C:\Windows\system32\URTTEMP
2009-12-18 13:39:00 ----D---- C:\ProgramData\wanted
2009-12-18 12:38:41 ----D---- C:\Program Files\DAEMON Tools Toolbar
2009-12-18 12:37:46 ----D---- C:\Program Files\DAEMON Tools Lite
2009-12-18 11:25:42 ----A---- C:\Windows\system32\XAudio2_3.dll
2009-12-18 11:25:42 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2009-12-18 11:25:42 ----A---- C:\Windows\system32\xactengine3_3.dll
2009-12-18 11:25:42 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2009-12-18 11:25:08 ----D---- C:\Program Files\OpenAL
2009-12-18 11:25:08 ----A---- C:\Windows\system32\wrap_oal.dll
2009-12-18 11:25:08 ----A---- C:\Windows\system32\OpenAL32.dll
2009-12-17 15:02:34 ----A---- C:\Windows\system32\VBoxNetFltNotify.dll
2009-12-16 13:56:55 ----A---- C:\Windows\system32\XAudio2_2.dll
2009-12-16 13:56:55 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2009-12-16 13:56:54 ----A---- C:\Windows\system32\xactengine3_2.dll
2009-12-16 13:56:54 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2009-12-16 13:56:53 ----A---- C:\Windows\system32\d3dx10_39.dll
2009-12-16 13:56:52 ----A---- C:\Windows\system32\D3DX9_39.dll
2009-12-15 22:15:19 ----A---- C:\Windows\system32\D3DX9_42.dll
2009-12-15 22:15:19 ----A---- C:\Windows\system32\d3dx10_42.dll
2009-12-15 22:14:57 ----D---- C:\Windows\system32\xlive
2009-12-15 22:14:56 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2009-12-15 21:57:51 ----A---- C:\Windows\system32\D3DX9_41.dll
2009-12-15 21:57:51 ----A---- C:\Windows\system32\d3dx10_41.dll
2009-12-15 21:57:51 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2009-12-15 21:57:50 ----A---- C:\Windows\system32\XAudio2_4.dll
2009-12-15 21:57:50 ----A---- C:\Windows\system32\xactengine3_4.dll
2009-12-15 21:57:50 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2009-12-15 21:57:50 ----A---- C:\Windows\system32\d3dx10_40.dll
2009-12-15 21:57:50 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2009-12-15 21:57:49 ----A---- C:\Windows\system32\D3DX9_40.dll
2009-12-15 21:57:46 ----A---- C:\Windows\system32\XAudio2_1.dll
2009-12-15 21:57:46 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2009-12-15 21:57:46 ----A---- C:\Windows\system32\xactengine3_1.dll
2009-12-15 21:57:45 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2009-12-15 21:57:44 ----A---- C:\Windows\system32\d3dx10_38.dll
2009-12-15 21:57:44 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2009-12-15 21:57:43 ----A---- C:\Windows\system32\D3DX9_38.dll
2009-12-15 21:57:42 ----A---- C:\Windows\system32\XAudio2_0.dll
2009-12-15 21:57:42 ----A---- C:\Windows\system32\xactengine3_0.dll
2009-12-15 21:57:42 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2009-12-15 21:57:41 ----A---- C:\Windows\system32\d3dx10_37.dll
2009-12-15 21:57:41 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2009-12-15 21:57:39 ----A---- C:\Windows\system32\xactengine2_10.dll
2009-12-15 21:57:39 ----A---- C:\Windows\system32\D3DX9_37.dll
2009-12-15 21:57:38 ----A---- C:\Windows\system32\d3dx10_36.dll
2009-12-15 21:57:38 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2009-12-15 21:57:37 ----A---- C:\Windows\system32\d3dx9_36.dll
2009-12-15 21:57:36 ----A---- C:\Windows\system32\xactengine2_9.dll
2009-12-15 21:57:35 ----A---- C:\Windows\system32\d3dx10_35.dll
2009-12-15 21:57:35 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2009-12-15 21:57:33 ----A---- C:\Windows\system32\d3dx9_35.dll
2009-12-15 21:57:32 ----A---- C:\Windows\system32\xactengine2_8.dll
2009-12-15 21:57:32 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2009-12-15 21:57:31 ----A---- C:\Windows\system32\d3dx10_34.dll
2009-12-15 21:57:31 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2009-12-15 21:57:30 ----A---- C:\Windows\system32\d3dx9_34.dll
2009-12-15 21:57:29 ----A---- C:\Windows\system32\xinput1_3.dll
2009-12-15 21:57:29 ----A---- C:\Windows\system32\xactengine2_7.dll
2009-12-15 21:57:28 ----A---- C:\Windows\system32\d3dx10_33.dll
2009-12-15 21:57:28 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2009-12-15 21:57:26 ----A---- C:\Windows\system32\d3dx9_33.dll
2009-12-15 21:57:25 ----A---- C:\Windows\system32\xactengine2_6.dll
2009-12-15 21:57:24 ----A---- C:\Windows\system32\xactengine2_5.dll
2009-12-15 21:57:24 ----A---- C:\Windows\system32\d3dx10.dll
2009-12-15 21:57:23 ----A---- C:\Windows\system32\d3dx9_32.dll
2009-12-15 21:57:22 ----A---- C:\Windows\system32\xactengine2_4.dll
2009-12-15 21:57:22 ----A---- C:\Windows\system32\x3daudio1_1.dll
2009-12-15 21:57:21 ----A---- C:\Windows\system32\xactengine2_3.dll
2009-12-15 21:57:20 ----A---- C:\Windows\system32\xinput1_2.dll
2009-12-15 21:57:20 ----A---- C:\Windows\system32\xactengine2_2.dll
2009-12-15 21:57:19 ----A---- C:\Windows\system32\xinput1_1.dll
2009-12-15 21:57:19 ----A---- C:\Windows\system32\xactengine2_1.dll
2009-12-15 21:57:00 ----A---- C:\Windows\system32\xactengine2_0.dll
2009-12-15 21:57:00 ----A---- C:\Windows\system32\x3daudio1_0.dll
2009-12-15 21:57:00 ----A---- C:\Windows\system32\d3dx9_30.dll
2009-12-15 21:56:58 ----A---- C:\Windows\system32\d3dx9_29.dll
2009-12-15 21:56:57 ----A---- C:\Windows\system32\d3dx9_28.dll
2009-12-15 21:56:56 ----A---- C:\Windows\system32\d3dx9_27.dll
2009-12-15 21:56:54 ----A---- C:\Windows\system32\d3dx9_26.dll
2009-12-15 21:56:53 ----A---- C:\Windows\system32\d3dx9_25.dll
2009-12-15 21:56:51 ----A---- C:\Windows\system32\d3dx9_24.dll
2009-12-12 23:20:30 ----D---- C:\Program Files\Common Files\Nullsoft
2009-12-11 17:12:30 ----A---- C:\Windows\system32\nshhttp.dll
2009-12-11 17:12:27 ----A---- C:\Windows\system32\httpapi.dll
2009-12-10 20:45:07 ----A---- C:\Windows\system32\winhttp.dll
2009-12-10 20:43:40 ----A---- C:\Windows\system32\rastls.dll
2009-12-09 21:52:04 ----D---- C:\Program Files\Common Files\FontLab
2009-12-09 16:42:24 ----A---- C:\Windows\system32\d3dx9_31.dll
2009-12-09 16:39:55 ----D---- C:\Windows\system32\AGEIA
2009-12-09 16:39:54 ----D---- C:\Program Files\AGEIA Technologies
2009-12-09 16:39:00 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2009-12-07 21:40:42 ----D---- C:\Program Files\Common Files\SureThing Shared
2009-12-07 21:40:41 ----D---- C:\Program Files\SureThing Express Labeler
2009-12-07 21:36:15 ----D---- C:\Program Files\Common Files\Pinnacle
2009-12-07 21:14:48 ----D---- C:\ProgramData\Pinnacle
2009-12-07 19:09:17 ----D---- C:\Program Files\Windows Portable Devices
2009-12-07 18:59:46 ----A---- C:\Windows\system32\UIAnimation.dll
2009-12-07 18:59:45 ----A---- C:\Windows\system32\UIRibbonRes.dll
2009-12-07 18:59:45 ----A---- C:\Windows\system32\UIRibbon.dll
2009-12-07 18:59:17 ----A---- C:\Windows\system32\WMPhoto.dll
2009-12-07 18:59:16 ----A---- C:\Windows\system32\cdd.dll
2009-12-07 18:59:13 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-12-07 18:59:13 ----A---- C:\Windows\system32\d3d10warp.dll
2009-12-07 18:59:12 ----A---- C:\Windows\system32\XpsRasterService.dll
2009-12-07 18:59:12 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2009-12-07 18:59:12 ----A---- C:\Windows\system32\d2d1.dll
2009-12-07 18:59:11 ----A---- C:\Windows\system32\XpsPrint.dll
2009-12-07 18:59:11 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-12-07 18:59:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-12-07 18:59:11 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-12-07 18:59:11 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-12-07 18:59:11 ----A---- C:\Windows\system32\OpcServices.dll
2009-12-07 18:59:11 ----A---- C:\Windows\system32\dxdiagn.dll
2009-12-07 18:59:11 ----A---- C:\Windows\system32\dxdiag.exe
2009-12-07 18:59:10 ----A---- C:\Windows\system32\xpsservices.dll
2009-12-07 18:59:10 ----A---- C:\Windows\system32\FntCache.dll
2009-12-07 18:59:10 ----A---- C:\Windows\system32\DWrite.dll
2009-12-07 18:59:10 ----A---- C:\Windows\system32\d3d11.dll
2009-12-07 18:59:10 ----A---- C:\Windows\system32\d3d10level9.dll
2009-12-07 18:59:10 ----A---- C:\Windows\system32\d3d10core.dll
2009-12-07 18:59:10 ----A---- C:\Windows\system32\d3d10_1core.dll
2009-12-07 18:59:09 ----A---- C:\Windows\system32\dxgi.dll
2009-12-07 18:59:09 ----A---- C:\Windows\system32\d3d10_1.dll
2009-12-07 18:59:09 ----A---- C:\Windows\system32\d3d10.dll
2009-12-07 18:58:39 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2009-12-07 18:58:39 ----A---- C:\Windows\system32\wpdbusenum.dll
2009-12-07 18:58:39 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
2009-12-07 18:58:35 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2009-12-07 18:58:33 ----A---- C:\Windows\system32\wpdshext.dll
2009-12-07 18:58:32 ----A---- C:\Windows\system32\WPDSp.dll
2009-12-07 18:58:32 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2009-12-07 18:58:32 ----A---- C:\Windows\system32\wpd_ci.dll
2009-12-07 18:58:32 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2009-12-07 18:58:32 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-12-07 18:58:32 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-12-07 18:58:32 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-12-07 18:57:20 ----A---- C:\Windows\system32\UIAutomationCore.dll
2009-12-07 18:57:20 ----A---- C:\Windows\system32\oleaccrc.dll
2009-12-07 18:57:20 ----A---- C:\Windows\system32\oleacc.dll
2009-12-07 13:10:07 ----D---- C:\Windows\system32\vi-VN
2009-12-07 13:10:07 ----D---- C:\Windows\system32\eu-ES
2009-12-07 13:10:07 ----D---- C:\Windows\system32\ca-ES
2009-12-07 12:26:13 ----D---- C:\Windows\system32\EventProviders
2009-12-06 19:41:32 ----D---- C:\Users\Simon\AppData\Roaming\Ulead Systems
2009-12-06 19:16:49 ----D---- C:\ProgramData\InterVideo
2009-12-06 19:16:41 ----A---- C:\Windows\system32\IVIresizeW7.dll
2009-12-06 19:16:41 ----A---- C:\Windows\system32\IVIresizePX.dll
2009-12-06 19:16:41 ----A---- C:\Windows\system32\IVIresizeP6.dll
2009-12-06 19:16:41 ----A---- C:\Windows\system32\IVIresizeM6.dll
2009-12-06 19:16:41 ----A---- C:\Windows\system32\IVIresizeA6.dll
2009-12-06 19:16:41 ----A---- C:\Windows\system32\IVIresize.dll
2009-12-06 19:16:13 ----D---- C:\Program Files\Windows Media Components
2009-12-06 19:14:10 ----D---- C:\ProgramData\Ulead Systems
2009-12-06 19:14:10 ----D---- C:\Program Files\Common Files\Ulead Systems
2009-12-03 17:36:14 ----D---- C:\Windows\Cache
2009-12-03 17:34:10 ----A---- C:\Windows\system32\AF15BDAEX.dll
2009-12-03 16:57:35 ----D---- C:\ProgramData\BlazeVideo
2009-12-03 16:56:59 ----A---- C:\Windows\system32\systeminfo.dll
2009-12-03 16:56:39 ----D---- C:\Program Files\BlazeVideo
2009-12-02 13:41:03 ----D---- C:\ProgramData\Electronic Arts
2009-12-02 13:39:29 ----D---- C:\Program Files\Electronic Arts
2009-12-02 13:35:41 ----D---- C:\Program Files\Microsoft WSE
2009-12-01 18:21:45 ----D---- C:\Fraps
2009-11-30 19:33:17 ----D---- C:\Users\Simon\AppData\Roaming\ALLCapture
2009-11-30 18:02:40 ----A---- C:\Windows\system32\xliveinstall.dll
2009-11-30 18:02:38 ----A---- C:\Windows\system32\xliveinstallhost.exe

