496 utilisateurs connectés
TROJAN : Downloader. Generic_c.AGS
HUB DE ROE
le 07 juin 2009 à 19h12
Mon anti-virus AVG8 FREE, me trouve un cheval de troie :Downloader. Generic_c.AGS, le place en quarantaine mais n'arrive pas à le supprimer.
Je suis sous windows XP
D'avance merci à vous
Je suis sous windows XP
D'avance merci à vous
répondre
bzhatao
le 07 juin 2009 à 19h16
HUB DE ROE Télécharges RSIT
(de random/random) sur le bureau ici :
http://images.malwareremoval.com/random/RSIT.exe
- Double clique sur RSIT.exe qui est sur le bureau
- Clique sur Continue dans la fenêtre
- RSIT téléchargera HijackThis si il n’est pas présent où détecté, alors il faudra accepter la licence
- Poste le contenu de log.txt plus info.txt (réduit ds la barre de taches) à la fin de l’analyse .
Les rapports sont dans le dossier ici C:\rsit
a+
HUB DE ROE
le 07 juin 2009 à 19h28
Logfile of random's system information tool 1.06 (written by random/random)
Run by HUBERT at 2009-06-07 19:23:16
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 85 GB (73%) free of 117 GB
Total RAM: 1791 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:24:38, on 07/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Fighters\configservice.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Fighters\licenseservice.exe
C:\Program Files\Fighters\updateservice.exe
C:\Program Files\Fighters\ScannerService.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\BITWARE\NT\bwprnmon.exe
C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\WINDOWS\system32\ntvdm.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
c:\program files\fighters\spywarefighter\SPYWAREfighterTray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\AVG\AVG8\avgui.exe
C:\Program Files\AVG\AVG8\avgscanx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\FREEDO~1\FDM.exe
C:\Documents and Settings\HUBERT\Bureau\RSIT.exe
C:\Program Files\trend micro\HUBERT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aliceadsl.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [bwprnmon.exe] C:\BITWARE\NT\bwprnmon.exe
O4 - HKLM\..\Run: [AliceSAV] C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [spywarefighterguard] C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [uxqwohj] rundll32.exe "C:\WINDOWS\system32\yuxudu.dll",gdpmejb (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun (User 'FAMILLE')
O4 - Startup: .lnk = C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
O4 - Startup: Moteur du Planificateur de tâches SolidWorks.lnk = C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PTK License-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\licenseservice.exe
O23 - Service: PTK Live Update-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\updateservice.exe
O23 - Service: PTK Scanner-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\ScannerService.exe
O23 - Service: PTK SharedAccess-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\configservice.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
--
End of file - 9730 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-05-04 1107224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-23 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{955BE0B8-BC85-4CAF-856E-8E0D8B610560}]
BHO pour Compagnon Web Encarta - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL [2005-06-04 228048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-05-04 2223872]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2009-03-02 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-23 34816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-23 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{147D6308-0614-4112-89B1-31402F9B82C4} - Compagnon Web Encarta - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL [2005-06-04 228048]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-05-04 2223872]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"bwprnmon.exe"=C:\BITWARE\NT\bwprnmon.exe [2006-09-17 54272]
"AliceSAV"=C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe [2005-12-16 81408]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-23 136600]
"MediaSync"=C:\Program Files\Acer\Acer eConsole\MediaSync.exe [2005-09-21 425984]
"LaunchApp"=Alaunch []
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"eRecoveryService"=C:\Acer\Empowering Technology\eRecovery\Monitor.exe [2005-11-16 397312]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-05-04 1947928]
"AspireService"=C:\Program Files\Acer\Acer eMode Management\AspireService.exe [2005-09-29 114688]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-07-09 919016]
"spywarefighterguard"=C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe [2008-11-18 180872]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2008-12-19 1434864]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDNewsAgent]
c:\program files\softwin\bitdefender8\bdnagent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanalPlayer]
C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ntiMUI]
c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe [2005-05-11 45056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^LUMIX Simple Viewer.lnk.disabled]
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\LUMIX Simple Viewer.lnk.disabled []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"usnjsvc"=3
"SolidWorks Licensing Service"=3
"Service CANALPLAY"=3
"Boonty Games"=3
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Démarrage rapide du logiciel HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
