Fnezia.exe: virus?

Résolu/Fermé
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010 - 22 avril 2010 à 17:58
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010 - 24 avril 2010 à 09:53
Bonjour,

J'ai ouvert un fichier .exe sur mon pc, mais rien ne s'est passé. L'exécution a semblé s'arrêter, et le fichier a disparu.
J'ai vu dans le dossier C:\Windows qu'un fichier Fnezia.exe vient d'être créé.
Je n'arrive plus à ouvrir Firefox maintenant.

Pouvez-vous m'aider à vérifier mon ordinateur? Je n'ai rien trouver sur ce le fichier Fnezia.exe sur google, donc je suppose que c'est un virus?

Je vous remercie,
Cordialement,
MJ.

23 réponses

SolidSnake059 Messages postés 4251 Date d'inscription vendredi 28 décembre 2007 Statut Membre Dernière intervention 9 janvier 2020 508
22 avril 2010 à 18:00
Salut , t'a fais un scan antivirus , antispyware et tout le tralala ?
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
22 avril 2010 à 19:26
Je viens d'effectuer un scan sur le site d'orange, et il affiche:
"2 programme(s) malveillant(s) détecté(s)
TrackingCookie.Atdmt (logiciel espion)

* Système (Non nettoyé)

Trojan-Downloader:W32/Renos.gen!C (logiciel espion)

* Système (Non nettoyé) "

J'ai lancé une analyse avec Avira Antivir et avec Malwarebytes' Anti-Malware. J'attends les résultats. Des conseils de logiciels à utiliser?
0
SolidSnake059 Messages postés 4251 Date d'inscription vendredi 28 décembre 2007 Statut Membre Dernière intervention 9 janvier 2020 508
22 avril 2010 à 21:06
Utilise aussi Spybot Search & Destroy
et HijackThis ou Ad Aware au lieu de Malwarebytes
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
22 avril 2010 à 21:10
Merci pour votre réponse. Voici le rapport de HijackThis:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:09:59, on 22/04/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Fnezia.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: QQ - C:\Program Files\Tencent\QQIntl\Bin\AddEmotion.htm
O9 - Extra button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C3600AFA} - https://www.ebay.fr (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Service Google Update (gupdate1ca3875c843ebd4) (gupdate1ca3875c843ebd4) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NMSAccess - Unknown owner - C:\Windows\system32\NMSAccessU.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
SolidSnake059 Messages postés 4251 Date d'inscription vendredi 28 décembre 2007 Statut Membre Dernière intervention 9 janvier 2020 508
Modifié par SolidSnake059 le 22/04/2010 à 21:17
ton .exe suspect est un processus . 2eme ligne du log HijackThis en Running Process
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
22 avril 2010 à 21:20
C'est normal? Dangereux?
0
SolidSnake059 Messages postés 4251 Date d'inscription vendredi 28 décembre 2007 Statut Membre Dernière intervention 9 janvier 2020 508
22 avril 2010 à 21:52
Si il n'est pas discret ce n'est rien tue le processus et éssaie de le supprimer
0
SolidSnake059 Messages postés 4251 Date d'inscription vendredi 28 décembre 2007 Statut Membre Dernière intervention 9 janvier 2020 508
22 avril 2010 à 21:52
Discret pour moi = qui n'apparaît pas dans les processus en éxécution .
0
SolidSnake059 Messages postés 4251 Date d'inscription vendredi 28 décembre 2007 Statut Membre Dernière intervention 9 janvier 2020 508
22 avril 2010 à 21:54
Après tu peux faire une recherche générale de ton pc en tapant le nom du fichier Fnezia.exe mais normalement tu peux le tuer dans le gestionnaire des tâches et après tu peux le supprimer de la racine C:\Windows .
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
22 avril 2010 à 22:29
Je l'ai tué, puis j'ai essayé de le supprimé. Mais au moment de le supprimer il m'a dit que le fichier n'existe plus.
J'attends la fin d'un scan, et je verrais au redémarrage s'il revient.
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 09:25
Voici le rapport de Spybot

MediaPlex: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
WebTrends live: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
CoreMetrics: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
DoubleClick: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
MediaPlex: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
FastClick: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
FastClick: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
FastClick: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
Tradedoubler: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
Tradedoubler: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
Tradedoubler: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)
BlueStreak: Cookie traceur (Chrome: Chrome) (Cookie, nothing done)

J'ai fait corriger les problèmes et apparemment tous les problèmes ont été corrigés:


--- Report generated: 2010-04-23 10:15 ---

MediaPlex: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


WebTrends live: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


CoreMetrics: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


DoubleClick: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


MediaPlex: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


FastClick: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


FastClick: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


FastClick: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


Tradedoubler: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


Tradedoubler: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


Tradedoubler: Cookie traceur (Chrome: Chrome) (Cookie, fixed)


BlueStreak: Cookie traceur (Chrome: Chrome) (Cookie, fixed)



--- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) ---

2009-01-26 blindman.exe (1.0.0.8)
2009-01-26 SDFiles.exe (1.6.1.7)
2009-01-26 SDMain.exe (1.0.0.6)
2009-01-26 SDShred.exe (1.0.2.5)
2009-01-26 SDUpdate.exe (1.6.0.12)
2009-01-26 SDWinSec.exe (1.0.0.12)
2009-01-26 SpybotSD.exe (1.6.2.46)
2009-01-26 TeaTimer.exe (1.6.4.26)
2010-04-22 unins000.exe (51.49.0.0)
2009-01-26 Update.exe (1.6.0.7)
2009-11-04 advcheck.dll (1.6.5.20)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2009-01-26 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2009-01-26 Tools.dll (2.1.6.10)
2009-01-16 UninsSrv.dll (1.0.0.0)
2010-02-17 Includes\Adware.sbi (*)
2010-04-20 Includes\AdwareC.sbi (*)
2010-01-25 Includes\Cookies.sbi (*)
2009-11-03 Includes\Dialer.sbi (*)
2010-04-13 Includes\DialerC.sbi (*)
2010-01-25 Includes\HeavyDuty.sbi (*)
2009-05-26 Includes\Hijackers.sbi (*)
2010-04-13 Includes\HijackersC.sbi (*)
2010-01-20 Includes\Keyloggers.sbi (*)
2010-04-13 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2010-03-02 Includes\Malware.sbi (*)
2010-04-20 Includes\MalwareC.sbi (*)
2009-03-25 Includes\PUPS.sbi (*)
2010-04-13 Includes\PUPSC.sbi (*)
2010-01-25 Includes\Revision.sbi (*)
2009-01-13 Includes\Security.sbi (*)
2010-04-13 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2010-03-02 Includes\Spyware.sbi (*)
2010-04-20 Includes\SpywareC.sbi (*)
2010-03-08 Includes\Tracks.uti
2010-03-03 Includes\Trojans.sbi (*)
2010-04-13 Includes\TrojansC-02.sbi (*)
2010-04-20 Includes\TrojansC-03.sbi (*)
2010-04-20 Includes\TrojansC-04.sbi (*)
2010-04-20 Includes\TrojansC-05.sbi (*)
2010-04-20 Includes\TrojansC.sbi (*)
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 09:46
J'ai refait une analyse complète avec Orange, et cette fois il a trouvé Fnezia, mais aussi d'autres. Est-ce que ce sont des virus dangereux?
Des conseils pour les supprimer? Je n'ai pas vu les autres dans la liste des processus. Les 2 derniers n'apparaissent pas (ou plus) dans C:\USERS\MJ\LOCAL SETTINGS\TEMP\. Un scan du dossier avec Antivir et MBAM ne donne rien.
Le deuxième est dans "Système". Donc je suppose que les derniers ne sont que la partie visible?

5 programme(s) malveillant(s) détecté(s)
TrackingCookie.Atdmt (logiciel espion)

* Système (Non nettoyé)

Trojan-Downloader:W32/Renos.gen!C (logiciel espion)

* Système (Non nettoyé)

Trojan-Downloader:W32/Renos.gen!C (virus)

* C:\WINDOWS\FNEZIA.EXE (Non nettoyé)

Trojan-Downloader:W32/Renos.gen!C (virus)

* C:\USERS\MJ\LOCAL SETTINGS\TEMP\FVG.EXE (Non nettoyé)

Trojan-Downloader:W32/Renos.gen!C (virus)

* C:\USERS\MJ\LOCAL SETTINGS\TEMP\FVF.EXE (Non nettoyé)
0
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
23 avril 2010 à 09:53
slt il faut éviter de repondre à ses propres messages sinon on ne voit pas que personne ne t'aide ...


Télécharge ici :

http://images.malwareremoval.com/random/RSIT.exe

random's system information tool (RSIT) par andom/random et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer RSIT.

Clique Continue à l'écran Disclaimer.

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.

Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).

NB : Les rapports sont sauvegardés dans le dossier C:\rsit
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 10:49
Apparemment il est trop long pour être posté ici. Voici la première partie du log.txt:

Logfile of random's system information tool 1.06 (written by random/random)
Run by MJ at 2010-04-23 11:06:49
Microsoft® Windows Vista(TM) Édition Familiale Premium Service Pack 2
System drive C: has 9 GB (14%) free of 65 GB
Total RAM: 2038 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:07:00, on 23/04/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\ESET\ESET Online Scanner\OnlineScannerApp.exe
C:\Program Files\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\AcroTray.exe
C:\Windows\system32\DllHost.exe
C:\Users\MJ\AppData\Local\Temp\_iu14D2N.tmp
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\MJ\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\MJ.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: QQ - C:\Program Files\Tencent\QQIntl\Bin\AddEmotion.htm
O9 - Extra button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C3600AFA} - https://www.ebay.fr (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs:
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Service Google Update (gupdate1ca3875c843ebd4) (gupdate1ca3875c843ebd4) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NMSAccess - Unknown owner - C:\Windows\system32\NMSAccessU.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 10:52
======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-03 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-03-06 329312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-04-03 349640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-12 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-04-03 349640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-04-03 349640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-05-18 4472832]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-10-27 815104]
"NDSTray.exe"=NDSTray.exe []
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-04-27 138008]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-04-27 154392]
"Persistence"=C:\Windows\system32\igfxpers.exe [2007-04-27 133912]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2007-02-12 174872]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]
""= []
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2009-06-17 55824]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [2007-05-16 435768]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-04-23 204800]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6c2c7a5c-1a00-11df-9a39-001b24502358}]
shell\AutoRun\command - "I:\WD SmartWare.exe" autoplay=true

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{79544570-4d72-11df-a971-001b24502358}]
shell\AutoRun\command - "I:\WD SmartWare.exe" autoplay=true

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{79544584-4d72-11df-a971-001b24502358}]
shell\AutoRun\command - "H:\WD SmartWare.exe" autoplay=true


======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open - C:\Windows\notepad.exe %1