======List of files/folders modified in the last 3 months======

2010-02-25 23:13:27 ----D---- C:\Windows\Temp
2010-02-25 18:19:16 ----D---- C:\Windows\Prefetch
2010-02-25 15:59:04 ----SHD---- C:\System Volume Information
2010-02-25 05:23:50 ----SHD---- C:\Windows\Installer
2010-02-24 13:53:03 ----D---- C:\Windows\rescache
2010-02-24 09:16:06 ----N---- C:\Windows\system32\MpSigStub.exe
2010-02-24 04:45:38 ----RSD---- C:\Windows\Fonts
2010-02-24 04:45:38 ----D---- C:\Windows\system32\fr-FR
2010-02-24 04:45:38 ----D---- C:\Windows\System32
2010-02-24 04:45:38 ----D---- C:\Windows\AppPatch
2010-02-24 01:00:08 ----D---- C:\Program Files\Mozilla Firefox
2010-02-23 22:32:46 ----D---- C:\Users\Simon\AppData\Roaming\dvdcss
2010-02-23 22:21:48 ----D---- C:\Windows\winsxs
2010-02-23 22:21:04 ----D---- C:\Windows\system32\catroot
2010-02-23 19:33:47 ----D---- C:\Windows\system32\catroot2
2010-02-22 03:18:34 ----D---- C:\Windows\Minidump
2010-02-22 03:18:26 ----D---- C:\Windows
2010-02-21 23:49:22 ----D---- C:\Windows\inf
2010-02-21 23:49:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-02-21 21:49:48 ----D---- C:\Users\Simon\AppData\Roaming\LimeWire
2010-02-21 21:19:16 ----D---- C:\Program Files\LimeWire
2010-02-21 12:48:03 ----D---- C:\Program Files\Alwil Software
2010-02-20 23:07:40 ----HD---- C:\Program Files\InstallShield Installation Information
2010-02-20 23:07:30 ----D---- C:\Program Files\Common Files
2010-02-20 18:02:20 ----HD---- C:\ProgramData
2010-02-18 21:01:21 ----D---- C:\Users\Simon\AppData\Roaming\gtk-2.0
2010-02-17 20:27:51 ----AD---- C:\Windows\system32\drivers
2010-02-17 15:09:44 ----D---- C:\Windows\Tasks
2010-02-17 15:09:44 ----D---- C:\Windows\system32\Tasks
2010-02-16 15:17:37 ----D---- C:\ProgramData\Microsoft Help
2010-02-10 17:50:07 ----HD---- C:\Windows\system32\GroupPolicy
2010-02-10 14:20:16 ----D---- C:\Program Files\Windows Mail
2010-02-09 22:32:27 ----D---- C:\Program Files\Google
2010-02-07 23:49:13 ----D---- C:\Users\Simon\AppData\Roaming\Adobe
2010-02-07 21:48:57 ----D---- C:\ProgramData\Adobe
2010-02-07 21:47:37 ----D---- C:\Program Files\Common Files\Adobe
2010-02-07 18:48:50 ----RSD---- C:\Windows\assembly
2010-02-06 20:03:38 ----D---- C:\Windows\system32\migration
2010-02-06 20:03:38 ----D---- C:\Program Files\Internet Explorer
2010-02-06 20:03:36 ----D---- C:\Windows\system32\en-US
2010-02-06 20:03:36 ----D---- C:\Windows\PolicyDefinitions
2010-02-03 19:29:20 ----RD---- C:\Program Files
2010-02-03 16:43:35 ----D---- C:\Program Files\VideoLAN
2010-02-01 20:26:20 ----A---- C:\Windows\system32\mrt.exe
2010-01-16 19:54:53 ----D---- C:\ProgramData\Messenger Plus!
2010-01-16 19:53:01 ----D---- C:\Program Files\Messenger Plus! Live
2010-01-13 19:07:53 ----D---- C:\Windows\Debug
2010-01-09 15:34:16 ----SD---- C:\Users\Simon\AppData\Roaming\Microsoft
2010-01-08 19:33:53 ----D---- C:\Windows\system32\WDI
2010-01-05 23:33:29 ----D---- C:\Program Files\MaxTV4
2010-01-05 23:03:04 ----D---- C:\Windows\Logs
2010-01-05 23:00:09 ----A---- C:\Windows\system32\deploytk.dll
2010-01-05 20:02:39 ----D---- C:\Windows\system32\pt-PT
2010-01-05 17:38:36 ----D---- C:\Windows\Registration
2010-01-03 22:00:00 ----A---- C:\Windows\system32\ff_vfw.dll
2010-01-03 01:13:21 ----DC---- C:\Windows\system32\DRVSTORE
2009-12-21 00:24:20 ----HD---- C:\Windows\msdownld.tmp
2009-12-21 00:24:20 ----D---- C:\Windows\RegisteredPackages
2009-12-20 19:48:39 ----A---- C:\Windows\win.ini
2009-12-20 18:24:58 ----D---- C:\Program Files\Common Files\microsoft shared
2009-12-20 18:24:13 ----D---- C:\Program Files\Microsoft
2009-12-19 00:10:33 ----D---- C:\Program Files\Common Files\InstallShield
2009-12-18 00:43:38 ----D---- C:\Program Files\Windows NT
2009-12-12 23:20:31 ----SD---- C:\Windows\Downloaded Program Files
2009-12-07 19:09:17 ----D---- C:\Windows\system32\wbem
2009-12-07 19:09:14 ----D---- C:\Windows\system32\uk-UA
2009-12-07 19:09:14 ----D---- C:\Windows\system32\pt-BR
2009-12-07 19:09:14 ----D---- C:\Windows\system32\pl-PL
2009-12-07 19:09:14 ----D---- C:\Windows\system32\it-IT
2009-12-07 19:09:14 ----D---- C:\Windows\system32\he-IL
2009-12-07 19:09:14 ----D---- C:\Windows\system32\bg-BG
2009-12-07 19:09:13 ----D---- C:\Windows\system32\zh-TW
2009-12-07 19:09:13 ----D---- C:\Windows\system32\zh-HK
2009-12-07 19:09:13 ----D---- C:\Windows\system32\tr-TR
2009-12-07 19:09:13 ----D---- C:\Windows\system32\th-TH
2009-12-07 19:09:13 ----D---- C:\Windows\system32\sv-SE
2009-12-07 19:09:13 ----D---- C:\Windows\system32\sr-Latn-CS
2009-12-07 19:09:13 ----D---- C:\Windows\system32\sl-SI
2009-12-07 19:09:13 ----D---- C:\Windows\system32\sk-SK
2009-12-07 19:09:13 ----D---- C:\Windows\system32\nl-NL
2009-12-07 19:09:13 ----D---- C:\Windows\system32\lv-LV
2009-12-07 19:09:13 ----D---- C:\Windows\system32\lt-LT
2009-12-07 19:09:13 ----D---- C:\Windows\system32\ko-KR
2009-12-07 19:09:13 ----D---- C:\Windows\system32\hu-HU
2009-12-07 19:09:13 ----D---- C:\Windows\system32\hr-HR
2009-12-07 19:09:13 ----D---- C:\Windows\system32\fi-FI
2009-12-07 19:09:13 ----D---- C:\Windows\system32\et-EE
2009-12-07 19:09:13 ----D---- C:\Windows\system32\es-ES
2009-12-07 19:09:13 ----D---- C:\Windows\system32\el-GR
2009-12-07 19:09:13 ----D---- C:\Windows\system32\de-DE
2009-12-07 19:09:13 ----D---- C:\Windows\system32\cs-CZ
2009-12-07 19:09:12 ----D---- C:\Windows\system32\zh-CN
2009-12-07 19:09:12 ----D---- C:\Windows\system32\ru-RU
2009-12-07 19:09:12 ----D---- C:\Windows\system32\ro-RO
2009-12-07 19:09:12 ----D---- C:\Windows\system32\nb-NO
2009-12-07 19:09:12 ----D---- C:\Windows\system32\ja-JP
2009-12-07 19:09:12 ----D---- C:\Windows\system32\da-DK
2009-12-07 19:09:12 ----D---- C:\Windows\system32\ar-SA
2009-12-07 19:00:08 ----D---- C:\Windows\Microsoft.NET
2009-12-07 13:16:52 ----SHD---- C:\Boot
2009-12-07 13:10:38 ----D---- C:\Program Files\Windows Sidebar
2009-12-07 13:10:38 ----D---- C:\Program Files\Windows Media Player
2009-12-07 13:10:38 ----D---- C:\Program Files\Windows Journal
2009-12-07 13:10:38 ----D---- C:\Program Files\Windows Collaboration
2009-12-07 13:10:38 ----D---- C:\Program Files\Windows Calendar
2009-12-07 13:10:38 ----D---- C:\Program Files\Movie Maker
2009-12-07 13:10:36 ----D---- C:\Program Files\Windows Photo Gallery
2009-12-07 13:10:36 ----D---- C:\Program Files\Common Files\System
2009-12-07 13:10:35 ----D---- C:\Windows\servicing
2009-12-07 13:10:35 ----D---- C:\Windows\ehome
2009-12-07 13:10:35 ----D---- C:\Program Files\Windows Defender
2009-12-07 13:10:32 ----D---- C:\Windows\system32\XPSViewer
2009-12-07 13:10:32 ----D---- C:\Windows\IME
2009-12-07 13:10:31 ----D---- C:\Windows\system32\oobe
2009-12-07 13:10:31 ----D---- C:\Windows\system32\fr
2009-12-07 13:10:30 ----D---- C:\Windows\system32\AdvancedInstallers
2009-12-07 13:10:25 ----D---- C:\Windows\system32\SLUI
2009-12-07 13:10:25 ----D---- C:\Windows\system32\setup
2009-12-07 13:10:25 ----D---- C:\Windows\system32\manifeststore
2009-12-07 13:10:23 ----D---- C:\Windows\system32\migwiz
2009-12-07 13:10:07 ----D---- C:\Windows\system32\Boot
2009-12-07 13:09:08 ----D---- C:\Windows\system32\RTCOM
2009-12-07 12:28:06 ----D---- C:\Program Files\Java
2009-12-03 17:21:37 ----D---- C:\TEMP
2009-12-02 15:21:37 ----D---- C:\ProgramData\McAfee
2009-12-01 21:50:47 ----D---- C:\ProgramData\DAEMON Tools Lite