C:\Documents and Settings\HUBERT\Menu Démarrer\Programmes\Démarrage
.lnk - C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
Moteur du Planificateur de tâches SolidWorks.lnk - C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-04-15 46080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2009-05-04 11952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"WizmaxBackup_NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"WizmaxBackup_NoDriveTypeAutoRun"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Acer\Acer eConsole\MediaSync.exe"="C:\Program Files\Acer\Acer eConsole\MediaSync.exe:LocalSubNet:Enabled:Media Synchoronizer"
"C:\Program Files\Acer\Acer eConsole\eConsole.exe"="C:\Program Files\Acer\Acer eConsole\eConsole.exe:LocalSubNet:Enabled:eConsole"
"C:\Program Files\Acer\Acer eConsole\MediaServerService.exe"="C:\Program Files\Acer\Acer eConsole\MediaServerService.exe:LocalSubNet:Enabled:Acer Media Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\StubInstaller.exe"="C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\WINDOWS\system32\fxsclnt.exe"="C:\WINDOWS\system32\fxsclnt.exe:*:Enabled:Microsoft Fax Console"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\svchost.exe"="C:\WINDOWS\system32\svchost.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\32exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\32exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\22exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\22exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\15exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\15exinjs.a6.exe:*:Disabled:15exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\45exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\45exinjs.a6.exe:*:Disabled:45exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\88exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\88exinjs.a6.exe:*:Disabled:88exinjs.a6"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\77exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\77exinjs.a6.exe:*:Disabled:77exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\85exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\85exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\46exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\46exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\90exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\90exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\4exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\4exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\9exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\9exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\35exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\35exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\66exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\66exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\86exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\86exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\67exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\67exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\42exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\42exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\57exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\57exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\23exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\23exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\10exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\10exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\16exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\16exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\69exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\69exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\45exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\45exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\65exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\65exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\0exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\0exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\20exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\20exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\71exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\71exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\64exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\64exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\5exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\5exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\44exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\44exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\13exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\13exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\41exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\41exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\93exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\93exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\40exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\40exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\43exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\43exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\58exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\58exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\59exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\59exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\25exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\25exinjs.a9.exe:*:Disabled:25exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\40exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\40exinjs.a9.exe:*:Disabled:40exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\99exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\99exinjs.a9.exe:*:Disabled:99exinjs.a9"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\53exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\53exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\32exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\32exinjs.a9.exe:*:Disabled:32exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\97exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\97exinjs.a9.exe:*:Disabled:97exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\46exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\46exinjs.a9.exe:*:Disabled:46exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\67exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\67exinjs.a9.exe:*:Disabled:67exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\15exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\15exinjs.a9.exe:*:Disabled:15exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\30exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\30exinjs.a9.exe:*:Disabled:30exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\31exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\31exinjs.a9.exe:*:Disabled:31exinjs.a9"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\29exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\29exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\15exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\15exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\84exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\84exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\33exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\33exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\38exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\38exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\79exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\79exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\36exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\36exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\61exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\61exinjs.a9.exe:*:Enabled:Microsoft Update"
"D:\SOLIDWORS\BitDownload\BitDownload.exe"="D:\SOLIDWORS\BitDownload\BitDownload.exe:*:Enabled:Warez3"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\81exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\81exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\31exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\31exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\82exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\82exinjs.a9.exe:*:Enabled:Microsoft Update"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
======List of files/folders created in the last 1 months======
2009-06-07 19:23:18 ----D---- C:\Program Files\trend micro
2009-06-07 19:23:16 ----D---- C:\rsit
2009-06-06 22:21:56 ----D---- C:\Program Files\Fighters
2009-06-06 22:21:56 ----D---- C:\Documents and Settings\All Users\Application Data\Fighters
2009-06-06 22:19:57 ----A---- C:\Documents and Settings\HUBERT\Application Data\install.txt
2009-06-05 22:39:18 ----A---- C:\WINDOWS\~DF2CA5.tmp
2009-05-26 22:34:23 ----A---- C:\Program Files\ccsetup219.exe
2009-05-26 22:28:05 ----A---- C:\TCleaner.txt
2009-05-25 21:18:21 ----D---- C:\Documents and Settings\HUBERT\Application Data\Malwarebytes
2009-05-25 21:18:12 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
======List of files/folders modified in the last 1 months======
2009-06-07 19:24:43 ----D---- C:\WINDOWS\temp
2009-06-07 19:23:58 ----D---- C:\WINDOWS\Prefetch
2009-06-07 19:23:22 ----D---- C:\WINDOWS\Internet Logs
2009-06-07 19:23:18 ----RD---- C:\Program Files
2009-06-07 18:51:05 ----D---- C:\temp
2009-06-07 18:31:48 ----D---- C:\Documents and Settings\HUBERT\Application Data\SolidWorks
2009-06-07 18:23:43 ----D---- C:\WINDOWS\Debug
2009-06-07 18:23:42 ----D---- C:\WINDOWS
2009-06-07 18:23:41 ----D---- C:\WINDOWS\Minidump
2009-06-07 18:23:40 ----A---- C:\WINDOWS\system32\eRLog.ini
2009-06-07 18:23:38 ----AD---- C:\WINDOWS\system32
2009-06-07 13:01:11 ----HD---- C:\$AVG8.VAULT$
2009-06-07 12:10:40 ----N---- C:\WINDOWS\SchedLgU.Txt
2009-06-06 23:42:23 ----D---- C:\WINDOWS\system32\CatRoot2
2009-06-06 23:38:28 ----D---- C:\Documents and Settings\HUBERT\Application Data\Free Download Manager
2009-06-06 22:29:34 ----SHD---- C:\WINDOWS\Installer
2009-06-06 22:28:58 ----HD---- C:\Config.Msi
2009-06-06 22:28:34 ----HD---- C:\WINDOWS\inf
2009-06-06 22:28:34 ----AD---- C:\WINDOWS\system32\drivers
2009-06-06 22:01:40 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-06-06 17:11:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-06-04 22:10:04 ----D---- C:\Downloads
2009-06-04 21:40:19 ----A---- C:\WINDOWS\NeroDigital.ini
2009-05-27 22:47:16 ----SHD---- C:\System Volume Information
2009-05-27 22:47:16 ----D---- C:\WINDOWS\system32\Restore
2009-05-26 22:35:49 ----D---- C:\Program Files\CCleaner
2009-05-24 13:52:18 ----A---- C:\AILog.txt
2009-05-20 21:47:54 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-05-20 21:25:06 ----D---- C:\Documents and Settings\HUBERT\Application Data\dvdcss