======List of files/folders created in the last 1 months======

2010-04-22 23:42:23 ----D---- C:\Program Files\ESET
2010-04-22 22:19:32 ----D---- C:\ProgramData\Spybot - Search & Destroy
2010-04-22 22:19:32 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-04-22 21:12:04 ----A---- C:\Windows\ntbtlog.txt
2010-04-22 18:30:04 ----D---- C:\ProgramData\F-Secure
2010-04-22 17:40:23 ----D---- C:\rsit
2010-04-22 17:39:42 ----D---- C:\Users\MJ\AppData\Roaming\GrabPro
2010-04-22 17:39:42 ----D---- C:\downloads
2010-04-22 17:36:37 ----D---- C:\Program Files\Trend Micro
2010-04-22 16:02:38 ----A---- C:\Windows\system32\SyncBackPro.dll
2010-04-22 16:02:37 ----A---- C:\Windows\system32\NMSAccessU.exe
2010-04-22 14:32:46 ----D---- C:\Program Files\2BrightSparks
2010-04-22 01:22:21 ----D---- C:\Users\MJ\AppData\Roaming\Western DigitalTemp
2010-04-22 01:11:48 ----D---- C:\Users\MJ\AppData\Roaming\Western Digital
2010-04-22 01:11:29 ----D---- C:\ProgramData\Western Digital
2010-04-22 01:08:20 ----D---- C:\Program Files\Western Digital
2010-04-20 08:27:42 ----A---- C:\Windows\system32\javaws.exe
2010-04-20 08:27:42 ----A---- C:\Windows\system32\javaw.exe
2010-04-20 08:27:42 ----A---- C:\Windows\system32\java.exe
2010-04-20 08:27:42 ----A---- C:\Windows\system32\deployJava1.dll
2010-04-18 23:26:12 ----D---- C:\Program Files\a-squared Anti-Malware
2010-04-18 23:23:20 ----D---- C:\Users\MJ\AppData\Roaming\GetRightToGo
2010-04-17 12:41:01 ----RA---- C:\Windows\system32\AdobePDFUI.dll
2010-04-14 22:26:51 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-04-14 22:26:50 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-04-14 22:26:47 ----A---- C:\Windows\system32\vbscript.dll
2010-04-14 22:26:22 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-04-14 11:40:48 ----A---- C:\Windows\system32\cabview.dll
2010-04-14 11:38:02 ----A---- C:\Windows\system32\wintrust.dll
2010-04-10 14:46:53 ----A---- C:\Windows\system32\RealMedia.dll
2010-04-10 14:46:53 ----A---- C:\Windows\system32\QuickTime.dll
2010-04-10 14:45:11 ----AD---- C:\ProgramData\TEMP
2010-04-09 23:17:02 ----D---- C:\Program Files\Common Files\Apple
2010-04-09 22:40:50 ----A---- C:\Windows\system32\ssprs.dll
2010-04-09 22:40:50 ----A---- C:\Windows\system32\clauth2.dll
2010-04-09 22:40:50 ----A---- C:\Windows\system32\clauth1.dll
2010-04-09 22:40:49 ----D---- C:\ProgramData\Minnetonka Audio Software
2010-04-09 22:40:49 ----A---- C:\Windows\system32\sysprs7.dll
2010-04-09 22:40:49 ----A---- C:\Windows\system32\lsprst7.dll
2010-04-09 22:40:49 ----A---- C:\Windows\SurCode.INI
2010-04-09 07:13:13 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-04-09 07:11:53 ----D---- C:\Program Files\Winamp Detect
2010-04-09 07:10:59 ----D---- C:\Users\MJ\AppData\Roaming\Winamp
2010-04-09 07:10:59 ----D---- C:\Program Files\Winamp
2010-04-09 04:56:20 ----D---- C:\ProgramData\ALM
2010-04-09 04:51:13 ----D---- C:\AdobeTemp
2010-04-09 03:34:08 ----D---- C:\Users\MJ\AppData\Roaming\PhotoFiltre
2010-04-09 03:33:52 ----D---- C:\Program Files\PhotoFiltre
2010-04-07 18:20:07 ----D---- C:\Users\MJ\AppData\Roaming\Vso
2010-04-07 18:20:07 ----A---- C:\Users\MJ\AppData\Roaming\ezpinst.exe
2010-04-07 18:19:43 ----D---- C:\Program Files\Magic Video Converter
2010-04-07 17:16:16 ----D---- C:\Program Files\FreeTime
2010-04-07 16:51:15 ----D---- C:\Program Files\Total Video Converter
2010-04-07 16:20:14 ----D---- C:\Users\MJ\AppData\Roaming\FreeVideoConverter
2010-04-07 15:20:44 ----D---- C:\Users\MJ\AppData\Roaming\Apple Computer
2010-04-07 13:16:29 ----D---- C:\Program Files\QuickTime
2010-04-06 17:44:55 ----D---- C:\Program Files\Wondershare
2010-04-05 12:01:59 ----D---- C:\Users\MJ\AppData\Roaming\foobar2000
2010-04-05 12:01:40 ----D---- C:\Program Files\foobar2000
2010-04-03 12:59:58 ----D---- C:\Users\MJ\AppData\Roaming\Dexpot
2010-04-03 12:59:52 ----D---- C:\Program Files\Dexpot
2010-03-30 21:39:40 ----A---- C:\Windows\system32\mshtml.dll
2010-03-30 21:39:38 ----A---- C:\Windows\system32\iertutil.dll
2010-03-30 21:39:38 ----A---- C:\Windows\system32\ieframe.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\wininet.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\urlmon.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\occache.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\msfeeds.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-30 21:39:36 ----A---- C:\Windows\system32\mstime.dll
2010-03-30 21:39:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-30 21:39:34 ----A---- C:\Windows\system32\ieUnatt.exe
2010-03-30 21:39:34 ----A---- C:\Windows\system32\ieui.dll
2010-03-30 21:39:34 ----A---- C:\Windows\system32\iepeers.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\msfeedssync.exe
2010-03-30 21:39:33 ----A---- C:\Windows\system32\jsproxy.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\iesysprep.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\iesetup.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\iernonce.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\ie4uinit.exe
2010-03-28 13:35:35 ----D---- C:\Users\MJ\AppData\Roaming\Avira
2010-03-27 16:44:34 ----D---- C:\Users\MJ\AppData\Roaming\Brother
2010-03-27 16:42:58 ----A---- C:\Windows\BRVIDEO.INI
2010-03-27 16:42:58 ----A---- C:\Windows\Brownie.ini
2010-03-27 16:42:58 ----A---- C:\Windows\brmx2001.ini
2010-03-27 16:42:57 ----D---- C:\Program Files\Brownie
2010-03-27 16:42:57 ----A---- C:\Windows\HL-4040CN.INI
2010-03-27 16:42:49 ----N---- C:\Windows\system32\Pdrvinst.dll
2010-03-27 16:42:49 ----D---- C:\Program Files\Brother
2010-03-24 16:14:57 ----D---- C:\ProgramData\Brother
2010-03-24 16:14:57 ----A---- C:\Windows\BRWMARK.INI
2010-03-24 16:14:57 ----A---- C:\Windows\BRPP2KA.INI

======List of files/folders modified in the last 1 months======

2010-04-23 11:06:49 ----D---- C:\Windows\Temp
2010-04-23 10:51:40 ----D---- C:\Windows\system32\Tasks
2010-04-23 10:47:18 ----D---- C:\Windows\Prefetch
2010-04-23 00:58:17 ----D---- C:\Users\MJ\AppData\Roaming\vlc
2010-04-22 23:42:23 ----RD---- C:\Program Files
2010-04-22 23:25:36 ----D---- C:\Windows
2010-04-22 22:19:32 ----HD---- C:\ProgramData
2010-04-22 21:24:07 ----D---- C:\Windows\Tasks
2010-04-22 21:21:43 ----D---- C:\Windows\system32\drivers
2010-04-22 21:21:43 ----D---- C:\Windows\MSAgent
2010-04-22 21:20:34 ----D---- C:\Windows\System32
2010-04-22 21:13:33 ----D---- C:\Windows\system32\catroot2
2010-04-22 20:59:41 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-04-22 20:24:55 ----SHD---- C:\System Volume Information
2010-04-22 17:17:23 ----D---- C:\Windows\system32\catroot
2010-04-22 17:16:44 ----D---- C:\Users\MJ\AppData\Roaming\uTorrent
2010-04-22 14:49:32 ----D---- C:\Windows\inf
2010-04-22 14:49:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-04-22 12:44:57 ----SHD---- C:\Windows\Installer
2010-04-22 12:44:56 ----HD---- C:\Config.Msi
2010-04-20 21:37:45 ----D---- C:\Windows\system32\LogFiles
2010-04-20 08:27:33 ----D---- C:\Program Files\Java
2010-04-20 00:28:58 ----D---- C:\Windows\Debug
2010-04-20 00:26:41 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-20 00:26:38 ----D---- C:\Windows\winsxs
2010-04-15 17:57:25 ----D---- C:\Users\MJ\AppData\Roaming\Skype
2010-04-15 16:53:45 ----D---- C:\Users\MJ\AppData\Roaming\skypePM
2010-04-14 22:37:19 ----D---- C:\Program Files\Windows Mail
2010-04-14 22:34:47 ----D---- C:\ProgramData\Microsoft Help
2010-04-13 18:00:40 ----D---- C:\Users\MJ\AppData\Roaming\Adobe
2010-04-13 11:36:40 ----RSD---- C:\Windows\Fonts
2010-04-13 10:14:02 ----D---- C:\Program Files\Google
2010-04-12 14:26:44 ----D---- C:\Windows\Logs
2010-04-12 14:19:21 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-04-10 14:36:19 ----D---- C:\Users\MJ\AppData\Roaming\dvdcss
2010-04-10 10:09:53 ----A---- C:\Windows\WORDPAD.INI
2010-04-09 23:18:28 ----D---- C:\ProgramData\Apple Computer
2010-04-09 23:17:02 ----D---- C:\Program Files\Common Files
2010-04-09 04:56:20 ----D---- C:\Program Files\Adobe
2010-04-09 04:45:16 ----D---- C:\Program Files\Common Files\Adobe
2010-04-09 03:44:36 ----D---- C:\Users\MJ\AppData\Roaming\gtk-2.0
2010-04-07 18:10:32 ----A---- C:\Windows\win.ini
2010-04-07 18:07:32 ----D---- C:\Users\MJ\AppData\Roaming\Orbit
2010-04-07 01:00:44 ----D---- C:\Program Files\Common Files\Java
2010-04-06 20:52:54 ----A---- C:\Windows\system32\mrt.exe
2010-04-03 15:49:15 ----D---- C:\Users\MJ\AppData\Roaming\WinEdt
2010-04-02 16:53:34 ----D---- C:\Program Files\Mozilla Firefox
2010-04-01 11:11:07 ----SD---- C:\Users\MJ\AppData\Roaming\Microsoft
2010-03-30 22:28:38 ----D---- C:\Windows\system32\migration
2010-03-30 22:28:38 ----D---- C:\Program Files\Internet Explorer
2010-03-29 21:50:44 ----D---- C:\Program Files\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [2009-02-13 11608]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-03-01 124784]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-02-16 60936]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2006-11-28 1161888]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-04-23 1674240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-05-25 1779104]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-11-17 3668480]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-04-07 47360]
R3 QIOMem;Generic IO & Memory Access; C:\Windows\system32\DRIVERS\QIOMem.sys [2007-04-09 8192]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2010-03-04 261152]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2006-10-27 179896]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-18 16128]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2006-10-23 9216]
R3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
R3 WsAudioDevice_383;WsAudioDevice_383; C:\Windows\system32\drivers\WsAudioDevice_383.sys [2008-11-19 16640]
S3 ac0lohqe;ac0lohqe; C:\Windows\system32\drivers\ac0lohqe.sys []
S3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 Inspect;Comodo Firewall Network Driver; C:\Windows\system32\DRIVERS\inspect.sys []
S3 ivusb;Initio Driver for USB Default Controller; C:\Windows\system32\DRIVERS\ivusb.sys []
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Pilote de carte Intel(R) PRO/Wireless 3945ABG pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
S3 Tosrfcom;Tosrfcom; C:\Windows\system32\drivers\Tosrfcom.sys []
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 UVCFTR;UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [2007-04-16 11776]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 KR10I;KR10I; C:\Windows\system32\drivers\kr10i.sys [2007-01-18 219392]
S4 KR10N;KR10N; C:\Windows\system32\drivers\kr10n.sys [2007-01-18 211072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2006-10-05 9216]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-03-16 267432]
R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2006-11-14 40960]
R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2007-02-12 355096]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 NMSAccess;NMSAccess; C:\Windows\system32\NMSAccessU.exe [2009-01-12 71096]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;Enregistreur VSS SQL Server; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 TNaviSrv;TOSHIBA Navi Support Service; C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe [2007-04-27 114688]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2006-05-25 114688]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-08-23 49152]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-09-25 655624]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S2 gupdate1ca3875c843ebd4;Service Google Update (gupdate1ca3875c843ebd4); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-09-18 133104]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2007-11-08 3004416]