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-02-11 23376]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-02-11 162512]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-02-11 46672]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2009-12-17 123280]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2009-12-17 41616]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-02-11 19024]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-02-11 51792]
R2 KMDFMEMIO;SAMSUNG Kernel Driver; C:\Windows\system32\DRIVERS\kmdfmemio.sys [2008-08-12 13312]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-12-17 1203712]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-03-12 4386304]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-02-13 2325728]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver; C:\Windows\system32\DRIVERS\ManyCam.sys [2008-01-14 21632]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-08-28 199344]
R3 VBoxNetFlt;VBoxNetFlt Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2009-12-17 110096]
R3 VMC326;Vimicro Camera Service VMC326; C:\Windows\System32\Drivers\VMC326.sys [2008-11-21 238464]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2009-01-30 311296]
S2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys []
S3 a833i1vp;a833i1vp; C:\Windows\system32\drivers\a833i1vp.sys []
S3 AF15BDA;AF9015 BDA Device; C:\Windows\system32\DRIVERS\AF15BDA.sys [2009-12-03 483200]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2008-03-21 1203776]
S3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\Windows\system32\DRIVERS\bcm4sbxp.sys [2006-11-02 45056]
S3 BthEnum;Service d'énumérateur Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-04-11 507904]
S3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-04-11 29696]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2008-01-21 2225664]
S3 Ph3xIB32;Philips 713x Inbox PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136]
S3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 SPLITCAM;Splitcam, WDM Camera Stream Splitter; C:\Windows\system32\DRIVERS\splitcam.sys []
S3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2009-12-17 99152]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2008-03-18 13312]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2009-03-12 733184]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-02-11 40384]
R2 BcmSqlStartupSvc;Service de démarrage SQL Server pour le Gestionnaire de contacts professionnels; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-16 30312]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;Enregistreur VSS SQL Server; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
R2 yksvc;Marvell Yukon Service; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-02-11 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-02-11 40384]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-10-28 545568]
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2010-02-24 332720]
S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-09-29 133104]
S3 aspnet_state;Service d'état ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-30 31048]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-02-07 655624]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-09-26 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe -d -f C:\Program Files\WinPcap\rpcapd.ini []
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
S4 Rezip;Rezip; C:\Windows\SYSTEM32\Rezip.exe [2009-03-05 311296]

-----------------EOF-----------------

Voilà voilà, si quelqu'un pouvait m'aider ^^ Merci
0
Réponse 28 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
J'arrive pas a poster le 2e dsl...