2009-05-08 19:36:13 ----D---- C:\Program Files\Free Download Manager
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-05-04 325896]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-05-04 27784]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-05-04 108552]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 KLIF;KLIF; C:\WINDOWS\system32\DRIVERS\klif.sys [2007-07-19 127768]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-04-08 54272]
R1 UBHelper;UBHelper; C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 13952]
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
R2 CdaC15BA;CdaC15BA; \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS []
R2 int15.sys;int15.sys; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys []
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2003-12-04 11264]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-04-15 1130496]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-11-14 4625408]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2005-12-16 6144]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 Vfscan;Vfscan; C:\WINDOWS\system32\DRIVERS\vffilter.sys [2008-11-18 15496]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-03-30 230400]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 catchme;catchme; \??\C:\DOCUME~1\HUBERT\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 C-Dilla;C-Dilla; \??\C:\WINDOWS\system32\drivers\CDANT.SYS []
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
S3 JL2005;JL2005A Toy Camera; C:\WINDOWS\System32\Drivers\toywdm.sys []
S3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2004-08-05 126686]
S3 Mtlstrm;Mtlstrm; C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2004-08-05 1309184]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NtMtlFax;NtMtlFax; C:\WINDOWS\system32\DRIVERS\NtMtlFax.sys [2004-08-05 180360]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2007-04-15 47360]
S3 SaiH040B;SaiH040B; C:\WINDOWS\system32\DRIVERS\SaiH040B.sys [2007-05-01 132232]
S3 SaiU040B;SaiU040B; C:\WINDOWS\system32\DRIVERS\SaiU040B.sys [2007-05-01 28416]
S3 skeyusb;SmartKey USB; C:\WINDOWS\System32\Drivers\skeyusb.sys [2002-11-18 17888]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 Slnt7554;USB Soft Modem Driver; C:\WINDOWS\system32\DRIVERS\slnt7554.sys [2004-08-05 129535]
S3 SlNtHal;SlNtHal; C:\WINDOWS\system32\DRIVERS\Slnthal.sys [2004-08-05 95424]
S3 SlWdmSup;SlWdmSup; C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2004-08-05 13240]
S3 SQTECH905C;Dual Camera; C:\WINDOWS\System32\Drivers\Capt905c.sys [2005-06-17 33545]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\IDS-DI~1\20060901.084\symidsco.sys []
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Acer Media Server;Acer Media Server; C:\Program Files\Acer\Acer eConsole\MediaServerService.exe [2005-09-21 438272]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-04-15 364544]
R2 avg8wd;AVG8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-05-04 298776]
R2 C-DillaSrv;C-DillaSrv; C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE [2001-09-10 32256]
R2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-23 152984]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
R2 PTK License-FIGHTERS-297811811;PTK License-FIGHTERS-297811811; C:\Program Files\Fighters\licenseservice.exe [2008-11-18 283272]
R2 PTK Live Update-FIGHTERS-297811811;PTK Live Update-FIGHTERS-297811811; C:\Program Files\Fighters\updateservice.exe [2008-11-18 307848]
R2 PTK Scanner-FIGHTERS-297811811;PTK Scanner-FIGHTERS-297811811; C:\Program Files\Fighters\ScannerService.exe [2008-11-18 311944]
R2 PTK SharedAccess-FIGHTERS-297811811;PTK SharedAccess-FIGHTERS-297811811; C:\Program Files\Fighters\configservice.exe [2008-11-18 139912]
R2 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2008-04-14 73796]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe [2008-07-05 79360]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]
S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.06 2009-06-07 19:25:14
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Acer eConsole-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EC028E6B-F3F1-4192-B63E-A7C97302ED5A}\setup.exe" -l0x40c
Acer eMode Management-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{65CDEC30-4BF4-48FB-8059-9FC480E4E94F}\setup.exe" -l0x40c
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Alice Auto-diagnostic-->C:\Program Files\TechCity Solutions\AliceSAV\uninstall.exe
ArcSoft Software Suite-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E397B40-13F7-4CA2-9943-ADB29ACBBFDF}\setup.exe" -l0x40c
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AVG 8.5-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
C-Dilla Licence Management System-->C:\C_DILLA\setup\cdunin16.exe
Collection Microsoft Encarta 2006-->MsiExec.exe /I{06180000-3E21-46D6-9A91-D927BA08F41D}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
Guide C.E. l'essentiel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4DED81FF-FD0D-42F2-984B-A59228A6C7FD}\setup.exe"
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Document Viewer 5.3-->C:\Program Files\HP\Digital Imaging\DocumentViewer\hpzscr01.exe -datfile hpqbud04.dat
HP Image Zone 5.3-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Imaging Device Functions 5.3-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP PSC & OfficeJet 5.3.A-->"C:\Program Files\HP\Digital Imaging\{3E386744-10FA-44b2-98C9-DF7A270DECB3}\setup\hpzscr01.exe" -datfile hposcr06.dat