-----------------EOF-----------------
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 10:55
======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-03 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2010-03-06 329312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-04-03 349640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-12 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-04-03 349640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-04-03 349640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-05-18 4472832]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-10-27 815104]
"NDSTray.exe"=NDSTray.exe []
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-04-27 138008]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-04-27 154392]
"Persistence"=C:\Windows\system32\igfxpers.exe [2007-04-27 133912]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2007-02-12 174872]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]
""= []
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2009-06-17 55824]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"TOSCDSPD"=C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [2007-05-16 435768]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-04-23 204800]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6c2c7a5c-1a00-11df-9a39-001b24502358}]
shell\AutoRun\command - "I:\WD SmartWare.exe" autoplay=true

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{79544570-4d72-11df-a971-001b24502358}]
shell\AutoRun\command - "I:\WD SmartWare.exe" autoplay=true

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{79544584-4d72-11df-a971-001b24502358}]
shell\AutoRun\command - "H:\WD SmartWare.exe" autoplay=true
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 10:55
======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open - C:\Windows\notepad.exe %1

======List of files/folders created in the last 1 months======

2010-04-22 23:42:23 ----D---- C:\Program Files\ESET
2010-04-22 22:19:32 ----D---- C:\ProgramData\Spybot - Search & Destroy
2010-04-22 22:19:32 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-04-22 21:12:04 ----A---- C:\Windows\ntbtlog.txt
2010-04-22 18:30:04 ----D---- C:\ProgramData\F-Secure
2010-04-22 17:40:23 ----D---- C:\rsit
2010-04-22 17:39:42 ----D---- C:\Users\MJ\AppData\Roaming\GrabPro
2010-04-22 17:39:42 ----D---- C:\downloads
2010-04-22 17:36:37 ----D---- C:\Program Files\Trend Micro
2010-04-22 16:02:38 ----A---- C:\Windows\system32\SyncBackPro.dll
2010-04-22 16:02:37 ----A---- C:\Windows\system32\NMSAccessU.exe
2010-04-22 14:32:46 ----D---- C:\Program Files\2BrightSparks
2010-04-22 01:22:21 ----D---- C:\Users\MJ\AppData\Roaming\Western DigitalTemp
2010-04-22 01:11:48 ----D---- C:\Users\MJ\AppData\Roaming\Western Digital
2010-04-22 01:11:29 ----D---- C:\ProgramData\Western Digital
2010-04-22 01:08:20 ----D---- C:\Program Files\Western Digital
2010-04-20 08:27:42 ----A---- C:\Windows\system32\javaws.exe
2010-04-20 08:27:42 ----A---- C:\Windows\system32\javaw.exe
2010-04-20 08:27:42 ----A---- C:\Windows\system32\java.exe
2010-04-20 08:27:42 ----A---- C:\Windows\system32\deployJava1.dll
2010-04-18 23:26:12 ----D---- C:\Program Files\a-squared Anti-Malware
2010-04-18 23:23:20 ----D---- C:\Users\MJ\AppData\Roaming\GetRightToGo
2010-04-17 12:41:01 ----RA---- C:\Windows\system32\AdobePDFUI.dll
2010-04-14 22:26:51 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-04-14 22:26:50 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-04-14 22:26:47 ----A---- C:\Windows\system32\vbscript.dll
2010-04-14 22:26:22 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-04-14 11:40:48 ----A---- C:\Windows\system32\cabview.dll
2010-04-14 11:38:02 ----A---- C:\Windows\system32\wintrust.dll
2010-04-10 14:46:53 ----A---- C:\Windows\system32\RealMedia.dll
2010-04-10 14:46:53 ----A---- C:\Windows\system32\QuickTime.dll
2010-04-10 14:45:11 ----AD---- C:\ProgramData\TEMP
2010-04-09 23:17:02 ----D---- C:\Program Files\Common Files\Apple
2010-04-09 22:40:50 ----A---- C:\Windows\system32\ssprs.dll
2010-04-09 22:40:50 ----A---- C:\Windows\system32\clauth2.dll
2010-04-09 22:40:50 ----A---- C:\Windows\system32\clauth1.dll
2010-04-09 22:40:49 ----D---- C:\ProgramData\Minnetonka Audio Software
2010-04-09 22:40:49 ----A---- C:\Windows\system32\sysprs7.dll
2010-04-09 22:40:49 ----A---- C:\Windows\system32\lsprst7.dll
2010-04-09 22:40:49 ----A---- C:\Windows\SurCode.INI
2010-04-09 07:13:13 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-04-09 07:11:53 ----D---- C:\Program Files\Winamp Detect
2010-04-09 07:10:59 ----D---- C:\Users\MJ\AppData\Roaming\Winamp
2010-04-09 07:10:59 ----D---- C:\Program Files\Winamp
2010-04-09 04:56:20 ----D---- C:\ProgramData\ALM
2010-04-09 04:51:13 ----D---- C:\AdobeTemp
2010-04-09 03:34:08 ----D---- C:\Users\MJ\AppData\Roaming\PhotoFiltre
2010-04-09 03:33:52 ----D---- C:\Program Files\PhotoFiltre
2010-04-07 18:20:07 ----D---- C:\Users\MJ\AppData\Roaming\Vso
2010-04-07 18:20:07 ----A---- C:\Users\MJ\AppData\Roaming\ezpinst.exe
2010-04-07 18:19:43 ----D---- C:\Program Files\Magic Video Converter
2010-04-07 17:16:16 ----D---- C:\Program Files\FreeTime
2010-04-07 16:51:15 ----D---- C:\Program Files\Total Video Converter
2010-04-07 16:20:14 ----D---- C:\Users\MJ\AppData\Roaming\FreeVideoConverter
2010-04-07 15:20:44 ----D---- C:\Users\MJ\AppData\Roaming\Apple Computer
2010-04-07 13:16:29 ----D---- C:\Program Files\QuickTime
2010-04-06 17:44:55 ----D---- C:\Program Files\Wondershare
2010-04-05 12:01:59 ----D---- C:\Users\MJ\AppData\Roaming\foobar2000
2010-04-05 12:01:40 ----D---- C:\Program Files\foobar2000
2010-04-03 12:59:58 ----D---- C:\Users\MJ\AppData\Roaming\Dexpot
2010-04-03 12:59:52 ----D---- C:\Program Files\Dexpot
2010-03-30 21:39:40 ----A---- C:\Windows\system32\mshtml.dll
2010-03-30 21:39:38 ----A---- C:\Windows\system32\iertutil.dll
2010-03-30 21:39:38 ----A---- C:\Windows\system32\ieframe.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\wininet.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\urlmon.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\occache.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\msfeeds.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-30 21:39:36 ----A---- C:\Windows\system32\mstime.dll
2010-03-30 21:39:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-30 21:39:34 ----A---- C:\Windows\system32\ieUnatt.exe
2010-03-30 21:39:34 ----A---- C:\Windows\system32\ieui.dll
2010-03-30 21:39:34 ----A---- C:\Windows\system32\iepeers.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\msfeedssync.exe
2010-03-30 21:39:33 ----A---- C:\Windows\system32\jsproxy.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\iesysprep.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\iesetup.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\iernonce.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\ie4uinit.exe
2010-03-28 13:35:35 ----D---- C:\Users\MJ\AppData\Roaming\Avira
2010-03-27 16:44:34 ----D---- C:\Users\MJ\AppData\Roaming\Brother
2010-03-27 16:42:58 ----A---- C:\Windows\BRVIDEO.INI
2010-03-27 16:42:58 ----A---- C:\Windows\Brownie.ini
2010-03-27 16:42:58 ----A---- C:\Windows\brmx2001.ini
2010-03-27 16:42:57 ----D---- C:\Program Files\Brownie
2010-03-27 16:42:57 ----A---- C:\Windows\HL-4040CN.INI
2010-03-27 16:42:49 ----N---- C:\Windows\system32\Pdrvinst.dll
2010-03-27 16:42:49 ----D---- C:\Program Files\Brother
2010-03-24 16:14:57 ----D---- C:\ProgramData\Brother
2010-03-24 16:14:57 ----A---- C:\Windows\BRWMARK.INI
2010-03-24 16:14:57 ----A---- C:\Windows\BRPP2KA.INI

======List of files/folders modified in the last 1 months======

2010-04-23 11:06:49 ----D---- C:\Windows\Temp
2010-04-23 10:51:40 ----D---- C:\Windows\system32\Tasks
2010-04-23 10:47:18 ----D---- C:\Windows\Prefetch
2010-04-23 00:58:17 ----D---- C:\Users\MJ\AppData\Roaming\vlc
2010-04-22 23:42:23 ----RD---- C:\Program Files
2010-04-22 23:25:36 ----D---- C:\Windows
2010-04-22 22:19:32 ----HD---- C:\ProgramData
2010-04-22 21:24:07 ----D---- C:\Windows\Tasks
2010-04-22 21:21:43 ----D---- C:\Windows\system32\drivers
2010-04-22 21:21:43 ----D---- C:\Windows\MSAgent
2010-04-22 21:20:34 ----D---- C:\Windows\System32
2010-04-22 21:13:33 ----D---- C:\Windows\system32\catroot2
2010-04-22 20:59:41 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-04-22 20:24:55 ----SHD---- C:\System Volume Information
2010-04-22 17:17:23 ----D---- C:\Windows\system32\catroot
2010-04-22 17:16:44 ----D---- C:\Users\MJ\AppData\Roaming\uTorrent
2010-04-22 14:49:32 ----D---- C:\Windows\inf
2010-04-22 14:49:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-04-22 12:44:57 ----SHD---- C:\Windows\Installer
2010-04-22 12:44:56 ----HD---- C:\Config.Msi
2010-04-20 21:37:45 ----D---- C:\Windows\system32\LogFiles
2010-04-20 08:27:33 ----D---- C:\Program Files\Java
2010-04-20 00:28:58 ----D---- C:\Windows\Debug
2010-04-20 00:26:41 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-20 00:26:38 ----D---- C:\Windows\winsxs
2010-04-15 17:57:25 ----D---- C:\Users\MJ\AppData\Roaming\Skype
2010-04-15 16:53:45 ----D---- C:\Users\MJ\AppData\Roaming\skypePM
2010-04-14 22:37:19 ----D---- C:\Program Files\Windows Mail
2010-04-14 22:34:47 ----D---- C:\ProgramData\Microsoft Help
2010-04-13 18:00:40 ----D---- C:\Users\MJ\AppData\Roaming\Adobe
2010-04-13 11:36:40 ----RSD---- C:\Windows\Fonts
2010-04-13 10:14:02 ----D---- C:\Program Files\Google
2010-04-12 14:26:44 ----D---- C:\Windows\Logs
2010-04-12 14:19:21 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-04-10 14:36:19 ----D---- C:\Users\MJ\AppData\Roaming\dvdcss
2010-04-10 10:09:53 ----A---- C:\Windows\WORDPAD.INI
2010-04-09 23:18:28 ----D---- C:\ProgramData\Apple Computer
2010-04-09 23:17:02 ----D---- C:\Program Files\Common Files
2010-04-09 04:56:20 ----D---- C:\Program Files\Adobe
2010-04-09 04:45:16 ----D---- C:\Program Files\Common Files\Adobe
2010-04-09 03:44:36 ----D---- C:\Users\MJ\AppData\Roaming\gtk-2.0
2010-04-07 18:10:32 ----A---- C:\Windows\win.ini
2010-04-07 18:07:32 ----D---- C:\Users\MJ\AppData\Roaming\Orbit
2010-04-07 01:00:44 ----D---- C:\Program Files\Common Files\Java
2010-04-06 20:52:54 ----A---- C:\Windows\system32\mrt.exe
2010-04-03 15:49:15 ----D---- C:\Users\MJ\AppData\Roaming\WinEdt
2010-04-02 16:53:34 ----D---- C:\Program Files\Mozilla Firefox
2010-04-01 11:11:07 ----SD---- C:\Users\MJ\AppData\Roaming\Microsoft
2010-03-30 22:28:38 ----D---- C:\Windows\system32\migration
2010-03-30 22:28:38 ----D---- C:\Program Files\Internet Explorer
2010-03-29 21:50:44 ----D---- C:\Program Files\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [2009-02-13 11608]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-03-01 124784]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-02-16 60936]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2006-11-28 1161888]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-04-23 1674240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-05-25 1779104]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-11-17 3668480]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-04-07 47360]
R3 QIOMem;Generic IO & Memory Access; C:\Windows\system32\DRIVERS\QIOMem.sys [2007-04-09 8192]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2010-03-04 261152]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2006-10-27 179896]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-18 16128]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2006-10-23 9216]
R3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
R3 WsAudioDevice_383;WsAudioDevice_383; C:\Windows\system32\drivers\WsAudioDevice_383.sys [2008-11-19 16640]
S3 ac0lohqe;ac0lohqe; C:\Windows\system32\drivers\ac0lohqe.sys []
S3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 Inspect;Comodo Firewall Network Driver; C:\Windows\system32\DRIVERS\inspect.sys []
S3 ivusb;Initio Driver for USB Default Controller; C:\Windows\system32\DRIVERS\ivusb.sys []
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Pilote de carte Intel(R) PRO/Wireless 3945ABG pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
S3 Tosrfcom;Tosrfcom; C:\Windows\system32\drivers\Tosrfcom.sys []
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 UVCFTR;UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [2007-04-16 11776]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 KR10I;KR10I; C:\Windows\system32\drivers\kr10i.sys [2007-01-18 219392]
S4 KR10N;KR10N; C:\Windows\system32\drivers\kr10n.sys [2007-01-18 211072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2006-10-05 9216]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-03-16 267432]
R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2006-11-14 40960]
R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2007-02-12 355096]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 NMSAccess;NMSAccess; C:\Windows\system32\NMSAccessU.exe [2009-01-12 71096]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;Enregistreur VSS SQL Server; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 TNaviSrv;TOSHIBA Navi Support Service; C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe [2007-04-27 114688]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2006-05-25 114688]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-08-23 49152]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-09-25 655624]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S2 gupdate1ca3875c843ebd4;Service Google Update (gupdate1ca3875c843ebd4); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-09-18 133104]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2007-11-08 3004416]