info.txt logfile of random's system information tool 1.06 2010-02-25 23:13:45

======Uninstall list======

-->"C:\Program Files\InstallShield Installation Information\{BB8AE808-F003-4C7F-B56B-8C80EEAFFE23}\setup.exe" --u:{BB8AE808-F003-4C7F-B56B-8C80EEAFFE23}
-->MsiExec /X{8AAB4176-A747-493A-A42C-B63CFADFD8E3}
2007 Microsoft Office system-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROHYBRIDR /dll OSETUP.DLL
ACID Music Studio 7.0 de Sony-->MsiExec.exe /X{A6CE9D67-88BF-4AC1-A391-D3F79651DDD3}
Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}
Adobe Anchor Service CS4-->MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8}
Adobe Bridge CS4-->MsiExec.exe /I{83877DB1-8B77-45BC-AB43-2BAC22E093E0}
Adobe CMaps CS4-->MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191}
Adobe Color - Photoshop Specific CS4-->MsiExec.exe /I{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}
Adobe Color EU Recommended Settings CS4-->MsiExec.exe /I{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}
Adobe Color JA Extra Settings CS4-->MsiExec.exe /I{0D6013AB-A0C7-41DC-973C-E93129C9A29F}
Adobe Color NA Extra Settings CS4-->MsiExec.exe /I{098A2A49-7CF3-4F08-A38D-FB879117152A}
Adobe Color Video Profiles CS CS4-->MsiExec.exe /I{63C24A08-70F3-4C8E-B9FB-9F21A903801D}
Adobe CSI CS4-->MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF}
Adobe Default Language CS4-->MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683}
Adobe Device Central CS4-->MsiExec.exe /I{67F0E67A-8E93-4C2C-B29D-47C48262738A}
Adobe Drive CS4-->MsiExec.exe /I{16E16F01-2E2D-4248-A42F-76261C147B6C}
Adobe ExtendScript Toolkit CS4-->MsiExec.exe /I{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}
Adobe Extension Manager CS4-->MsiExec.exe /I{054EFA56-2AC1-48F4-A883-0AB89874B972}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Fonts All-->MsiExec.exe /I{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}
Adobe Linguistics CS4-->MsiExec.exe /I{931AB7EA-3656-4BB7-864D-022B09E3DD67}
Adobe Output Module-->MsiExec.exe /I{BB4E33EC-8181-4685-96F7-8554293DEC6A}
Adobe PDF Library Files CS4-->MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353}
Adobe Photoshop CS4 Support-->MsiExec.exe /I{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}
Adobe Photoshop CS4-->C:\Program Files\Common Files\Adobe\Installers\faf656ef605427ee2f42989c3ad31b8\Setup.exe --uninstall=1
Adobe Photoshop CS4-->MsiExec.exe /I{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}
Adobe Photoshop CS4-->MsiExec.exe /I{E4848436-0345-47E2-B648-8B522FCDA623}
Adobe Reader 9.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A93000000001}
Adobe Search for Help-->MsiExec.exe /I{F0E64E2E-3A60-40D8-A55D-92F6831875DA}
Adobe Service Manager Extension-->MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}
Adobe Setup-->MsiExec.exe /I{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}
Adobe Type Support CS4-->MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
Adobe Update Manager CS4-->MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}
Adobe XMP Panels CS4-->MsiExec.exe /I{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}
AdobeColorCommonSetCMYK-->MsiExec.exe /I{68243FF8-83CA-466B-B2B8-9F99DA5479C4}
AdobeColorCommonSetRGB-->MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
Agere Systems HDA Modem-->agrsmdel
Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Assistant de connexion Windows Live ID-->MsiExec.exe /X{10A44844-4465-456E-8C97-80BDD4F68845}
Atheros WLAN Client-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{04983D37-2202-4295-94A2-8B547C66133F}\setup.exe" -l0x9
avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
BatteryLifeExtender-->MsiExec.exe /I{AA16A9E5-40E9-44F5-801E-6B3D3CFE79E5}
BlazeDTV 4.0-->"C:\Program Files\BlazeVideo\BlazeDTV 4.0\unins000.exe"
BlazeDTV 6.0-->"C:\Program Files\BlazeVideo\BlazeDTV 6.0\unins000.exe"
Blender (remove only)-->"D:\Programmes\Blender Foundation\Blender\uninstall.exe"
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Call of Duty Modern Warfare 2-->"D:\Programmes\Call of Duty - Modern Warafare 2\unins000.exe"
CamStudio-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{EB371786-9449-4ED8-B47A-032467A58CAD} anything\anything
Catalyst Control Center - Branding-->MsiExec.exe /I{B6D8DC8C-F077-4631-A221-4D5E1D8E87E7}
Codeur Windows Media Série 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Connect-->MsiExec.exe /I{B29AD377-CC12-490A-A480-1452337C618D}
Corel VideoStudio 12-->C:\Program Files\InstallShield Installation Information\{F0FDF9C9-1DDC-401F-B638-36F1CAE8A875}\setup.exe -runfromtemp -l0x0409
Correctif pour Microsoft Visual Web Developer 2008 Express SP1 - Français (KB945282)-->C:\Windows\system32\msiexec.exe /package {6D4DC771-31B4-3788-8E1A-16BA27C06D15} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Web Developer 2008 Express SP1 - Français (KB946040)-->C:\Windows\system32\msiexec.exe /package {6D4DC771-31B4-3788-8E1A-16BA27C06D15} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Web Developer 2008 Express SP1 - Français (KB946308)-->C:\Windows\system32\msiexec.exe /package {6D4DC771-31B4-3788-8E1A-16BA27C06D15} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Web Developer 2008 Express SP1 - Français (KB946344)-->C:\Windows\system32\msiexec.exe /package {6D4DC771-31B4-3788-8E1A-16BA27C06D15} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Web Developer 2008 Express SP1 - Français (KB946581)-->C:\Windows\system32\msiexec.exe /package {6D4DC771-31B4-3788-8E1A-16BA27C06D15} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Web Developer 2008 Express SP1 - Français (KB947540)-->C:\Windows\system32\msiexec.exe /package {6D4DC771-31B4-3788-8E1A-16BA27C06D15} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Web Developer 2008 Express SP1 - Français (KB947789)-->C:\Windows\system32\msiexec.exe /package {6D4DC771-31B4-3788-8E1A-16BA27C06D15} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual Web Developer 2008 Express SP1 - Français (KB951708)-->C:\Windows\system32\msiexec.exe /package {6D4DC771-31B4-3788-8E1A-16BA27C06D15} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual C++ 2008 Express SP1 - Français (KB945282)-->C:\Windows\system32\msiexec.exe /package {4C3FF4F7-6033-3129-8D21-9FC8C8B82D65} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual C++ 2008 Express SP1 - Français (KB946040)-->C:\Windows\system32\msiexec.exe /package {4C3FF4F7-6033-3129-8D21-9FC8C8B82D65} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual C++ 2008 Express SP1 - Français (KB946308)-->C:\Windows\system32\msiexec.exe /package {4C3FF4F7-6033-3129-8D21-9FC8C8B82D65} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual C++ 2008 Express SP1 - Français (KB947540)-->C:\Windows\system32\msiexec.exe /package {4C3FF4F7-6033-3129-8D21-9FC8C8B82D65} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual C++ 2008 Express SP1 - Français (KB947789)-->C:\Windows\system32\msiexec.exe /package {4C3FF4F7-6033-3129-8D21-9FC8C8B82D65} /uninstall /qb+ REBOOTPROMPT=""
Correctif pour Microsoft Visual C++ 2008 Express SP1 - Français (KB948127)-->C:\Windows\system32\msiexec.exe /package {4C3FF4F7-6033-3129-8D21-9FC8C8B82D65} /uninstall /qb+ REBOOTPROMPT=""
CyberLink YouCam-->"C:\Program Files\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
CyberLink YouCam-->"C:\Program Files\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe
DebugMode Wink-->"C:\Program Files\DebugMode\Wink\uninst.exe"
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
EA Download Manager-->C:\Program Files\Electronic Arts\EADM\Uninstall.exe
Easy Battery Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6F730513-8688-4C3C-90A3-6B9792CE2EF3}\setup.exe" -l0x9 Remove
Easy Display Manager-->"C:\Program Files\InstallShield Installation Information\{17283B95-21A8-4996-97DA-547A48DB266F}\setup.exe" -runfromtemp -l0x0009 -removeonly
Easy Network Manager-->MsiExec.exe /I{A7581D39-EA20-4883-A480-80C21047052B}
Easy SpeedUp Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EF367AA4-070B-493C-9575-85BE59D789C9}\setup.exe" -l0x9 Remove
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Favorit-->c:\users\simon\appdata\local\ujafbixm.bat
ffdshow [rev 3178] [2010-01-03]-->"C:\Program Files\K-Lite Codec Pack\ffdshow\unins000.exe"
Fichiers de prise en charge de l'installation de Microsoft SQL Server (Français)-->MsiExec.exe /X{3380F354-C5F7-4E71-8F51-EEE6C3F06C62}
FontLab Studio 5-->"D:\Programmes\FontLab\Uninstall.exe" "D:\Programmes\FontLab\install.log" -u
Fraps (remove only)-->"C:\Fraps\uninstall.exe"
GDR 4053 for SQL Server Database Services 2005 ENU (KB970892)-->C:\Windows\SQL9_KB970892_ENU\Hotfix.exe /Uninstall
Gestionnaire de contacts professionnels pour Outlook 2007 SP2-->"C:\Program Files\Microsoft Small Business\Business Contact Manager\SetupBootstrap\Setup.exe" /remove {69ca8988-1c6c-4285-b8af-db780a6e42af}
Gestionnaire de contacts professionnels pour Outlook 2007 SP2-->MsiExec.exe /X{69CA8988-1C6C-4285-B8AF-DB780A6E42AF}
GIMP 2.6.7-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_E85CDE7661A53A6A.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{2EAF7E61-068E-11DF-953C-005056806466}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
imagine digital freedom - Samsung-->MsiExec.exe /X{8E106A57-A17E-431D-B48F-175E42EB9F74}
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
Intel PROSet Wireless-->Intel PROSet Wireless
Intel® Matrix Storage Manager-->C:\Program Files\Intel\Intel Matrix Storage Manager\Uninstall\imsmudlg.exe -uninstall
Internet Download Manager-->D:\Programmes\Internet Download Manager\Uninstall.exe
iTunes-->MsiExec.exe /I{D1A74FBB-CA8D-4CCA-9B89-BAAA436DB178}
Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216017FF}
K-Lite Mega Codec Pack 5.1.0-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
kuler-->MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243}
Les Sims™ 3-->"C:\Program Files\InstallShield Installation Information\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\Sims3Setup.exe" -runfromtemp -l0x040c -removeonly
LimeWire 5.4.8-->"C:\Program Files\LimeWire\uninstall.exe"
ManyCam 2.4 (remove only)-->"D:\Programmes\ManyCam 2.4\uninstall.exe"
Marvell Miniport Driver-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
MaxTV-->"C:\Windows\MaxTV\uninstall_maxtv.exe" "/U:C:\Program Files\DMV\MaxTV4\Uninstall\MaxTV\uninstall_maxtv.xml"
Mega Manager-->C:\Program Files\InstallShield Installation Information\{3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2}\setup.exe -runfromtemp -l0x0009 -removeonly
Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Age of Empires II : The Conquerors Expansion-->"C:\Program Files\Microsoft Games\Age of Empires II\\UNINSTALX.EXE" /runtemp /addremove
Microsoft Age of Empires II-->"C:\Program Files\Microsoft Games\Age of Empires II\UNINSTAL.EXE" /runtemp /uninstall
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{A1C962E2-2426-49C6-A38B-9A07E40D607C}
Microsoft Office 2003 Web Components-->MsiExec.exe /I{90A4040C-6000-11D3-8CFE-0150048383C9}
Microsoft Office 2007 Primary Interop Assemblies-->MsiExec.exe /X{50120000-1105-0000-0000-0000000FF1CE}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Live Add-in 1.4-->MsiExec.exe /I{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Hybrid 2007-->MsiExec.exe /X{91120000-0031-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {14809F99-C601-4D4A-9391-F1E8FAA964C5}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0021-040C-0000-0000000FF1CE} /uninstall {CCDA3DD6-E33D-4D75-B7C9-FF585580CE83}
Microsoft Office Small Business Connectivity Components-->MsiExec.exe /X{A939D341-5A04-4E0A-BB55-3E65B386432D}
Microsoft Office Suite Activation Assistant-->MsiExec.exe /X{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
Microsoft Office Visual Web Developer 2007-->MsiExec.exe /X{90120000-0021-0000-0000-0000000FF1CE}
Microsoft Office Visual Web Developer MUI (French) 2007-->MsiExec.exe /X{90120000-0021-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Pinball Arcade Trial-->"C:\Program Files\Microsoft Games\Pinball Arcade Trial\UNINSTAL.EXE" /runtemp
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)-->MsiExec.exe /I{480DBB60-F0B6-45F2-B26F-1A2E11197791}
Microsoft SQL Server 2005-->"C:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
Microsoft SQL Server 2008 Management Objects-->MsiExec.exe /I{F5E87B12-3C27-452F-8E78-21D42164FD83}
Microsoft SQL Server Database Publishing Wizard 1.3-->MsiExec.exe /I{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}
Microsoft SQL Server Native Client-->MsiExec.exe /I{1F24E48F-7692-4E89-8784-68DD4D2712A0}
Microsoft SQL Server VSS Writer-->MsiExec.exe /I{A30179B7-997A-4D47-AA43-57AE59A9C78B}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Express Edition with SP1 - FRA-->MsiExec.exe /X{4C3FF4F7-6033-3129-8D21-9FC8C8B82D65}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}
Microsoft Visual Studio Web Authoring Component-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall VISUALWEBDEVELOPER /dll OSETUP.DLL
Microsoft Visual Web Developer 2008 Express Edition with SP1 - FRA-->MsiExec.exe /X{6D4DC771-31B4-3788-8E1A-16BA27C06D15}
Microsoft Visual Web Developer 2008 Express SP1 - Français-->C:\Program Files\Microsoft Visual Studio 9.0\Microsoft Visual Web Developer 2008 Express Edition with SP1 - FRA\setup.exe
Microsoft Visual C++ 2008 Express SP1 - Français-->C:\Program Files\Microsoft Visual Studio 9.0\Microsoft Visual C++ 2008 Express Edition with SP1 - FRA\setup.exe
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries-->MsiExec.exe /X{842FAF7C-50EF-4463-9B8F-6222E1384D7D}
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - fra-->MsiExec.exe /X{484AB636-ADBC-3A85-AB82-41873BDD1083}
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Web - fra-->MsiExec.exe /X{8F7E535A-DB51-30B5-A482-F087A718ACBE}
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32-->MsiExec.exe /X{044F9133-B8D7-4d11-BF39-803FA20F5C8B}
Microsoft WSE 3.0 Runtime-->MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13}
Mise à jour Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {B761869A-B85C-40E2-994C-A1CE78AC8F2C}
Mise à jour Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {51EFB347-1F3D-4BAC-8B79-F056B904FE21}
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {C3DCA38E-005E-41BA-A52A-7C3429F351C3}
Mise à jour Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {81536A04-DBFB-4DB3-978F-0F284590C223}
Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->C:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
Mozilla Firefox (3.6)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
Namuga 1.3M Webcam-->C:\Program Files\InstallShield Installation Information\{71A51B59-E7D3-11DB-A386-005056C00008}\setup.exe -runfromtemp -l0x0009 -removeonly
Net Orbit 2.0-->"C:\Program Files\NO2Admin\unins000.exe"
NVIDIA PhysX-->MsiExec.exe /X{8AAB4176-A747-493A-A42C-B63CFADFD8E3}
Odebit Multimédia V3.3-->"C:\Program Files\Odebit Multimédia\V3.3\unins000.exe"
Online Video Hunter Professional v 2.4.0.0-->"D:\Programmes\Gskstudio\Online Video Hunter Professional\unins000.exe"
OpenAL-->"C:\Program Files\OpenAL\oalinst.exe" /U
OpenOffice.org 3.1-->MsiExec.exe /I{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}
Orange WebTV Player 1.28971-->"C:\Program Files\Orange\Orange WebTV Player\unins000.exe"
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PCTroubleshooting-->MsiExec.exe /I{68CAE442-579C-4D84-AA5F-253852522ED5}
PDF Settings CS4-->MsiExec.exe /I{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}
Photoshop Camera Raw-->MsiExec.exe /I{CC75AB5C-2110-4A7F-AF52-708680D22FE8}
Pinnacle Instant DVD Recorder-->MsiExec.exe /X{C1212AE3-DBB9-4365-8473-F8ABC7B06BBB}
QuickTime-->MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}
Readon TV Movie Radio Player 5.5.5.0-->MsiExec.exe /I{0FD95BFA-44E8-4AD5-954E-3407ADD55B06}
Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd.exe -r -m -nrg2709
REALTEK Wireless LAN Software-->C:\Program Files\InstallShield Installation Information\{6A1F72DD-2465-43A2-A137-8A849399B7A8}\Install.exe -uninst -l0x40C
Samsung Magic Doctor-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32D6A58F-9659-446C-BBFC-E6F2B41F24DC}\Setup.exe" -l0x9 Remove
Samsung Recovery Solution III-->"C:\Program Files\InstallShield Installation Information\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}\setup.exe" -runfromtemp -l0x040c -removeonly
Samsung Update Plus-->"C:\Program Files\InstallShield Installation Information\{A5F483F0-2D79-4FCA-AE09-D0D96E23EBF7}\Setup.exe" -runfromtemp -l0x0409 -removeonly
Samsung Update Plus-->MsiExec.exe /X{A5F483F0-2D79-4FCA-AE09-D0D96E23EBF7}
Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {90120000-0021-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0021-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB973704)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {E626DC89-A787-4553-9BB3-DC2EC7E1593F}
Security Update for Microsoft Office Excel 2007 (KB973593)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {7D6255E3-3423-4D8B-A328-F6F8D28DD5FE}
Security Update for Microsoft Office Outlook 2007 (KB972363)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {120BE9A0-9B09-4855-9E0C-7DEE45CB03C0}
Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
Security Update for Microsoft Office Publisher 2007 (KB969693)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {7BE67088-1EB3-4569-8E75-DDAFBF61BC4E}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {90120000-0021-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {90120000-0021-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Shattered Horizon-->"D:\Program Files\Steam\steam.exe" steam://uninstall/18110
Spelling Dictionaries Support For Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-900000000004}
SQL Server System CLR Types-->MsiExec.exe /I{342D4AD7-EC4C-4EC8-AEA6-E70F5905A490}
Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Suite Shared Configuration CS4-->MsiExec.exe /I{842B4B72-9E8F-4962-B3C1-1C422A5C4434}
Sun VirtualBox-->MsiExec.exe /I{53FED732-39DF-4973-85CD-854115455007}
SureThing Express Labeler-->"C:\Program Files\SureThing Express Labeler\unins000.exe"
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
The KMPlayer v2.9.4.1434 FR-->"C:\Program Files\The KMPlayer FR\unins000.exe"
TmNationsForever-->"D:\Programmes\TmNationsForever\unins000.exe"
TV sur PC-->C:\Program Files\SFR\TV_PC\uninstall.exe
UltraVNC v1.0.1 Fr-->"D:\Programmes\UltraVNC\unins000.exe"
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0021-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft Office InfoPath 2007 (KB976416)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {432C5EE4-8096-4FF1-95E1-65219365DFF7}
Update for Microsoft Office Word 2007 (KB974561)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {0CDDBAA2-2111-4A0E-A1B0-76C40C635331}
Update for Microsoft Visual Studio Web Authoring Component (KB945140)-->msiexec /package {90120000-0021-0000-0000-0000000FF1CE} /uninstall {F9DE79A2-9049-4589-9787-815147371581}
Update for Outlook 2007 Junk Email Filter (kb977719)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {C0C92202-5215-4EFA-B0B9-B3A0DEABCDF1}
User Guide-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}\setup.exe" -l0x9 Remove
VC80CRTRedist - 8.0.50727.762-->MsiExec.exe /I{767CC44C-9BBC-438D-BAD3-FD4595DD148B}
VideoLAN VLC media player 0.8.6b-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Virtual DJ - Atomix Productions-->D:\PROGRA~1\VIRTUA~2\UNWISE.EXE D:\PROGRA~1\VIRTUA~2\INSTALL.LOG
Wanted: Les armes du destin-->"C:\Program Files\InstallShield Installation Information\{9312191B-30A5-44E1-8D8D-6936FE06CDE8}\setup.exe" -runfromtemp -l0x040c -removeonly
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{ED00D08A-3C5F-488D-93A0-A04F21F23956}
Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
Wizards of Waverly Place The Movie Screen Saver-->C:\Windows\system32\Wizards of Waverly Place The Movie.scr /u
Zero Gear Demo-->"D:\Program Files\Steam\steam.exe" steam://uninstall/18800

======Security center information======

AS: Windows Defender

======System event log======

Computer Name: PC-de-Simon
Event Code: 51
Message: Une erreur a été détectée sur le périphérique \Device\CdRom0 lors d'une opération de pagination.
Record Number: 70642
Source Name: cdrom
Time Written: 20091201180817.520173-000
Event Type: Avertissement
User:

Computer Name: PC-de-Simon
Event Code: 51
Message: Une erreur a été détectée sur le périphérique \Device\CdRom0 lors d'une opération de pagination.
Record Number: 70641
Source Name: cdrom
Time Written: 20091201180817.474173-000
Event Type: Avertissement
User:

Computer Name: PC-de-Simon
Event Code: 51
Message: Une erreur a été détectée sur le périphérique \Device\CdRom0 lors d'une opération de pagination.
Record Number: 70640
Source Name: cdrom
Time Written: 20091201180817.428173-000
Event Type: Avertissement
User:

Computer Name: PC-de-Simon
Event Code: 51
Message: Une erreur a été détectée sur le périphérique \Device\CdRom0 lors d'une opération de pagination.
Record Number: 70639
Source Name: cdrom
Time Written: 20091201180817.381173-000
Event Type: Avertissement
User:

Computer Name: PC-de-Simon
Event Code: 7026
Message: Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger :
sfdrv01
sfvfs02
Record Number: 70603
Source Name: Service Control Manager
Time Written: 20091201180014.000000-000
Event Type: Erreur
User:

0
Réponse 29 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Seconde partie du 2e post (désolé pour la coupure)

=====Security event log=====

Computer Name: PC-de-Simon
Event Code: 4608
Message: Windows démarre.

Cet événement est journalisé lorsque LSASS.EXE démarre et que le sous-système d’audit est initialisé.
Record Number: 4974
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091017170921.894111-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Simon
Event Code: 4634
Message: Fermeture de session d’un compte.

Sujet :
ID de sécurité : S-1-5-7
Nom du compte : ANONYMOUS LOGON
Domaine du compte : AUTORITE NT
ID du compte : 0x24540

Type d’ouverture de session : 3

Cet événement est généré lorsqu’une session ouverte est supprimée. Il peut être associé à un événement d’ouverture de session en utilisant la valeur ID d’ouverture de session. Les ID d’ouverture de session ne sont uniques qu’entre les redémarrages sur un même ordinateur.
Record Number: 4973
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091017170714.417200-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Simon
Event Code: 4616
Message: L’heure du système a été modifiée.

Sujet :
ID de sécurité : S-1-5-19
Nom du compte : SERVICE LOCAL
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e5

Informations sur le processus :
ID du processus : 0x53c
Nom : C:\Windows\System32\svchost.exe

Heure précédente : 19:07:13 17/10/2009
Nouvelle heure : 19:07:13 17/10/2009

Cet événement est généré lorsque l’heure du système est modifiée. Le changement régulier de l’heure du système est une opération normale de la part du service de temps Windows qui s’exécute avec des privilèges système. Mais, d’autres modifications de l’heure du système peuvent indiquer des tentatives de falsification de l’ordinateur.
Record Number: 4972
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091017170713.777600-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Simon
Event Code: 1100
Message: Le service d’enregistrement des événements a été arrêté.
Record Number: 4971
Source Name: Microsoft-Windows-Eventlog
Time Written: 20091017170714.074000-000
Event Type: Succès de l'audit
User:

Computer Name: PC-de-Simon
Event Code: 4647
Message: Fermeture de session initiée par l’utilisateur :

Sujet :
ID de sécurité : S-1-5-21-1228387082-1587413325-2831801477-1003
Nom du compte : Simon
Domaine du compte : PC-de-Simon
ID d’ouverture de session : 0x27d20

Cet événement est généré lorsqu’une fermeture de session est initiée, mais que le nombre de références du jeton n’étant pas zéro, la session ouverte ne peut pas être supprimée. Aucune autre activité initiée par l’utilisateur ne peut se produire. Cet événement peut être interprété comme un événement de fermeture de session.
Record Number: 4970
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20091017170712.327200-000
Event Type: Succès de l'audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%COMMONPROGRAMFILES%\MICROSOFT SHARED\WINDOWS LIVE;C:\WINDOWS\SYSTEM32;C:\WINDOWS;C:\WINDOWS\SYSTEM32\WBEM;C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC;C:\PROGRAM FILES\MICROSOFT SQL SERVER\90\TOOLS\BINN\C:\PROGRAM FILES\DMV\MAXTV4\PLUGINS;C:\PROGRAM FILES\COMMON FILES\ULEAD SYSTEMS\MPEG;D:\Programmes\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
"NUMBER_OF_PROCESSORS"=2
"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
"DFSTRACINGON"=FALSE
"VS90COMNTOOLS"=C:\Program Files\Microsoft Visual Studio 9.0\Common7\Tools\
"VBOX_INSTALL_PATH"=D:\Programmes\VirtualBox\
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------
0
Réponse 30 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Quelqu'un pour m'aider ?
0
Réponse 31 / 37
vanweereld Messages postés 440 Date d'inscription   Statut Membre Dernière intervention   23
 
Désolé mais moi je ne sais pas lire les rapports (j'ai encore jamais lu un rapport hjjacktis)
0
Réponse 32 / 37
Utilisateur anonyme
 
Bonsoir,

Plusieurs infections...

Impératif sous vista:
desactives tes comptes d'utilisateur:
https://www.zebulon.fr/astuces/pratique/220-desactiver-l-uac-dans-vista.html

Puis :

---> Télécharge ComboFix.exe de sUBs sur ton Bureau :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

/!\ Déconnecte-toi du net et ferme toutes les applications, antivirus et antispyware y compris /!\

---> Double-clique sur Combofix.exe
Un "pop-up" va apparaître qui dit que "ComboFix est utilisé à vos risques et avec aucune garantie...".
Accepte en cliquant sur "Oui"

---> Mets-le en langue française F
Tape sur la touche 1 (Yes) pour démarrer le scan.

/!\ Ne touche à rien tant que le scan n'est pas terminé. /!\

En fin de scan, il est possible que ComboFix ait besoin de redémarrer le PC pour finaliser la désinfection, laisse-le faire.