-----------------EOF-----------------
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 10:59
Et le info.txt:


info.txt logfile of random's system information tool 1.06 2010-04-22 17:40:27

======Uninstall list======

-->"C:\Program Files\InstallShield Installation Information\{A644254B-92F6-4970-8635-AB0775371E72}\setup.exe" --u:{A644254B-92F6-4970-8635-AB0775371E72}
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{622E6F16-0904-49B6-BBE1-4CC836314CCF}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{697AFC77-F318-4CD4-BF16-F50F4C1072DA}\setup.exe" -l0x40c
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
32 Bit HP CIO Components Installer-->MsiExec.exe /I{2614F54E-A828-49FA-93BA-45A3F756BFAA}
7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe"
Adobe Acrobat 9 Pro - English, Français, Deutsch-->msiexec /I {AC76BA86-1033-F400-7760-000000000004}
Adobe After Effects CS4 Third Party Content-->MsiExec.exe /I{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}
Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}
Adobe Anchor Service CS4-->MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8}
Adobe Bridge CS4-->MsiExec.exe /I{83877DB1-8B77-45BC-AB43-2BAC22E093E0}
Adobe CMaps CS4-->MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191}
Adobe Color - Photoshop Specific CS4-->MsiExec.exe /I{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}
Adobe Color EU Recommended Settings CS4-->MsiExec.exe /I{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}
Adobe Color JA Extra Settings CS4-->MsiExec.exe /I{0D6013AB-A0C7-41DC-973C-E93129C9A29F}
Adobe Color NA Extra Settings CS4-->MsiExec.exe /I{098A2A49-7CF3-4F08-A38D-FB879117152A}
Adobe Color Video Profiles CS CS4-->MsiExec.exe /I{63C24A08-70F3-4C8E-B9FB-9F21A903801D}
Adobe Creative Suite 4 Master Collection-->C:\Program Files\Common Files\Adobe\Installers\b2d6abde968e6f277ddbfd501383e02\Setup.exe --uninstall=1
Adobe Creative Suite 4 Master Collection-->MsiExec.exe /I{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}
Adobe CS4 American English Speech Analysis Models-->MsiExec.exe /I{297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}
Adobe CSI CS4-->MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF}
Adobe Default Language CS4-->MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683}
Adobe Device Central CS4-->MsiExec.exe /I{67F0E67A-8E93-4C2C-B29D-47C48262738A}
Adobe Drive CS4-->MsiExec.exe /I{16E16F01-2E2D-4248-A42F-76261C147B6C}
Adobe Dynamiclink Support-->MsiExec.exe /I{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}
Adobe Encore CS4 Codecs-->MsiExec.exe /I{FB2A5FCC-B81B-48C2-A009-7804694D83E9}
Adobe ExtendScript Toolkit CS4-->MsiExec.exe /I{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}
Adobe Extension Manager CS4-->MsiExec.exe /I{054EFA56-2AC1-48F4-A883-0AB89874B972}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Fonts All-->MsiExec.exe /I{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}
Adobe Illustrator CS4-->MsiExec.exe /I{87532CAB-7932-4F84-8937-823337622807}
Adobe Linguistics CS4-->MsiExec.exe /I{931AB7EA-3656-4BB7-864D-022B09E3DD67}
Adobe Media Encoder CS4 Additional Exporter-->MsiExec.exe /I{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}
Adobe Media Encoder CS4 Dolby-->MsiExec.exe /I{EE353798-E875-42E0-B58D-7E6696182EA8}
Adobe Media Encoder CS4 Exporter-->MsiExec.exe /I{561968FD-56A1-49FD-9ED0-F55482C7C5BC}
Adobe Media Encoder CS4 Importer-->MsiExec.exe /I{8186FF34-D389-4B7E-9A2F-C197585BCFBD}
Adobe Media Encoder CS4-->MsiExec.exe /I{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}
Adobe Output Module-->MsiExec.exe /I{BB4E33EC-8181-4685-96F7-8554293DEC6A}
Adobe PDF Library Files CS4-->MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353}
Adobe Photoshop CS4 Support-->MsiExec.exe /I{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}
Adobe Photoshop CS4-->MsiExec.exe /I{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}
Adobe Premiere Pro CS4 Functional Content-->MsiExec.exe /I{B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7}
Adobe Premiere Pro CS4 Third Party Content-->MsiExec.exe /I{C938BE91-3BB5-4B84-9EF6-88F0505D0038}
Adobe Premiere Pro CS4-->MsiExec.exe /I{D499F8DE-3F31-4900-9157-61061613704B}
Adobe Reader 9.3.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A93000000001}
Adobe Search for Help-->MsiExec.exe /I{F0E64E2E-3A60-40D8-A55D-92F6831875DA}
Adobe Service Manager Extension-->MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}
Adobe Setup-->MsiExec.exe /I{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}
Adobe Soundbooth CS4 Codecs-->MsiExec.exe /I{52232EF4-CC12-4C21-ABCF-ADB79618302D}
Adobe Type Support CS4-->MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
Adobe Update Manager CS4-->MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}
Adobe XMP Panels CS4-->MsiExec.exe /I{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}
AdobeColorCommonSetCMYK-->MsiExec.exe /I{68243FF8-83CA-466B-B2B8-9F99DA5479C4}
AdobeColorCommonSetRGB-->MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
Apple Application Support-->MsiExec.exe /I{553255F3-78FD-40F1-A6F8-6882140265FE}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Aspell English Dictionary-0.50-2-->"C:\Program Files\Aspell\unins001.exe"
Aspell French Dictionary-0.50-3-->"C:\Program Files\Aspell\unins002.exe"
Assistant de connexion Windows Live ID-->MsiExec.exe /X{10A44844-4465-456E-8C97-80BDD4F68845}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
Bibliothèques GTK+ 2.14.7 rev a (supprimer uniquement)-->C:\Program Files\Common Files\GTK\2.0\uninst.exe
Bluetooth Stack for Windows by Toshiba-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}
Brother HL-4040CN-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{27215A50-EAB5-4393-BD20-ABE50889ED5F}\setup.exe" -l0x9 -removeonly /uninst
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}
Codeur Windows Media Série 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Combined Community Codec Pack 2009-09-09-->"C:\Program Files\Combined Community Codec Pack\unins000.exe"
Connect-->MsiExec.exe /I{B29AD377-CC12-490A-A480-1452337C618D}
Correctif logiciel pour Microsoft Visual Studio 2008 Professional Edition - Français (KBKB971091)-->C:\Windows\system32\msiexec.exe /package {6914733B-F128-37F6-8BB5-920C34071129} /uninstall {06694B0F-B778-4E13-B841-4FF9CC81D0C5} /qb+ REBOOTPROMPT=""
Correctif logiciel pour Microsoft Visual Studio 2008 Professional Edition - Français (KBKB973674)-->C:\Windows\system32\msiexec.exe /package {6914733B-F128-37F6-8BB5-920C34071129} /uninstall {E1404B9C-5F36-406A-B720-70FA3F242B7B} /qb+ REBOOTPROMPT=""
Crystal Reports Basic for Visual Studio 2008-->MsiExec.exe /X{AA467959-A1D6-4F45-90CD-11DC57733F32}
Crystal Reports Basic French Language Pack for Visual Studio 2008-->MsiExec.exe /X{2516845C-017F-4036-828B-3365FF640AB6}
CutePDF Writer 2.8-->C:\Program Files\Acro Software\CutePDF Writer\uninscpw.exe
Dexpot-->"C:\Program Files\Dexpot\uninstall.exe"
DimSum 0.7.9-->"C:\Program Files\ChineseTools\unins000.exe"
DjVuLibre+DjView-->C:\Program Files\DjVuZone\DjVuLibre\uninst.exe
DVD MovieFactory for TOSHIBA-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}\setup.exe" -l0x40c
EndNote X3-->MsiExec.exe /I{86B3F2D6-AC2B-4E88-8AE1-F2F77F781B0C}
Fichiers de prise en charge de l'installation de Microsoft SQL Server (Français)-->MsiExec.exe /X{3380F354-C5F7-4E71-8F51-EEE6C3F06C62}
foobar2000 v1.0.1-->"C:\Program Files\foobar2000\uninstall.exe" _?=C:\Program Files\foobar2000
FreeFem++ version 3.6-1-->"C:\Program Files\FreeFem++\unins000.exe"
FreeFem++-cs version 9.11-->"C:\Program Files\FreeFem++-cs-9.11\unins000.exe"
gBurner-->"C:\Program Files\gBurner\uninstall.exe"
GDR 4053 for SQL Server Database Services 2005 ENU (KB970892)-->C:\Windows\SQL9_KB970892_ENU\Hotfix.exe /Uninstall
GDR 4053 for SQL Server Tools and Workstation Components 2005 ENU (KB970892)-->C:\Windows\SQLTools9_KB970892_ENU\Hotfix.exe /Uninstall
GNU Aspell 0.50-3-->"C:\Program Files\Aspell\unins000.exe"
Google Chrome-->"C:\Program Files\Google\Chrome\Application\4.1.249.1045\Installer\setup.exe" --uninstall --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{08C0729E-3E50-11DF-9D81-005056806466}
GPL Ghostscript 8.64-->C:\Program Files\gs\uninstgs.exe "C:\Program Files\gs\gs8.64\uninstal.txt"
GSview 4.9-->C:\Program Files\Ghostgum\gsview\uninstgs.exe "C:\Program Files\Ghostgum\gsview\uninstal.txt"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Deskjet F4200 All-In-One Driver Software 11.0 Rel .3-->C:\Program Files\HP\Digital Imaging\{C3B6AEB1-390C-4792-8677-CD87F8B2C959}\setup\hpzscr01.exe -datfile hposcr28.dat -onestop
HP Imaging Device Functions 11.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Solution Center 13.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat -forcereboot
HP Update-->MsiExec.exe /X{818ABC3C-635C-4651-8183-D0E9640B7DD1}
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
Intel Matrix Storage Manager-->C:\Windows\system32\imsmudlg.exe -uninstall
Intel(R) Graphics Media Accelerator Driver-->C:\Windows\system32\igxpun.exe -uninstall
Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216019FF}
Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}
kuler-->MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243}
Lizardtech DjVu Control-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{105CFC7C-6992-11D5-BD9D-000102C10FD8}\Setup.exe" -l0x40c
Logitech SetPoint-->"C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe" -runfromtemp -l0x040c -removeonly
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MATLAB R2009b-->C:\Program Files\MATLAB\R2009b\uninstall\uninstall.exe C:\Program Files\MATLAB\R2009b\
Media Player Classic - Home Cinema v. 1.3.1249.0-->"C:\Program Files\MPC HomeCinema\unins000.exe"
mEdit 2008R3-->C:\Program Files\mEdit\uninst.exe
Mendeley Desktop 0.9.6.2-->C:\Program Files\Mendeley Desktop\Uninstall.exe
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Device Emulator version 3.0 - FRA-->MsiExec.exe /X{A5774693-2D17-3E6C-9324-97B17C5AA1E9}
Microsoft Document Explorer 2008 Language Pack - FRA-->MsiExec.exe /X{AACA7728-BE87-3D11-8A3F-773664BFCF1B}
Microsoft Document Explorer 2008-->C:\Program Files\Common Files\Microsoft Shared\Help 9\Microsoft Document Explorer 2008\install.exe
Microsoft Document Explorer 2008-->MsiExec.exe /X{6753B40C-0FBD-3BED-8A9D-0ACAC2DCD85D}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0012-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Live Add-in 1.4-->MsiExec.exe /I{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0021-040C-0000-0000000FF1CE} /uninstall {CCDA3DD6-E33D-4D75-B7C9-FF585580CE83}
Microsoft Office Standard 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall STANDARD /dll OSETUP.DLL
Microsoft Office Standard 2007-->MsiExec.exe /X{90120000-0012-0000-0000-0000000FF1CE}
Microsoft Office Visual Web Developer 2007-->MsiExec.exe /X{90120000-0021-0000-0000-0000000FF1CE}
Microsoft Office Visual Web Developer MUI (French) 2007-->MsiExec.exe /X{90120000-0021-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Reader-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B6F7DBE7-2FE2-458F-A738-B10832746036}\Setup.exe" -L0x40c
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Express Edition (SQLEXPRESS)-->MsiExec.exe /I{480DBB60-F0B6-45F2-B26F-1A2E11197791}
Microsoft SQL Server 2005 Tools Express Edition-->MsiExec.exe /I{3F59A7E0-BC01-4435-9E93-C7D7015C21DA}
Microsoft SQL Server 2005-->"C:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
Microsoft SQL Server Compact 3.5 Design Tools FRA-->MsiExec.exe /X{043ECF7B-4724-4F7B-8A9D-BC22719E95F7}
Microsoft SQL Server Compact 3.5 for Devices FRA-->MsiExec.exe /I{B4C6D770-DF2E-4731-8869-F89BA6670DDA}
Microsoft SQL Server Compact 3.5 FRA-->MsiExec.exe /I{BE361597-42AC-4513-9BA6-FFAB310038FB}
Microsoft SQL Server Database Publishing Wizard 1.2-->MsiExec.exe /X{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}
Microsoft SQL Server Native Client-->MsiExec.exe /I{1F24E48F-7692-4E89-8784-68DD4D2712A0}
Microsoft SQL Server VSS Writer-->MsiExec.exe /I{A30179B7-997A-4D47-AA43-57AE59A9C78B}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218-->MsiExec.exe /X{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack-->C:\Program Files\Common Files\Microsoft Shared\VSTO\8.0\Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack\install.exe
Microsoft Visual Studio 2005 Tools for Office Runtime-->MsiExec.exe /X{388E4B09-3E71-4649-8921-F44A3A2954A7}
Microsoft Visual Studio 2008 Professional Edition - Français-->C:\Program Files\Microsoft Visual Studio 9.0\Microsoft Visual Studio 2008 Professional Edition - FRA\setup.exe
Microsoft Visual Studio Web Authoring Component-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall VISUALWEBDEVELOPER /dll OSETUP.DLL
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools-->MsiExec.exe /X{6E88CC59-832E-39AF-AE17-B9017DDB12C3}
Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework-->MsiExec.exe /X{AB47EEE8-507B-331F-AA28-B7C7257F014C}
Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32-->MsiExec.exe /X{07FCBED5-94C3-4F94-B9D3-360FA27C7B06}
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries-->MsiExec.exe /X{842FAF7C-50EF-4463-9B8F-6222E1384D7D}
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense-->MsiExec.exe /X{64c5b887-b5ee-42b8-8596-78905a6b5f1f}
Microsoft Windows SDK for Visual Studio 2008 Tools-->MsiExec.exe /X{CAA376AF-0DE8-4FCA-942E-C6AC579B94B3}
Microsoft Windows SDK for Visual Studio 2008 Win32 Tools-->MsiExec.exe /X{B268E9A1-04A9-40D0-9866-846BE2B74BA7}
0
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
23 avril 2010 à 11:23
scan avec malwarebyte , fais un scan rapide et colle le rapport obtenu et vire ce qui est trouvé:


https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 11:53
Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Version de la base de données: 3930

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18904

23/04/2010 12:52:19
mbam-log-2010-04-23 (12-52-19).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 106129
Temps écoulé: 15 minute(s), 54 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0
gregoire77 Messages postés 34 Date d'inscription vendredi 23 avril 2010 Statut Membre Dernière intervention 29 mai 2010 8
23 avril 2010 à 11:57
personellement je ne pense pas que ce virus soit trés dangereux ...;sinon il y aurai eu des dega plus important...
si comme tu le dis le virus ne se montre plus mas que tu ne peu pas relancer firefox a la limite supprime le et retelecharge le...
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 12:31
J'attends la fin d'un scan et je redémarre le pc pour voir s'il est toujours là.
J'aimerai le supprimer avant qu'il puisse vraiment faire des dégâts.
Merci pour le conseil. Je vais essayer ça pour récupérer firefox.
0
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
23 avril 2010 à 15:21
tu n'as pas mis malwarebyte à jour avant de faire l'analyse ... recommence puis


branche tes supports externes et colle un rapport avec usbfix option 1
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 16:10
Merci. Voici le nouveau rapport. Je lance usbfix.

Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Version de la base de données: 4025

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18904

23/04/2010 17:09:05
mbam-log-2010-04-23 (17-09-05).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 109660
Temps écoulé: 15 minute(s), 30 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\QZAIB7KITK (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 16:17
Voici pour UsbFix.


############################## | UsbFix V6.107 |

User : MJ (Administrateurs) # PC-DE-MJ
Update on 21/04/2010 by El Desaparecido , C_XX & Chimay8
Start at: 17:11:31 | 23/04/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

Intel(R) Core(TM)2 Duo CPU T7100 @ 1.80GHz
Microsoft® Windows Vista(TM) Édition Familiale Premium (6.0.6002 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18904
Windows Firewall Status : Enabled
AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]
FW : COMODO Firewall Pro[ Enabled ]3.0

C:\ -> Disque fixe local # 63,48 Go (8,78 Go free) [Vista] # NTFS
D:\ -> Disque fixe local # 121,37 Go (13,22 Go free) [Data] # NTFS
E:\ -> Disque fixe local # 1863,01 Go (529,25 Go free) [WD 2To] # NTFS
F:\ -> Disque CD-ROM
G:\ -> Disque CD-ROM
H:\ -> Disque fixe local # 465,76 Go (143,94 Go free) [MJ - 500Go] # NTFS

################## | Elements infectieux |


################## | Registre |


################## | Mountpoints2 |

HKCU\..\..\Explorer\MountPoints2\{6c2c7a5c-1a00-11df-9a39-001b24502358}
shell\AutoRun\command ="I:\WD SmartWare.exe" autoplay=true

HKCU\..\..\Explorer\MountPoints2\{79544570-4d72-11df-a971-001b24502358}
shell\AutoRun\command ="I:\WD SmartWare.exe" autoplay=true

HKCU\..\..\Explorer\MountPoints2\{79544584-4d72-11df-a971-001b24502358}
shell\AutoRun\command ="H:\WD SmartWare.exe" autoplay=true

################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné !

################## | ! Fin du rapport # UsbFix V6.107 ! |
0
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
23 avril 2010 à 17:06
fais l'option de vaccination avec ubfix

puis


télécharge OTM
http://www.geekstogo.com/forum/files/file/402-otm-oldtimers-move-it/
(de Old_Timer) sur ton Bureau.

double-clique sur OTM.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTM :Paste instruction for items to be moved.


:processes
explorer.exe
:files
C:\WINDOWS\FNEZIA.EXE
C:\USERS\MJ\LOCAL SETTINGS\TEMP\FVG.EXE
C:\USERS\MJ\LOCAL SETTINGS\TEMP\FVF.EXE
:commands
[purity]
[emptytemp]
[start explorer]

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTM\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.


______________________


puis


Télécharge ici :

http://images.malwareremoval.com/random/RSIT.exe

random's system information tool (RSIT) par andom/random et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer RSIT.

Clique Continue à l'écran Disclaimer.

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.

Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).

NB : Les rapports sont sauvegardés dans le dossier C:\rsit
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 18:43
Voici le rapport de vaccination d'usbfix:


############################## | UsbFix V6.107 |

User : MJ (Administrateurs) # PC-DE-MJ
Update on 21/04/2010 by El Desaparecido , C_XX & Chimay8
Start at: 19:41:52 | 23/04/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

Intel(R) Core(TM)2 Duo CPU T7100 @ 1.80GHz
Microsoft® Windows Vista(TM) Édition Familiale Premium (6.0.6002 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18904
Windows Firewall Status : Enabled
AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]
FW : COMODO Firewall Pro[ Enabled ]3.0

C:\ -> Disque fixe local # 63,48 Go (9,4 Go free) [Vista] # NTFS
D:\ -> Disque fixe local # 121,37 Go (13,22 Go free) [Data] # NTFS
E:\ -> Disque fixe local # 1863,01 Go (529,25 Go free) [WD 2To] # NTFS
F:\ -> Disque CD-ROM
G:\ -> Disque CD-ROM
H:\ -> Disque fixe local # 465,76 Go (143,94 Go free) [MJ - 500Go] # NTFS

################## | Vaccination |

# C:\autorun.inf -> Dossier créé par UsbFix (El Desaparecido).
# D:\autorun.inf -> Dossier créé par UsbFix (El Desaparecido).
# E:\autorun.inf -> Dossier créé par UsbFix (El Desaparecido).
# H:\autorun.inf -> Dossier créé par UsbFix (El Desaparecido).