Une fois le scan achevé, un rapport va s'afficher : Poste son contenu

/!\ Réactive la protection en temps réel de ton antivirus et de ton antispyware avant de te reconnecter à Internet. /!\

Note : Le rapport se trouve également là : C:\ComboFix.txt

a+
0
Réponse 33 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Je test et je vous tiens au courant
0
Réponse 34 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Voila le rapport de ComboFix

ComboFix 10-02-26.01 - Simon 26/02/2010 22:56:31.1.2 - x86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3036.1981 [GMT 1:00]
Lancé depuis: c:\users\Simon\Desktop\ComboFix.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-1228387082-1587413325-2831801477-500
c:\program files\temp
c:\program files\Windows User
c:\program files\Windows User\Clipboard - Simon@PC-DE-SIMON.txt
c:\program files\Windows User\dive res - Simon@PC-DE-SIMON.txt
c:\program files\Windows User\dwm.ini
c:\program files\Windows User\logeristry.txt
c:\program files\Windows User\Simon@PC-DE-SIMON - Logeristry.txt
c:\program files\Windows User\Simon@PC-DE-SIMON.txt
c:\program files\Windows User\todo.txt
c:\program files\Windows User\ver.txt
c:\program files\Windows User\winlogon.exe
c:\users\Simon\AppData\Local\daczhea.dat
c:\users\Simon\AppData\Local\daczhea_nav.dat
c:\users\Simon\AppData\Local\daczhea_navps.dat
c:\windows\msetup
c:\windows\msetup\BASW-01178A23\Autorun.inf
c:\windows\msetup\BASW-01178A23\btw.ico
c:\windows\msetup\BASW-01178A23\Custom\CustomBr.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomCs.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomCt.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomDa.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomDu.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomEn.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomFi.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomFr.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomGr.ctm
c:\windows\msetup\BASW-01178A23\Custom\customid.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomIt.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomJp.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomKo.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomNo.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomPo.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomRu.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomSp.ctm
c:\windows\msetup\BASW-01178A23\Custom\CustomSw.ctm
c:\windows\msetup\BASW-01178A23\license.dat
c:\windows\msetup\BASW-01178A23\Setup.exe
c:\windows\msetup\BASW-01178A23\SWDesc.txt
c:\windows\msetup\BASW-01178A23\Win32\0x0404.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0406.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0407.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0409.ini
c:\windows\msetup\BASW-01178A23\Win32\0x040a.ini
c:\windows\msetup\BASW-01178A23\Win32\0x040b.ini
c:\windows\msetup\BASW-01178A23\Win32\0x040c.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0410.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0411.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0412.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0413.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0414.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0415.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0416.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0419.ini
c:\windows\msetup\BASW-01178A23\Win32\0x041d.ini
c:\windows\msetup\BASW-01178A23\Win32\0x0804.ini
c:\windows\msetup\BASW-01178A23\Win32\1028.mst
c:\windows\msetup\BASW-01178A23\Win32\1030.mst
c:\windows\msetup\BASW-01178A23\Win32\1031.mst
c:\windows\msetup\BASW-01178A23\Win32\1033.mst
c:\windows\msetup\BASW-01178A23\Win32\1034.mst
c:\windows\msetup\BASW-01178A23\Win32\1035.mst
c:\windows\msetup\BASW-01178A23\Win32\1036.mst
c:\windows\msetup\BASW-01178A23\Win32\1040.mst
c:\windows\msetup\BASW-01178A23\Win32\1041.mst
c:\windows\msetup\BASW-01178A23\Win32\1042.mst
c:\windows\msetup\BASW-01178A23\Win32\1043.mst
c:\windows\msetup\BASW-01178A23\Win32\1044.mst
c:\windows\msetup\BASW-01178A23\Win32\1045.mst
c:\windows\msetup\BASW-01178A23\Win32\1046.mst
c:\windows\msetup\BASW-01178A23\Win32\1049.mst
c:\windows\msetup\BASW-01178A23\Win32\1053.mst
c:\windows\msetup\BASW-01178A23\Win32\2052.mst
c:\windows\msetup\BASW-01178A23\Win32\BBalloon.dll
c:\windows\msetup\BASW-01178A23\Win32\brcm\bcbthid32.cat
c:\windows\msetup\BASW-01178A23\Win32\brcm\bcbthid32.inf
c:\windows\msetup\BASW-01178A23\Win32\brcm\bcbtums-vista32-brcm.cat
c:\windows\msetup\BASW-01178A23\Win32\brcm\Bcbtums-vista32-brcm.inf
c:\windows\msetup\BASW-01178A23\Win32\brcm\DPInst.exe
c:\windows\msetup\BASW-01178A23\Win32\BtSetup.dll
c:\windows\msetup\BASW-01178A23\Win32\BTW.msi
c:\windows\msetup\BASW-01178A23\Win32\btw_ci.dll
c:\windows\msetup\BASW-01178A23\Win32\btwaudio.cat
c:\windows\msetup\BASW-01178A23\Win32\btwaudio.inf
c:\windows\msetup\BASW-01178A23\Win32\btwaudio.sys
c:\windows\msetup\BASW-01178A23\Win32\btwavdt.cat
c:\windows\msetup\BASW-01178A23\Win32\btwavdt.inf
c:\windows\msetup\BASW-01178A23\Win32\btwavdt.sys
c:\windows\msetup\BASW-01178A23\Win32\btwl2cap.cat
c:\windows\msetup\BASW-01178A23\Win32\btwl2cap.inf
c:\windows\msetup\BASW-01178A23\Win32\BTWL2CAP.sys
c:\windows\msetup\BASW-01178A23\Win32\BtwMM.exe
c:\windows\msetup\BASW-01178A23\Win32\btwprofpack.dll
c:\windows\msetup\BASW-01178A23\Win32\btwrchid.cat
c:\windows\msetup\BASW-01178A23\Win32\btwrchid.inf
c:\windows\msetup\BASW-01178A23\Win32\btwrchid.sys
c:\windows\msetup\BASW-01178A23\Win32\BtwRSupport.dll
c:\windows\msetup\BASW-01178A23\Win32\Data1.cab
c:\windows\msetup\BASW-01178A23\Win32\Inst.exe
c:\windows\msetup\BASW-01178A23\Win32\instmsia.exe
c:\windows\msetup\BASW-01178A23\Win32\instmsiw.exe
c:\windows\msetup\BASW-01178A23\Win32\Setup.exe
c:\windows\msetup\BASW-01178A23\Win32\Setup.ini
c:\windows\msetup\BASW-01178A23\Win32\svcpack\SvcPack.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0404.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0406.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0407.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0409.ini
c:\windows\msetup\BASW-01178A23\Win64\0x040a.ini
c:\windows\msetup\BASW-01178A23\Win64\0x040b.ini
c:\windows\msetup\BASW-01178A23\Win64\0x040c.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0410.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0411.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0412.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0413.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0414.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0415.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0416.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0419.ini
c:\windows\msetup\BASW-01178A23\Win64\0x041d.ini
c:\windows\msetup\BASW-01178A23\Win64\0x0804.ini
c:\windows\msetup\BASW-01178A23\Win64\1028.mst
c:\windows\msetup\BASW-01178A23\Win64\1030.mst
c:\windows\msetup\BASW-01178A23\Win64\1031.mst
c:\windows\msetup\BASW-01178A23\Win64\1033.mst
c:\windows\msetup\BASW-01178A23\Win64\1034.mst
c:\windows\msetup\BASW-01178A23\Win64\1035.mst
c:\windows\msetup\BASW-01178A23\Win64\1036.mst
c:\windows\msetup\BASW-01178A23\Win64\1040.mst
c:\windows\msetup\BASW-01178A23\Win64\1041.mst
c:\windows\msetup\BASW-01178A23\Win64\1042.mst
c:\windows\msetup\BASW-01178A23\Win64\1043.mst
c:\windows\msetup\BASW-01178A23\Win64\1044.mst
c:\windows\msetup\BASW-01178A23\Win64\1045.mst
c:\windows\msetup\BASW-01178A23\Win64\1046.mst
c:\windows\msetup\BASW-01178A23\Win64\1049.mst
c:\windows\msetup\BASW-01178A23\Win64\1053.mst
c:\windows\msetup\BASW-01178A23\Win64\2052.mst
c:\windows\msetup\BASW-01178A23\Win64\BBalloon.dll
c:\windows\msetup\BASW-01178A23\Win64\brcm\bcbthid64.cat
c:\windows\msetup\BASW-01178A23\Win64\brcm\bcbthid64.inf
c:\windows\msetup\BASW-01178A23\Win64\brcm\bcbtums-vista64-brcm.cat
c:\windows\msetup\BASW-01178A23\Win64\brcm\Bcbtums-vista64-brcm.inf
c:\windows\msetup\BASW-01178A23\Win64\brcm\DPInst.exe
c:\windows\msetup\BASW-01178A23\Win64\BtSetup.dll
c:\windows\msetup\BASW-01178A23\Win64\BTW.msi
c:\windows\msetup\BASW-01178A23\Win64\btw_ci.dll
c:\windows\msetup\BASW-01178A23\Win64\btwaudio.inf
c:\windows\msetup\BASW-01178A23\Win64\btwaudio.sys
c:\windows\msetup\BASW-01178A23\Win64\btwaudio64.cat
c:\windows\msetup\BASW-01178A23\Win64\btwavdt.inf
c:\windows\msetup\BASW-01178A23\Win64\btwavdt.sys
c:\windows\msetup\BASW-01178A23\Win64\btwavdt64.cat
c:\windows\msetup\BASW-01178A23\Win64\btwl2cap.inf
c:\windows\msetup\BASW-01178A23\Win64\BTWL2CAP.sys
c:\windows\msetup\BASW-01178A23\Win64\btwl2cap64.cat
c:\windows\msetup\BASW-01178A23\Win64\BtwMM.exe
c:\windows\msetup\BASW-01178A23\Win64\btwprofpack.dll
c:\windows\msetup\BASW-01178A23\Win64\btwrchid.inf
c:\windows\msetup\BASW-01178A23\Win64\btwrchid.sys
c:\windows\msetup\BASW-01178A23\Win64\btwrchid64.cat
c:\windows\msetup\BASW-01178A23\Win64\BtwRSupport.dll
c:\windows\msetup\BASW-01178A23\Win64\Data1.cab
c:\windows\msetup\BASW-01178A23\Win64\Inst.exe
c:\windows\msetup\BASW-01178A23\Win64\instmsia.exe
c:\windows\msetup\BASW-01178A23\Win64\instmsiw.exe
c:\windows\msetup\BASW-01178A23\Win64\Setup.exe
c:\windows\msetup\BASW-01178A23\Win64\Setup.ini
c:\windows\msetup\BASW-01178A23\Win64\svcpack\SvcPack.ini
c:\windows\msetup\BASW-01210A13\0x0404.ini
c:\windows\msetup\BASW-01210A13\0x0407.ini
c:\windows\msetup\BASW-01210A13\0x0409.ini
c:\windows\msetup\BASW-01210A13\0x040a.ini
c:\windows\msetup\BASW-01210A13\0x040c.ini
c:\windows\msetup\BASW-01210A13\0x0410.ini
c:\windows\msetup\BASW-01210A13\0x0411.ini
c:\windows\msetup\BASW-01210A13\0x0412.ini
c:\windows\msetup\BASW-01210A13\0x0804.ini
c:\windows\msetup\BASW-01210A13\1028.mst
c:\windows\msetup\BASW-01210A13\1031.mst
c:\windows\msetup\BASW-01210A13\1033.mst
c:\windows\msetup\BASW-01210A13\1034.mst
c:\windows\msetup\BASW-01210A13\1036.mst
c:\windows\msetup\BASW-01210A13\1040.mst
c:\windows\msetup\BASW-01210A13\1041.mst
c:\windows\msetup\BASW-01210A13\1042.mst
c:\windows\msetup\BASW-01210A13\2052.mst
c:\windows\msetup\BASW-01210A13\Autorun.inf
c:\windows\msetup\BASW-01210A13\Chain_Install.exe
c:\windows\msetup\BASW-01210A13\Chain_Install.ini
c:\windows\msetup\BASW-01210A13\CPUlist.ini
c:\windows\msetup\BASW-01210A13\Custom.ini
c:\windows\msetup\BASW-01210A13\Cyberlink.MD5
c:\windows\msetup\BASW-01210A13\Data1.cab
c:\windows\msetup\BASW-01210A13\Default.reg
c:\windows\msetup\BASW-01210A13\Default_DE.reg
c:\windows\msetup\BASW-01210A13\Define.ini
c:\windows\msetup\BASW-01210A13\DeviceList.ini
c:\windows\msetup\BASW-01210A13\info.ini
c:\windows\msetup\BASW-01210A13\ISSetup.dll
c:\windows\msetup\BASW-01210A13\Product.ini
c:\windows\msetup\BASW-01210A13\setup.exe
c:\windows\msetup\BASW-01210A13\Setup.ini
c:\windows\msetup\BASW-01210A13\setup.isn
c:\windows\msetup\BASW-01210A13\setup.iss
c:\windows\msetup\BASW-01210A13\SetUvcFlags.exe
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\conversionProfile_PiP.xml
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\EffectExtractor.exe
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\ara\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\chs\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\cht\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\csy\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\dan\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\deu\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\ell\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\eng\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\enu\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\esp\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\fin\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\fra\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\heb\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\hun\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\ita\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\jpn\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\kor\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\nld\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\nor\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\plk\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\ptb\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\ptg\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\rus\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\sky\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\sve\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\ShareFiles\Share\language\trk\EffectExtractor.dll
c:\windows\msetup\BASW-01210A13\SKUtil.dll
c:\windows\msetup\BASW-01210A13\SWDesc.txt
c:\windows\msetup\BASW-01210A13\uninstall.iss
c:\windows\msetup\BASW-01210A13\ureg.ini
c:\windows\msetup\BASW-01210A13\WebcamChecker.dll
c:\windows\msetup\BASW-01210A13\WMFDist.exe
c:\windows\msetup\BASW-01210A13\YouCam.exe
c:\windows\msetup\BASW-01210A13\YouCam.ico
c:\windows\msetup\BASW-01210A13\YouCam.msi
c:\windows\msetup\MSetup.exe
c:\windows\msetup\MSetupLog.log
c:\windows\system32\Ijl11.dll
c:\windows\system32\systeminfo.dll
c:\windows\UA000106.DLL
D:\install.exe