################## | ! Fin du rapport # UsbFix V6.107 ! |
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 18:50
Voici le rapport pour OTM:

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File/Folder C:\WINDOWS\FNEZIA.EXE not found.
File/Folder C:\USERS\MJ\LOCAL SETTINGS\TEMP\FVG.EXE not found.
File/Folder C:\USERS\MJ\LOCAL SETTINGS\TEMP\FVF.EXE not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: MJ
->Temp folder emptied: 32710 bytes
->Temporary Internet Files folder emptied: 857855 bytes
->Java cache emptied: 73938636 bytes
->FireFox cache emptied: 48005766 bytes
->Google Chrome cache emptied: 33102254 bytes
->Flash cache emptied: 4013 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6373 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 294359 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 25494463 bytes
RecycleBin emptied: 541684 bytes

Total Files Cleaned = 174,00 mb


OTM by OldTimer - Version 3.1.10.2 log created on 04232010_194554

Files moved on Reboot...

Registry entries deleted on Reboot...
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 18:55
Pour RSIT:

Le log.txt partie 1:

Logfile of random's system information tool 1.06 (written by random/random)
Run by MJ at 2010-04-23 19:51:52
Microsoft® Windows Vista(TM) Édition Familiale Premium Service Pack 2
System drive C: has 10 GB (15%) free of 65 GB
Total RAM: 2038 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:52:27, on 23/04/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\notepad.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\notepad.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Users\MJ\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\MJ.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: QQ - C:\Program Files\Tencent\QQIntl\Bin\AddEmotion.htm
O9 - Extra button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C3600AFA} - https://www.ebay.fr (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Service Google Update (gupdate1ca3875c843ebd4) (gupdate1ca3875c843ebd4) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NMSAccess - Unknown owner - C:\Windows\system32\NMSAccessU.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 18:56
Partie 2:

======List of files/folders created in the last 1 months======

2010-04-23 19:45:54 ----D---- C:\_OTM
2010-04-23 19:41:53 ----RASHD---- C:\autorun.inf
2010-04-23 19:41:51 ----A---- C:\UsbFix.txt
2010-04-23 19:28:36 ----SHD---- C:\$RECYCLE.BIN
2010-04-23 19:28:31 ----D---- C:\Windows\temp
2010-04-23 19:28:30 ----A---- C:\ComboFix.txt
2010-04-23 19:07:18 ----A---- C:\Windows\MBR.exe
2010-04-23 19:07:17 ----A---- C:\Windows\zip.exe
2010-04-23 19:07:17 ----A---- C:\Windows\SWSC.exe
2010-04-23 19:07:17 ----A---- C:\Windows\SWREG.exe
2010-04-23 19:07:17 ----A---- C:\Windows\sed.exe
2010-04-23 19:07:17 ----A---- C:\Windows\PEV.exe
2010-04-23 19:07:17 ----A---- C:\Windows\NIRCMD.exe
2010-04-23 19:07:17 ----A---- C:\Windows\grep.exe
2010-04-23 19:06:16 ----D---- C:\Windows\ERDNT
2010-04-23 19:04:14 ----D---- C:\ComboFix
2010-04-23 19:01:24 ----D---- C:\Qoobox
2010-04-23 19:01:11 ----A---- C:\Windows\SWXCACLS.exe
2010-04-23 17:10:43 ----D---- C:\UsbFix
2010-04-22 22:19:32 ----D---- C:\ProgramData\Spybot - Search & Destroy
2010-04-22 22:19:32 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-04-22 21:12:04 ----A---- C:\Windows\ntbtlog.txt
2010-04-22 18:30:04 ----D---- C:\ProgramData\F-Secure
2010-04-22 17:40:23 ----D---- C:\rsit
2010-04-22 17:39:42 ----D---- C:\Users\MJ\AppData\Roaming\GrabPro
2010-04-22 17:39:42 ----D---- C:\downloads
2010-04-22 17:36:37 ----D---- C:\Program Files\Trend Micro
2010-04-22 16:02:38 ----A---- C:\Windows\system32\SyncBackPro.dll
2010-04-22 16:02:37 ----A---- C:\Windows\system32\NMSAccessU.exe
2010-04-22 14:32:46 ----D---- C:\Program Files\2BrightSparks
2010-04-22 01:22:21 ----D---- C:\Users\MJ\AppData\Roaming\Western DigitalTemp
2010-04-22 01:11:48 ----D---- C:\Users\MJ\AppData\Roaming\Western Digital
2010-04-22 01:11:29 ----D---- C:\ProgramData\Western Digital
2010-04-22 01:08:20 ----D---- C:\Program Files\Western Digital
2010-04-20 08:27:42 ----A---- C:\Windows\system32\javaws.exe
2010-04-20 08:27:42 ----A---- C:\Windows\system32\javaw.exe
2010-04-20 08:27:42 ----A---- C:\Windows\system32\java.exe
2010-04-20 08:27:42 ----A---- C:\Windows\system32\deployJava1.dll
2010-04-18 23:26:12 ----D---- C:\Program Files\a-squared Anti-Malware
2010-04-18 23:23:20 ----D---- C:\Users\MJ\AppData\Roaming\GetRightToGo
2010-04-17 12:41:01 ----RA---- C:\Windows\system32\AdobePDFUI.dll
2010-04-14 22:26:51 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-04-14 22:26:50 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-04-14 22:26:47 ----A---- C:\Windows\system32\vbscript.dll
2010-04-14 22:26:22 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-04-14 11:40:48 ----A---- C:\Windows\system32\cabview.dll
2010-04-14 11:38:02 ----A---- C:\Windows\system32\wintrust.dll
2010-04-10 14:46:53 ----A---- C:\Windows\system32\RealMedia.dll
2010-04-10 14:46:53 ----A---- C:\Windows\system32\QuickTime.dll
2010-04-10 14:45:11 ----AD---- C:\ProgramData\TEMP
2010-04-09 23:17:02 ----D---- C:\Program Files\Common Files\Apple
2010-04-09 22:40:50 ----A---- C:\Windows\system32\clauth2.dll
2010-04-09 22:40:50 ----A---- C:\Windows\system32\clauth1.dll
2010-04-09 22:40:49 ----D---- C:\ProgramData\Minnetonka Audio Software
2010-04-09 22:40:49 ----A---- C:\Windows\system32\sysprs7.dll
2010-04-09 22:40:49 ----A---- C:\Windows\SurCode.INI
2010-04-09 07:13:13 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-04-09 07:11:53 ----D---- C:\Program Files\Winamp Detect
2010-04-09 07:10:59 ----D---- C:\Users\MJ\AppData\Roaming\Winamp
2010-04-09 07:10:59 ----D---- C:\Program Files\Winamp
2010-04-09 04:56:20 ----D---- C:\ProgramData\ALM
2010-04-09 04:51:13 ----D---- C:\AdobeTemp
2010-04-09 03:34:08 ----D---- C:\Users\MJ\AppData\Roaming\PhotoFiltre
2010-04-09 03:33:52 ----D---- C:\Program Files\PhotoFiltre
2010-04-07 18:20:07 ----D---- C:\Users\MJ\AppData\Roaming\Vso
2010-04-07 18:20:07 ----A---- C:\Users\MJ\AppData\Roaming\ezpinst.exe
2010-04-07 18:19:43 ----D---- C:\Program Files\Magic Video Converter
2010-04-07 17:16:16 ----D---- C:\Program Files\FreeTime
2010-04-07 16:51:15 ----D---- C:\Program Files\Total Video Converter
2010-04-07 16:20:14 ----D---- C:\Users\MJ\AppData\Roaming\FreeVideoConverter
2010-04-07 15:20:44 ----D---- C:\Users\MJ\AppData\Roaming\Apple Computer
2010-04-07 13:16:29 ----D---- C:\Program Files\QuickTime
2010-04-06 17:44:55 ----D---- C:\Program Files\Wondershare
2010-04-05 12:01:59 ----D---- C:\Users\MJ\AppData\Roaming\foobar2000
2010-04-05 12:01:40 ----D---- C:\Program Files\foobar2000
2010-04-03 12:59:58 ----D---- C:\Users\MJ\AppData\Roaming\Dexpot
2010-04-03 12:59:52 ----D---- C:\Program Files\Dexpot
2010-03-30 21:39:40 ----A---- C:\Windows\system32\mshtml.dll
2010-03-30 21:39:38 ----A---- C:\Windows\system32\iertutil.dll
2010-03-30 21:39:38 ----A---- C:\Windows\system32\ieframe.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\wininet.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\urlmon.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\occache.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\msfeeds.dll
2010-03-30 21:39:37 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-30 21:39:36 ----A---- C:\Windows\system32\mstime.dll
2010-03-30 21:39:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-30 21:39:34 ----A---- C:\Windows\system32\ieUnatt.exe
2010-03-30 21:39:34 ----A---- C:\Windows\system32\ieui.dll
2010-03-30 21:39:34 ----A---- C:\Windows\system32\iepeers.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\msfeedssync.exe
2010-03-30 21:39:33 ----A---- C:\Windows\system32\jsproxy.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\iesysprep.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\iesetup.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\iernonce.dll
2010-03-30 21:39:33 ----A---- C:\Windows\system32\ie4uinit.exe
2010-03-28 13:35:35 ----D---- C:\Users\MJ\AppData\Roaming\Avira
2010-03-27 16:44:34 ----D---- C:\Users\MJ\AppData\Roaming\Brother
2010-03-27 16:42:58 ----A---- C:\Windows\BRVIDEO.INI
2010-03-27 16:42:58 ----A---- C:\Windows\Brownie.ini
2010-03-27 16:42:58 ----A---- C:\Windows\brmx2001.ini
2010-03-27 16:42:57 ----D---- C:\Program Files\Brownie
2010-03-27 16:42:57 ----A---- C:\Windows\HL-4040CN.INI
2010-03-27 16:42:49 ----N---- C:\Windows\system32\Pdrvinst.dll
2010-03-27 16:42:49 ----D---- C:\Program Files\Brother
2010-03-24 16:14:57 ----D---- C:\ProgramData\Brother
2010-03-24 16:14:57 ----A---- C:\Windows\BRWMARK.INI
2010-03-24 16:14:57 ----A---- C:\Windows\BRPP2KA.INI

======List of files/folders modified in the last 1 months======

2010-04-23 19:48:27 ----D---- C:\Windows\system32\Tasks
2010-04-23 19:46:17 ----D---- C:\Windows
2010-04-23 19:24:40 ----A---- C:\Windows\system.ini
2010-04-23 19:23:46 ----D---- C:\Windows\System32
2010-04-23 19:15:20 ----D---- C:\Windows\system32\drivers
2010-04-23 19:15:20 ----D---- C:\Windows\AppPatch
2010-04-23 19:15:19 ----D---- C:\Program Files\Common Files
2010-04-23 19:09:08 ----SHD---- C:\System Volume Information
2010-04-23 19:01:13 ----D---- C:\Windows\Prefetch
2010-04-23 18:41:01 ----RD---- C:\Program Files
2010-04-23 18:36:59 ----D---- C:\Users\MJ\AppData\Roaming\vlc
2010-04-23 17:16:16 ----D---- C:\Windows\inf
2010-04-23 17:16:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-04-23 16:45:00 ----D---- C:\Users\MJ\AppData\Roaming\Skype
2010-04-23 16:09:11 ----D---- C:\Users\MJ\AppData\Roaming\skypePM
2010-04-23 12:53:12 ----A---- C:\Windows\WORDPAD.INI
2010-04-22 22:19:32 ----D---- C:\ProgramData
2010-04-22 21:24:07 ----D---- C:\Windows\Tasks
2010-04-22 21:21:43 ----D---- C:\Windows\MSAgent
2010-04-22 21:13:33 ----D---- C:\Windows\system32\catroot2
2010-04-22 20:59:41 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-04-22 17:17:23 ----D---- C:\Windows\system32\catroot
2010-04-22 17:16:44 ----D---- C:\Users\MJ\AppData\Roaming\uTorrent
2010-04-22 12:44:57 ----SHD---- C:\Windows\Installer
2010-04-22 12:44:56 ----D---- C:\Config.Msi
2010-04-20 21:37:45 ----D---- C:\Windows\system32\LogFiles
2010-04-20 08:27:33 ----D---- C:\Program Files\Java
2010-04-20 00:28:58 ----D---- C:\Windows\Debug
2010-04-20 00:26:41 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-20 00:26:38 ----D---- C:\Windows\winsxs
2010-04-14 22:37:19 ----D---- C:\Program Files\Windows Mail
2010-04-14 22:34:47 ----D---- C:\ProgramData\Microsoft Help
2010-04-13 18:00:40 ----D---- C:\Users\MJ\AppData\Roaming\Adobe
2010-04-13 11:36:40 ----RSD---- C:\Windows\Fonts
2010-04-13 10:14:02 ----D---- C:\Program Files\Google
2010-04-12 14:26:44 ----D---- C:\Windows\Logs
2010-04-12 14:19:21 ----D---- C:\Program Files\Common Files\PX Storage Engine
2010-04-10 14:36:19 ----D---- C:\Users\MJ\AppData\Roaming\dvdcss
2010-04-09 23:18:28 ----D---- C:\ProgramData\Apple Computer
2010-04-09 04:56:20 ----D---- C:\Program Files\Adobe
2010-04-09 04:45:16 ----D---- C:\Program Files\Common Files\Adobe
2010-04-09 03:44:36 ----D---- C:\Users\MJ\AppData\Roaming\gtk-2.0
2010-04-07 18:10:32 ----A---- C:\Windows\win.ini
2010-04-07 18:07:32 ----D---- C:\Users\MJ\AppData\Roaming\Orbit
2010-04-07 01:00:44 ----D---- C:\Program Files\Common Files\Java
2010-04-06 20:52:54 ----A---- C:\Windows\system32\mrt.exe
2010-04-03 15:49:15 ----D---- C:\Users\MJ\AppData\Roaming\WinEdt
2010-04-02 16:53:34 ----D---- C:\Program Files\Mozilla Firefox
2010-04-01 11:11:07 ----SD---- C:\Users\MJ\AppData\Roaming\Microsoft
2010-03-30 22:28:38 ----D---- C:\Windows\system32\migration
2010-03-30 22:28:38 ----D---- C:\Program Files\Internet Explorer
2010-03-29 21:50:44 ----D---- C:\Program Files\CCleaner

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [2009-02-13 11608]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-03-01 124784]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-02-16 60936]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2007-02-24 39936]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-01-23 42496]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-03-21 37376]
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2006-11-28 1161888]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-04-23 1674240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-05-25 1779104]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-11-17 3668480]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-04-07 47360]
R3 QIOMem;Generic IO & Memory Access; C:\Windows\system32\DRIVERS\QIOMem.sys [2007-04-09 8192]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2010-03-04 261152]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2006-10-27 179896]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-18 16128]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2006-10-23 9216]
R3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
R3 WsAudioDevice_383;WsAudioDevice_383; C:\Windows\system32\drivers\WsAudioDevice_383.sys [2008-11-19 16640]
S3 ah5r61ux;ah5r61ux; C:\Windows\system32\drivers\ah5r61ux.sys []
S3 catchme;catchme; \??\C:\Users\MJ\AppData\Local\Temp\catchme.sys []
S3 Dot4;Pilote MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Pilote de classe Imprimante pour IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 Inspect;Comodo Firewall Network Driver; C:\Windows\system32\DRIVERS\inspect.sys []
S3 ivusb;Initio Driver for USB Default Controller; C:\Windows\system32\DRIVERS\ivusb.sys []
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NETw3v32;Pilote de carte Intel(R) PRO/Wireless 3945ABG pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 NETw4v32;Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
S3 Tosrfcom;Tosrfcom; C:\Windows\system32\drivers\Tosrfcom.sys []
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 UVCFTR;UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [2007-04-16 11776]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 KR10I;KR10I; C:\Windows\system32\drivers\kr10i.sys [2007-01-18 219392]
S4 KR10N;KR10N; C:\Windows\system32\drivers\kr10n.sys [2007-01-18 211072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2006-10-05 9216]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-03-16 267432]
R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2006-11-14 40960]
R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2007-02-12 355096]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 NMSAccess;NMSAccess; C:\Windows\system32\NMSAccessU.exe [2009-01-12 71096]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 SQLBrowser;SQL Server Browser; C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;Enregistreur VSS SQL Server; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 TNaviSrv;TOSHIBA Navi Support Service; C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe [2007-04-27 114688]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2006-05-25 114688]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-08-23 49152]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S2 gupdate1ca3875c843ebd4;Service Google Update (gupdate1ca3875c843ebd4); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-09-18 133104]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-09-25 655624]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2007-11-08 3004416]

-----------------EOF-----------------
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 19:00
info.txt partie 1:

info.txt logfile of random's system information tool 1.06 2010-04-22 17:40:27

======Uninstall list======

-->"C:\Program Files\InstallShield Installation Information\{A644254B-92F6-4970-8635-AB0775371E72}\setup.exe" --u:{A644254B-92F6-4970-8635-AB0775371E72}
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{622E6F16-0904-49B6-BBE1-4CC836314CCF}\setup.exe" -l0x40c
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{697AFC77-F318-4CD4-BF16-F50F4C1072DA}\setup.exe" -l0x40c
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
32 Bit HP CIO Components Installer-->MsiExec.exe /I{2614F54E-A828-49FA-93BA-45A3F756BFAA}
7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe"
Adobe Acrobat 9 Pro - English, Français, Deutsch-->msiexec /I {AC76BA86-1033-F400-7760-000000000004}
Adobe After Effects CS4 Third Party Content-->MsiExec.exe /I{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}
Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}
Adobe Anchor Service CS4-->MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8}
Adobe Bridge CS4-->MsiExec.exe /I{83877DB1-8B77-45BC-AB43-2BAC22E093E0}
Adobe CMaps CS4-->MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191}
Adobe Color - Photoshop Specific CS4-->MsiExec.exe /I{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}
Adobe Color EU Recommended Settings CS4-->MsiExec.exe /I{0DC0E85F-36E4-463B-B3EA-4CD8ED2222A1}
Adobe Color JA Extra Settings CS4-->MsiExec.exe /I{0D6013AB-A0C7-41DC-973C-E93129C9A29F}
Adobe Color NA Extra Settings CS4-->MsiExec.exe /I{098A2A49-7CF3-4F08-A38D-FB879117152A}
Adobe Color Video Profiles CS CS4-->MsiExec.exe /I{63C24A08-70F3-4C8E-B9FB-9F21A903801D}
Adobe Creative Suite 4 Master Collection-->C:\Program Files\Common Files\Adobe\Installers\b2d6abde968e6f277ddbfd501383e02\Setup.exe --uninstall=1
Adobe Creative Suite 4 Master Collection-->MsiExec.exe /I{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}
Adobe CS4 American English Speech Analysis Models-->MsiExec.exe /I{297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}
Adobe CSI CS4-->MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF}
Adobe Default Language CS4-->MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683}
Adobe Device Central CS4-->MsiExec.exe /I{67F0E67A-8E93-4C2C-B29D-47C48262738A}
Adobe Drive CS4-->MsiExec.exe /I{16E16F01-2E2D-4248-A42F-76261C147B6C}
Adobe Dynamiclink Support-->MsiExec.exe /I{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}
Adobe Encore CS4 Codecs-->MsiExec.exe /I{FB2A5FCC-B81B-48C2-A009-7804694D83E9}
Adobe ExtendScript Toolkit CS4-->MsiExec.exe /I{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}
Adobe Extension Manager CS4-->MsiExec.exe /I{054EFA56-2AC1-48F4-A883-0AB89874B972}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Fonts All-->MsiExec.exe /I{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}
Adobe Illustrator CS4-->MsiExec.exe /I{87532CAB-7932-4F84-8937-823337622807}
Adobe Linguistics CS4-->MsiExec.exe /I{931AB7EA-3656-4BB7-864D-022B09E3DD67}
Adobe Media Encoder CS4 Additional Exporter-->MsiExec.exe /I{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}
Adobe Media Encoder CS4 Dolby-->MsiExec.exe /I{EE353798-E875-42E0-B58D-7E6696182EA8}
Adobe Media Encoder CS4 Exporter-->MsiExec.exe /I{561968FD-56A1-49FD-9ED0-F55482C7C5BC}
Adobe Media Encoder CS4 Importer-->MsiExec.exe /I{8186FF34-D389-4B7E-9A2F-C197585BCFBD}
Adobe Media Encoder CS4-->MsiExec.exe /I{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}
Adobe Output Module-->MsiExec.exe /I{BB4E33EC-8181-4685-96F7-8554293DEC6A}
Adobe PDF Library Files CS4-->MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353}
Adobe Photoshop CS4 Support-->MsiExec.exe /I{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}
Adobe Photoshop CS4-->MsiExec.exe /I{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}
Adobe Premiere Pro CS4 Functional Content-->MsiExec.exe /I{B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7}
Adobe Premiere Pro CS4 Third Party Content-->MsiExec.exe /I{C938BE91-3BB5-4B84-9EF6-88F0505D0038}
Adobe Premiere Pro CS4-->MsiExec.exe /I{D499F8DE-3F31-4900-9157-61061613704B}
Adobe Reader 9.3.1 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A93000000001}
Adobe Search for Help-->MsiExec.exe /I{F0E64E2E-3A60-40D8-A55D-92F6831875DA}
Adobe Service Manager Extension-->MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}
Adobe Setup-->MsiExec.exe /I{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}
Adobe Soundbooth CS4 Codecs-->MsiExec.exe /I{52232EF4-CC12-4C21-ABCF-ADB79618302D}
Adobe Type Support CS4-->MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
Adobe Update Manager CS4-->MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}
Adobe XMP Panels CS4-->MsiExec.exe /I{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}
AdobeColorCommonSetCMYK-->MsiExec.exe /I{68243FF8-83CA-466B-B2B8-9F99DA5479C4}
AdobeColorCommonSetRGB-->MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
Apple Application Support-->MsiExec.exe /I{553255F3-78FD-40F1-A6F8-6882140265FE}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Aspell English Dictionary-0.50-2-->"C:\Program Files\Aspell\unins001.exe"
Aspell French Dictionary-0.50-3-->"C:\Program Files\Aspell\unins002.exe"
Assistant de connexion Windows Live ID-->MsiExec.exe /X{10A44844-4465-456E-8C97-80BDD4F68845}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
Bibliothèques GTK+ 2.14.7 rev a (supprimer uniquement)-->C:\Program Files\Common Files\GTK\2.0\uninst.exe
Bluetooth Stack for Windows by Toshiba-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}
Brother HL-4040CN-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{27215A50-EAB5-4393-BD20-ABE50889ED5F}\setup.exe" -l0x9 -removeonly /uninst
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}
Codeur Windows Media Série 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Combined Community Codec Pack 2009-09-09-->"C:\Program Files\Combined Community Codec Pack\unins000.exe"
Connect-->MsiExec.exe /I{B29AD377-CC12-490A-A480-1452337C618D}
Correctif logiciel pour Microsoft Visual Studio 2008 Professional Edition - Français (KBKB971091)-->C:\Windows\system32\msiexec.exe /package {6914733B-F128-37F6-8BB5-920C34071129} /uninstall {06694B0F-B778-4E13-B841-4FF9CC81D0C5} /qb+ REBOOTPROMPT=""
Correctif logiciel pour Microsoft Visual Studio 2008 Professional Edition - Français (KBKB973674)-->C:\Windows\system32\msiexec.exe /package {6914733B-F128-37F6-8BB5-920C34071129} /uninstall {E1404B9C-5F36-406A-B720-70FA3F242B7B} /qb+ REBOOTPROMPT=""
Crystal Reports Basic for Visual Studio 2008-->MsiExec.exe /X{AA467959-A1D6-4F45-90CD-11DC57733F32}
Crystal Reports Basic French Language Pack for Visual Studio 2008-->MsiExec.exe /X{2516845C-017F-4036-828B-3365FF640AB6}
CutePDF Writer 2.8-->C:\Program Files\Acro Software\CutePDF Writer\uninscpw.exe
Dexpot-->"C:\Program Files\Dexpot\uninstall.exe"
DimSum 0.7.9-->"C:\Program Files\ChineseTools\unins000.exe"
DjVuLibre+DjView-->C:\Program Files\DjVuZone\DjVuLibre\uninst.exe
DVD MovieFactory for TOSHIBA-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}\setup.exe" -l0x40c
EndNote X3-->MsiExec.exe /I{86B3F2D6-AC2B-4E88-8AE1-F2F77F781B0C}
Fichiers de prise en charge de l'installation de Microsoft SQL Server (Français)-->MsiExec.exe /X{3380F354-C5F7-4E71-8F51-EEE6C3F06C62}
foobar2000 v1.0.1-->"C:\Program Files\foobar2000\uninstall.exe" _?=C:\Program Files\foobar2000
FreeFem++ version 3.6-1-->"C:\Program Files\FreeFem++\unins000.exe"
FreeFem++-cs version 9.11-->"C:\Program Files\FreeFem++-cs-9.11\unins000.exe"
gBurner-->"C:\Program Files\gBurner\uninstall.exe"
GDR 4053 for SQL Server Database Services 2005 ENU (KB970892)-->C:\Windows\SQL9_KB970892_ENU\Hotfix.exe /Uninstall
GDR 4053 for SQL Server Tools and Workstation Components 2005 ENU (KB970892)-->C:\Windows\SQLTools9_KB970892_ENU\Hotfix.exe /Uninstall
GNU Aspell 0.50-3-->"C:\Program Files\Aspell\unins000.exe"
Google Chrome-->"C:\Program Files\Google\Chrome\Application\4.1.249.1045\Installer\setup.exe" --uninstall --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{08C0729E-3E50-11DF-9D81-005056806466}
GPL Ghostscript 8.64-->C:\Program Files\gs\uninstgs.exe "C:\Program Files\gs\gs8.64\uninstal.txt"
GSview 4.9-->C:\Program Files\Ghostgum\gsview\uninstgs.exe "C:\Program Files\Ghostgum\gsview\uninstal.txt"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Deskjet F4200 All-In-One Driver Software 11.0 Rel .3-->C:\Program Files\HP\Digital Imaging\{C3B6AEB1-390C-4792-8677-CD87F8B2C959}\setup\hpzscr01.exe -datfile hposcr28.dat -onestop
HP Imaging Device Functions 11.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Solution Center 13.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat -forcereboot
HP Update-->MsiExec.exe /X{818ABC3C-635C-4651-8183-D0E9640B7DD1}
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31}
Intel Matrix Storage Manager-->C:\Windows\system32\imsmudlg.exe -uninstall
Intel(R) Graphics Media Accelerator Driver-->C:\Windows\system32\igxpun.exe -uninstall
Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216019FF}
Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}
kuler-->MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243}
Lizardtech DjVu Control-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{105CFC7C-6992-11D5-BD9D-000102C10FD8}\Setup.exe" -l0x40c
Logitech SetPoint-->"C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe" -runfromtemp -l0x040c -removeonly
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MATLAB R2009b-->C:\Program Files\MATLAB\R2009b\uninstall\uninstall.exe C:\Program Files\MATLAB\R2009b\
Media Player Classic - Home Cinema v. 1.3.1249.0-->"C:\Program Files\MPC HomeCinema\unins000.exe"
mEdit 2008R3-->C:\Program Files\mEdit\uninst.exe
Mendeley Desktop 0.9.6.2-->C:\Program Files\Mendeley Desktop\Uninstall.exe
Microsoft .NET Framework 3.5 Language Pack SP1 - fra-->MsiExec.exe /I{3E31821C-7917-367E-938E-E65FC413EA31}
Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Device Emulator version 3.0 - FRA-->MsiExec.exe /X{A5774693-2D17-3E6C-9324-97B17C5AA1E9}
Microsoft Document Explorer 2008 Language Pack - FRA-->MsiExec.exe /X{AACA7728-BE87-3D11-8A3F-773664BFCF1B}
Microsoft Document Explorer 2008-->C:\Program Files\Common Files\Microsoft Shared\Help 9\Microsoft Document Explorer 2008\install.exe
Microsoft Document Explorer 2008-->MsiExec.exe /X{6753B40C-0FBD-3BED-8A9D-0ACAC2DCD85D}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0012-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-040C-0000-0000000FF1CE} /uninstall {B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Live Add-in 1.4-->MsiExec.exe /I{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0021-040C-0000-0000000FF1CE} /uninstall {CCDA3DD6-E33D-4D75-B7C9-FF585580CE83}
Microsoft Office Standard 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall STANDARD /dll OSETUP.DLL
Microsoft Office Standard 2007-->MsiExec.exe /X{90120000-0012-0000-0000-0000000FF1CE}
Microsoft Office Visual Web Developer 2007-->MsiExec.exe /X{90120000-0021-0000-0000-0000000FF1CE}
Microsoft Office Visual Web Developer MUI (French) 2007-->MsiExec.exe /X{90120000-0021-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Reader-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B6F7DBE7-2FE2-458F-A738-B10832746036}\Setup.exe" -L0x40c
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Express Edition (SQLEXPRESS)-->MsiExec.exe /I{480DBB60-F0B6-45F2-B26F-1A2E11197791}
Microsoft SQL Server 2005 Tools Express Edition-->MsiExec.exe /I{3F59A7E0-BC01-4435-9E93-C7D7015C21DA}
Microsoft SQL Server 2005-->"C:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
Microsoft SQL Server Compact 3.5 Design Tools FRA-->MsiExec.exe /X{043ECF7B-4724-4F7B-8A9D-BC22719E95F7}
Microsoft SQL Server Compact 3.5 for Devices FRA-->MsiExec.exe /I{B4C6D770-DF2E-4731-8869-F89BA6670DDA}
Microsoft SQL Server Compact 3.5 FRA-->MsiExec.exe /I{BE361597-42AC-4513-9BA6-FFAB310038FB}
Microsoft SQL Server Database Publishing Wizard 1.2-->MsiExec.exe /X{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}
Microsoft SQL Server Native Client-->MsiExec.exe /I{1F24E48F-7692-4E89-8784-68DD4D2712A0}
Microsoft SQL Server VSS Writer-->MsiExec.exe /I{A30179B7-997A-4D47-AA43-57AE59A9C78B}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218-->MsiExec.exe /X{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack-->C:\Program Files\Common Files\Microsoft Shared\VSTO\8.0\Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack\install.exe
Microsoft Visual Studio 2005 Tools for Office Runtime-->MsiExec.exe /X{388E4B09-3E71-4649-8921-F44A3A2954A7}
Microsoft Visual Studio 2008 Professional Edition - Français-->C:\Program Files\Microsoft Visual Studio 9.0\Microsoft Visual Studio 2008 Professional Edition - FRA\setup.exe
Microsoft Visual Studio Web Authoring Component-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall VISUALWEBDEVELOPER /dll OSETUP.DLL
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools-->MsiExec.exe /X{6E88CC59-832E-39AF-AE17-B9017DDB12C3}
Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework-->MsiExec.exe /X{AB47EEE8-507B-331F-AA28-B7C7257F014C}
Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32-->MsiExec.exe /X{07FCBED5-94C3-4F94-B9D3-360FA27C7B06}
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries-->MsiExec.exe /X{842FAF7C-50EF-4463-9B8F-6222E1384D7D}
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense-->MsiExec.exe /X{64c5b887-b5ee-42b8-8596-78905a6b5f1f}
Microsoft Windows SDK for Visual Studio 2008 Tools-->MsiExec.exe /X{CAA376AF-0DE8-4FCA-942E-C6AC579B94B3}
Microsoft Windows SDK for Visual Studio 2008 Win32 Tools-->MsiExec.exe /X{B268E9A1-04A9-40D0-9866-846BE2B74BA7}
MiKTeX 2.8-->"C:\Program Files\MiKTeX 2.8\miktex\bin\internal\copystart_admin.exe" "C:\Program Files\MiKTeX 2.8\miktex\bin\internal\uninstall_admin.exe"
MinGW 5.1.6-->C:\MinGW\uninst.exe
Mise à jour pour Microsoft Visual Studio 2008 Professional Edition - Français (KBKB972221)-->C:\Windows\system32\msiexec.exe /package {6914733B-F128-37F6-8BB5-920C34071129} /uninstall {D2313FB6-9E59-4846-9910-C0990A01D20D} /qb+ REBOOTPROMPT=""
Module linguistique Microsoft .NET Framework 3.5 SP1- fra-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - fra\setup.exe
Module linguistique Microsoft Document Explorer 2008 - FRA-->C:\Program Files\Common Files\Microsoft Shared\Help 9\Microsoft Document Explorer 2008 Language Pack - FRA\install.exe
Module linguistique Visual Studio Tools pour Office System 3.0 Runtime - FRA-->C:\Program Files\Common Files\Microsoft Shared\VSTO\9.0\Visual Studio Tools for the Office system 3.0 Runtime Language Pack - FRA\install.exe
Mozilla Firefox (3.6.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSDN Library for Visual Studio 2008 - FRA-->MsiExec.exe /X{24F3019E-D2AB-3DAA-A02E-470352304005}
MSDN Library pour les éditions Microsoft Visual Studio 2008 Express-->C:\Program Files\Microsoft Visual Studio 9.0\MSDN Library for Microsoft Visual Studio 2008 Express Editions\install.exe
MSDN Library pour Visual Studio 2008 - FRA-->C:\Program Files\MSDN\MSDN9.0\MSDN Library for Visual Studio 2008 - FRA\setup.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
OpenOffice.org 3.2-->MsiExec.exe /I{4EE2EF4B-25D3-4D44-8384-A2B96F811F55}
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PDF Settings CS4-->MsiExec.exe /I{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}
PercussionStudio3-->C:\Program Files\PercussionStudio3\uninstall.exe
Photoshop Camera Raw-->MsiExec.exe /I{CC75AB5C-2110-4A7F-AF52-708680D22FE8}
Photron FASTCAM Viewer 3-->C:\Program Files\InstallShield Installation Information\{0E60EE9B-D6AE-4327-998B-5EBA09E5B4F0}\setup.exe -runfromtemp -l0x0409
QuickTime-->MsiExec.exe /I{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}
Rampant Logic Postscript Viewer 1.1-->"C:\Program Files\Rampant Logic Postscript Viewer\unins000.exe"
RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|12.0
Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista-->C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x040c -removeonly
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
RealUpgrade 1.0-->MsiExec.exe /I{F4F4F84E-804F-4E9A-84D7-C34283F0088F}
Réducteur de bruit du lecteur de CD/DVD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}\setup.exe" -l0x40c
ResearchSoft Direct Export Helper-->C:\PROGRA~1\COMMON~1\Risxtd\_UNINST.EXE
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{59F6A514-9813-47A3-948C-8A155460CC2A}\setup.exe" -l0x40c anything
Security Update for 2007 Microsoft Office System (KB951550)-->msiexec /package {90120000-0021-0000-0000-0000000FF1CE} /uninstall {B243E9A5-ED77-4F1B-B338-2486FD82DC85}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {90120000-0012-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB978380)-->msiexec /package {90120000-0012-0000-0000-0000000FF1CE} /uninstall {667A88D1-0369-4070-A62A-70672D68A9BF}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
0
MJ1984 Messages postés 29 Date d'inscription jeudi 22 avril 2010 Statut Membre Dernière intervention 24 avril 2010
23 avril 2010 à 20:08
Le fichier ne revient pas. J'ai récupéré Firefox.

Merci,
MJ.
0