.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_NPF
-------\Service_NPF

((((((((((((((((((((((((((((( Fichiers créés du 2010-01-26 au 2010-02-26 ))))))))))))))))))))))))))))))))))))
.

2010-02-26 22:08 . 2010-02-26 22:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-02-25 16:46 . 2010-02-25 22:13 -------- d-----w- C:\rsit
2010-02-23 21:20 . 2010-02-12 10:32 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-02-23 18:37 . 2010-01-25 12:00 471552 ----a-w- c:\windows\system32\secproc_isv.dll
2010-02-23 18:37 . 2010-01-25 12:00 471552 ----a-w- c:\windows\system32\secproc.dll
2010-02-23 18:36 . 2010-01-25 08:21 526336 ----a-w- c:\windows\system32\RMActivate_isv.exe
2010-02-23 18:36 . 2010-01-25 08:21 346624 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2010-02-23 18:36 . 2010-01-25 08:21 518144 ----a-w- c:\windows\system32\RMActivate.exe
2010-02-23 18:36 . 2010-01-25 08:21 347136 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2010-02-23 18:36 . 2010-01-25 12:00 152576 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2010-02-23 18:36 . 2010-01-25 12:00 152064 ----a-w- c:\windows\system32\secproc_ssp.dll
2010-02-23 18:36 . 2010-01-25 11:58 332288 ----a-w- c:\windows\system32\msdrm.dll
2010-02-23 18:34 . 2010-01-23 09:26 2048 ----a-w- c:\windows\system32\tzres.dll
2010-02-23 18:33 . 2010-01-06 15:39 1696256 ----a-w- c:\windows\system32\gameux.dll
2010-02-23 18:33 . 2010-01-06 15:38 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2010-02-23 18:33 . 2010-01-06 13:30 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2010-02-21 15:23 . 2010-02-22 02:21 -------- d-----w- c:\users\Simon\AppData\Roaming\DMCache
2010-02-21 15:23 . 2010-02-21 16:03 -------- d-----w- c:\users\Simon\AppData\Roaming\IDM
2010-02-20 22:07 . 2010-02-20 22:07 -------- d--h--w- c:\program files\Common Files\Updates
2010-02-20 17:02 . 2010-02-20 17:02 -------- d-----w- c:\programdata\Alwil Software
2010-02-08 21:26 . 2010-02-08 21:26 -------- d-----w- c:\users\Simon\AppData\Roaming\Blender Foundation
2010-02-07 22:09 . 2010-02-07 22:09 -------- d-----w- c:\programdata\FLEXnet
2010-02-07 22:09 . 2009-02-25 14:10 2826240 ----a-w- c:\windows\system32\amtlib.dll
2010-02-07 20:43 . 2010-02-07 20:43 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-02-07 20:38 . 2010-02-07 20:38 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2010-02-07 17:49 . 2010-02-21 17:22 -------- d-----w- c:\programdata\TrackMania
2010-02-07 13:38 . 2010-02-07 13:40 -------- d-----w- c:\users\Simon\AppData\Roaming\ManyCam
2010-02-03 20:04 . 2010-02-24 16:01 -------- d-----w- C:\Download
2010-02-03 18:28 . 2010-02-03 18:28 -------- d-----w- c:\users\Simon\AppData\Roaming\Apowersoft
2010-01-29 21:14 . 2010-02-25 14:31 -------- d-----w- c:\program files\Common Files\Steam

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-26 22:09 . 2009-06-11 03:09 12 ----a-w- c:\windows\bthservsdp.dat
2010-02-26 17:22 . 2010-01-02 22:07 -------- d-----w- c:\users\Simon\AppData\Roaming\vlc
2010-02-26 16:08 . 2009-10-02 17:22 1 ----a-w- c:\users\Simon\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2010-02-26 01:57 . 2010-01-05 23:26 -------- d-----w- c:\program files\Trend Micro
2010-02-24 12:39 . 2009-09-26 14:08 128240 ----a-w- c:\users\Simon\AppData\Local\GDIPFONTCACHEV1.DAT
2010-02-24 08:16 . 2009-10-21 10:19 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-23 21:32 . 2009-09-26 19:33 -------- d-----w- c:\users\Simon\AppData\Roaming\dvdcss
2010-02-21 22:49 . 2009-06-10 10:03 736660 ----a-w- c:\windows\system32\perfh00C.dat
2010-02-21 22:49 . 2009-06-10 10:03 152138 ----a-w- c:\windows\system32\perfc00C.dat
2010-02-21 20:49 . 2009-09-27 13:29 -------- d-----w- c:\users\Simon\AppData\Roaming\LimeWire
2010-02-21 20:19 . 2009-09-27 11:54 -------- d-----w- c:\program files\LimeWire
2010-02-21 15:30 . 2010-02-21 15:29 3153784 ----a-w- c:\users\Simon\AppData\Roaming\IDM\idmupdt.exe
2010-02-21 15:24 . 2010-02-21 15:24 198064 ----a-w- c:\users\Simon\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll
2010-02-21 11:48 . 2009-10-26 16:24 -------- d-----w- c:\program files\Alwil Software
2010-02-20 22:07 . 2009-06-10 11:13 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-02-18 20:01 . 2009-10-27 15:21 -------- d-----w- c:\users\Simon\AppData\Roaming\gtk-2.0
2010-02-17 14:53 . 2009-10-06 16:53 1356 ----a-w- c:\users\Simon\AppData\Local\d3d9caps.dat
2010-02-16 14:17 . 2009-06-10 12:39 -------- d-----w- c:\programdata\Microsoft Help
2010-02-11 18:53 . 2010-01-05 22:47 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-02-11 18:53 . 2010-01-05 22:46 153184 ----a-w- c:\windows\system32\aswBoot.exe
2010-02-11 18:42 . 2010-01-05 22:47 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-02-11 18:42 . 2010-01-05 22:47 162512 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-02-11 18:39 . 2010-01-05 22:47 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-02-11 18:38 . 2010-01-05 22:46 51792 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2010-02-11 18:38 . 2010-01-05 22:47 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-02-10 13:20 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-02-09 21:32 . 2009-06-10 11:46 -------- d-----w- c:\program files\Google
2010-02-07 20:47 . 2009-06-10 11:24 -------- d-----w- c:\program files\Common Files\Adobe
2010-02-04 20:39 . 2009-12-07 20:40 -------- d-----w- c:\program files\SureThing Express Labeler
2010-02-03 15:43 . 2009-09-26 15:42 -------- d-----w- c:\program files\VideoLAN
2010-01-21 18:09 . 2009-12-20 17:25 -------- d-----w- c:\program files\Microsoft Silverlight
2010-01-16 18:54 . 2009-09-26 18:44 -------- d-----w- c:\programdata\Messenger Plus!
2010-01-16 18:53 . 2009-09-26 17:09 -------- d-----w- c:\program files\Messenger Plus! Live
2010-01-09 23:27 . 2009-12-18 10:25 413696 ----a-w- c:\windows\system32\wrap_oal.dll
2010-01-09 23:27 . 2009-12-18 10:25 110592 ----a-w- c:\windows\system32\OpenAL32.dll
2010-01-07 21:39 . 2010-01-06 21:13 56816 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2010-01-06 20:55 . 2009-12-03 16:20 10238 ----a-w- c:\programdata\BlazeVideo\BlazeDTV 6.0\blazedvd.dll
2010-01-05 22:33 . 2009-09-26 17:23 -------- d-----w- c:\program files\MaxTV4
2010-01-05 22:00 . 2009-09-27 11:56 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-01-03 21:00 . 2009-10-03 19:24 85504 ----a-w- c:\windows\system32\ff_vfw.dll
2010-01-02 06:38 . 2010-02-06 19:01 916480 ----a-w- c:\windows\system32\wininet.dll
2010-01-02 06:32 . 2010-02-06 19:01 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-01-02 06:32 . 2010-02-06 19:01 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-01-02 04:57 . 2010-02-06 19:01 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-12-30 01:06 . 2010-01-05 22:09 2901328 ----a-w- c:\users\Simon\AppData\Roaming\Steam.dll
2009-12-30 01:06 . 2010-01-05 22:09 2901328 ----a-w- c:\users\Simon\AppData\Roaming\Steam.dll
2009-12-25 16:56 . 2009-12-25 16:56 653560 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2009-12-20 15:41 . 2009-10-11 19:45 90 ----a-w- c:\users\Simon\AppData\Local\ujafbixm.bat
2009-12-20 12:01 . 2009-12-20 12:01 93 ----a-w- c:\users\Simon\AppData\Local\fusioncache.dat
2009-12-17 15:02 . 2009-12-17 15:02 1203712 ----a-w- c:\windows\system32\drivers\athr.sys
2009-12-17 14:02 . 2010-01-03 00:13 123280 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2009-12-17 14:02 . 2010-01-03 00:13 41616 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2009-12-17 14:02 . 2009-12-17 14:02 99152 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2009-12-17 14:02 . 2009-12-17 14:02 133648 ----a-w- c:\windows\system32\VBoxNetFltNotify.dll
2009-12-17 14:02 . 2009-12-17 14:02 110096 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2009-12-15 22:26 . 2009-12-15 22:26 7 ----a-w- c:\windows\sbacknt.bin
2009-12-15 22:23 . 2009-12-15 22:23 152904 ----a-w- c:\windows\system32\vghd.scr
2009-12-11 19:01 . 2009-12-03 17:26 13310 ----a-w- c:\programdata\BlazeVideo\BlazeDTV 4.0\blazedvd.dll
2009-12-11 11:43 . 2010-02-10 11:15 302080 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-11 11:43 . 2010-02-10 11:15 98816 ----a-w- c:\windows\system32\drivers\srvnet.sys
2009-12-08 20:01 . 2010-02-10 11:15 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-12-08 20:01 . 2010-02-10 11:15 3600456 ----a-w- c:\windows\system32\ntkrnlpa.exe
2009-12-08 20:01 . 2010-02-10 11:15 3548216 ----a-w- c:\windows\system32\ntoskrnl.exe
2009-12-08 17:26 . 2010-02-10 11:15 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2009-12-04 18:30 . 2010-02-10 11:15 12288 ----a-w- c:\windows\system32\tsbyuv.dll
2009-12-04 18:29 . 2010-02-10 11:15 1314816 ----a-w- c:\windows\system32\quartz.dll
2009-12-04 18:28 . 2010-02-10 11:15 22528 ----a-w- c:\windows\system32\msyuv.dll
2009-12-04 18:28 . 2010-02-10 11:15 31744 ----a-w- c:\windows\system32\msvidc32.dll
2009-12-04 18:28 . 2010-02-10 11:15 123904 ----a-w- c:\windows\system32\msvfw32.dll
2009-12-04 18:28 . 2010-02-10 11:15 13312 ----a-w- c:\windows\system32\msrle32.dll
2009-12-04 18:28 . 2010-02-10 11:15 82944 ----a-w- c:\windows\system32\mciavi32.dll
2009-12-04 18:28 . 2010-02-10 11:15 50176 ----a-w- c:\windows\system32\iyuv_32.dll
2009-12-04 18:27 . 2010-02-10 11:15 91136 ----a-w- c:\windows\system32\avifil32.dll
2009-12-04 15:56 . 2010-02-10 11:15 212992 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2009-12-04 15:56 . 2010-02-10 11:15 105984 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2009-12-03 17:11 . 2009-12-03 17:11 483200 ----a-w- c:\windows\system32\drivers\AF15BDA.sys
2009-12-03 17:11 . 2009-12-03 16:34 28672 ----a-w- c:\windows\system32\AF15BDAEX.dll
2009-12-03 17:11 . 2009-12-03 16:34 140 ----a-w- c:\windows\system32\AF15IRTBL.bin
2009-12-02 12:35 . 2009-12-02 12:35 10134 ----a-r- c:\users\Simon\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
2009-12-01 20:52 . 2009-09-29 16:28 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-11-30 17:02 . 2009-11-30 17:02 171144 ----a-w- c:\windows\system32\xliveinstall.dll
2009-11-30 17:02 . 2009-11-30 17:02 72840 ----a-w- c:\windows\system32\xliveinstallhost.exe
2009-10-15 17:00 . 2009-10-15 17:05 1258745 ----a-w- c:\program files\CamStudio.2.5.b1.bin[1].zip
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-06-10 39408]
"MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-07-26 3883856]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"Steam"="d:\program files\steam\steam.exe" [2010-02-20 1217872]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"ATI Technologies"="c:\users\Simon\AppData\Roaming\ATI_disp.exe" [2009-03-01 93696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-03-12 61440]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-02-13 6814240]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-08-28 1049896]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2008-12-03 218408]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-10-28 141600]
"UVS12 Preload"="d:\programmes\Pinnacle Studio 12\uvPL.exe" [2008-06-09 397456]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-01-05 149280]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-22 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 948672]
"QuickTime Task"="d:\programmes\QuickTime\QTTask.exe" [2009-11-10 417792]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-02-11 2756488]
"ATI Technologies"="c:\users\Simon\AppData\Roaming\ATI_disp.exe" [2009-03-01 93696]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="c:\windows\system32\userinit.exe,c:\users\Simon\AppData\Roaming\ATI_disp.exe,"

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):d4,6a,71,24,37,77,ca,01

R1 aswSP;aswSP;c:\windows\System32\drivers\aswSP.sys [05/01/2010 23:47 162512]
R1 VBoxDrv;VirtualBox Service;c:\windows\System32\drivers\VBoxDrv.sys [03/01/2010 01:13 123280]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\System32\drivers\VBoxUSBMon.sys [03/01/2010 01:13 41616]
R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [05/01/2010 23:47 19024]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [05/01/2010 23:46 51792]
R2 KMDFMEMIO;SAMSUNG Kernel Driver;c:\windows\System32\drivers\KMDFMEMIO.sys [10/06/2009 12:25 13312]
R2 yksvc;Marvell Yukon Service;c:\windows\System32\svchost.exe -k yksvcs [21/01/2008 03:23 21504]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\System32\drivers\ManyCam.sys [14/01/2008 11:06 21632]
R3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\System32\drivers\VBoxNetFlt.sys [17/12/2009 15:02 110096]
R3 VMC326;Vimicro Camera Service VMC326;c:\windows\System32\drivers\VMC326.sys [10/06/2009 12:23 238464]
S2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [29/09/2009 18:13 133104]
S3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\System32\drivers\Ph3xIB32.sys [03/04/2007 10:43 1131136]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\System32\drivers\VBoxNetAdp.sys [17/12/2009 15:02 99152]
S4 Rezip;Rezip;c:\windows\System32\Rezip.exe [10/06/2009 12:21 311296]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
yksvcs REG_MULTI_SZ yksvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contenu du dossier 'Tâches planifiées'

2010-02-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-09-29 17:13]

2010-02-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-09-29 17:13]

2010-02-26 c:\windows\Tasks\User_Feed_Synchronization-{19A60B22-AECD-43A9-BB68-75922F94C31B}.job
- c:\windows\system32\msfeedssync.exe [2010-02-06 04:56]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=SMSN&bmod=SMSN
uInternet Settings,ProxyOverride = *.local
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
IE: Liens de téléchargement avec Mega Manager... - c:\program files\Megaupload\Mega Manager\mm_file.htm
IE: Télécharger avec IDM - d:\programmes\Internet Download Manager\IEExt.htm
IE: Télécharger le contenu de video FLV avec IDM - d:\programmes\Internet Download Manager\IEGetVL.htm
IE: Télécharger tous les liens avec IDM - d:\programmes\Internet Download Manager\IEGetAll.htm
DPF: {9DF1C00D-8426-4337-972C-DC042D19A916} - hxxp://webtv.guidetv.orange.fr/resources/OCS_8971.cab
FF - ProfilePath - c:\users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\47rh96yd.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.17\npGoogleOneClick8.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: d:\programmes\QuickTime\Plugins\npqtplugin.dll
FF - plugin: d:\programmes\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: d:\programmes\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: d:\programmes\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: d:\programmes\QuickTime\Plugins\npqtplugin5.dll
FF - plugin: d:\programmes\QuickTime\Plugins\npqtplugin6.dll
FF - plugin: d:\programmes\QuickTime\Plugins\npqtplugin7.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- PARAMETRES FIREFOX ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\activex.js - pref("capability.policy.default.ClassID.CIDFE0BD779-44EE-4A4B-AA2E-743C63F2E5E6", "AllAccess");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "https://www.mozilla.org/en-US/firefox/new/?redirect_source=firefox-com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
- - - - ORPHELINS SUPPRIMES - - - -

HKCU-Run-AdobeBridge - (no file)
SafeBoot-mcmscsvc
SafeBoot-MCODS
MSConfigStartUp-Microsoft - c:\windows\microsoft.exe
MSConfigStartUp-NetFxUpdate_v1.1 - c:\windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe
MSConfigStartUp-Windows Service Host - c:\users\Simon\AppData\Roaming\svost.exe
MSConfigStartUp-xQJhdWxYWyTd - c:\users\Simon\AppData\Local\Temp\h5qHU.exe
AddRemove-Pinball Arcade Trial Version 1.0 - c:\program files\Microsoft Games\Pinball Arcade Trial\UNINSTAL.EXE

**************************************************************************
Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés:

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'Explorer.exe'(4276)
c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Samsung\Samsung Magic Doctor\MagicDoctorKbdHk.exe
c:\program files\Samsung\Samsung Update Plus\SUPBackground.exe
c:\windows\system32\conime.exe
c:\windows\system32\agrsmsvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\windows\servicing\TrustedInstaller.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Alwil Software\Avast5\AvastUI.exe
c:\windows\ehome\ehmsas.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\iPod\bin\iPodService.exe
.
**************************************************************************
.
Heure de fin: 2010-02-26 23:19:21 - La machine a redémarré
ComboFix-quarantined-files.txt 2010-02-26 22:19

Avant-CF: 27 929 788 416 octets libres
Après-CF: 28 898 877 440 octets libres

Current=1 Default=1 Failed=0 LastKnownGood=4 Sets=1,2,3,4
- - End Of File - - 37297A50FB64600B32BBA7884E0904FB

0
Réponse 35 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Personne pour m'aider ??
0
Réponse 36 / 37
Utilisateur anonyme
 
Re,

---> Télécharge OTM (OldTimer) sur ton Bureau :
http: http://www.geekstogo.com/forum/files/file/402-otm-oldtimers-move-it/

---> Double-clique sur OTMoveIt3.exe afin de le lancer.

---> Copie (Ctrl+C) le texte suivant en gras ci-dessous :

:files
c:\windows\microsoft.exe

:commands
[purity]
[emptytemp]

---> Colle (Ctrl+V) le texte précédemment copié dans le cadre:
Paste Instructions for Items to be Moved.

---> Clique maintenant sur le bouton MoveIt!

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log

a+
0
Réponse 37 / 37
Mister$ims Messages postés 77 Statut Membre 4
 
Encore une analyse ? Je pensais que c'était fini (j'ai déjà un problème embêtant de réglé)
Bon bah je test et je vous re-tiens au courant ^^
Merci
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses
Trojan Csrss.exe
stevenw -
stevenw -

4 réponses