HP Solution Center & Imaging Support Tools 5.3-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
J2SE Runtime Environment 5.0 Update 10-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
J2SE Runtime Environment 5.0 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150050}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Kit de Connexion Alice ADSL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A0221AD-D30B-4320-8F9B-1D0F0E6C6843}\setup.exe" -l0x40c ControlPanel
L&H TTS3000 Français-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\LHTTSFRF.inf, Uninstall
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LimeWire 4.18.8-->"C:\Program Files\LimeWire\uninstall.exe"
LUMIX Simple Viewer-->C:\Program Files\InstallShield Installation Information\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}\setup.exe -runfromtemp -l0x040c -removeonly
Macromedia Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft .NET Framework 3.0-->MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft Age of Empires II-->"C:\Program Files\Microsoft Games\Age of Empires II\UNINSTAL.EXE" /runtemp /uninstall
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2003 Web Components-->MsiExec.exe /I{90120000-00A4-0409-0000-0000000FF1CE}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Nero OEM-->D:\NERO\nero\uninstall\UNNERO.exe /UNINSTALL
NTI Backup NOW! 4-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{385979FE-DC4F-4140-8EAD-A59625000D72} /l1036 BUN4
NTI CD & DVD-Maker-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} /l1036 CDM7
NTI HomeVideo-Maker-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8A6F713-D72D-47AD-A92D-B5C0E13F98C1}\setup.exe" -l0x40c
OpenOffice.org 3.0-->MsiExec.exe /I{1572F66F-F9AD-4D45-B0D2-0F45A0D5A0F6}
Package de base Microsoft de service de chiffrement pour cartes à puce-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
PHOTOfunSTUDIO -viewer--->C:\Program Files\InstallShield Installation Information\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}\Setup.exe -runfromtemp -l0x040cPackage -removeonly
PlayStation(R)Network Downloader-->MsiExec.exe /X{BC4CA8FA-41D2-4B81-8680-E9B7573D6500}
PlayStation(R)Store-->MsiExec.exe /X{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
Race Driver 2-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{D474A0E8-4421-43C0-BE8E-F454F91E2E2A} /l1036
RAW Thumbnail Viewer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAEF3BE9-F5CF-4355-BBC3-90134AD070F8}\Setup.exe" -l0x9
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
SolidWorks 2008 SP0-->MsiExec.exe /I{CE3DA0AA-6784-4548-84B6-E0F89637E407}
Sony Media Manager for PSP 3.0-->MsiExec.exe /X{21C6344A-918B-4D35-ADB6-7614F97B78EA}
SPYWAREfighter-->"C:\Program Files\Fighters\spywarefighter\Uninstall.exe" Remove
SPYWAREfighter-->MsiExec.exe /I{B940005A-1212-4E87-885B-1FF80B40D6F4}
Studio 9-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E491AB7-4589-48CA-9CBB-874CB2788391}\Setup.exe" -l0x40c UNINSTALL
Tomb Raider: Legend 1.0-->D:\TOMB RAIDER\Tomb Raider - Legend\uninsttrl.exe
VLC media player 0.9.4-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp-->"D:\Winamp\UninstWA.exe"
Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
ZoneAlarm-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe
======Hosts File======
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
======Security center information======
AV: AVG Anti-Virus Free
FW: ZoneAlarm Firewall (disabled)
======System event log======
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Service de la passerelle de la couche Application est entré dans l'état : en cours d'exécution.
Record Number: 135544
Source Name: Service Control Manager
Time Written: 20090430195135.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service de la passerelle de la couche Application.
Record Number: 135543
Source Name: Service Control Manager
Time Written: 20090430195135.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Carte de performance WMI est entré dans l'état : arrêté.
Record Number: 135542
Source Name: Service Control Manager
Time Written: 20090430195134.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Carte de performance WMI est entré dans l'état : en cours d'exécution.
Record Number: 135541
Source Name: Service Control Manager
Time Written: 20090430195133.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Carte de performance WMI.
Record Number: 135540
Source Name: Service Control Manager
Time Written: 20090430195133.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
=====Application event log=====
Computer Name: ACER-755E621E64
Event Code: 1517
Message: Windows a sauvegardé le Registre utilisateur ACER-755E621E64\HUBERT alors qu'une application ou un service utilisait toujours le Registre pendant la fermeture de la session. La mémoire utilisée par le Registre de l'utilisateur n'a pas été libérée. le Registre sera déchargé lorsqu'il ne sera plus utilisé.
Cela est souvent causé par des services s'exécutant en tant que compte d'utilisateur, essayez de configurer les services pour s'exécuter dans le compte service réseau ou service local.
Record Number: 5
Source Name: Userenv
Time Written: 20090323214655.000000+060
Event Type: Avertissement
User: AUTORITE NT\SYSTEM
Computer Name: ACER-755E621E64
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.
Record Number: 4
Source Name: SecurityCenter
Time Written: 20090323203851.000000+060
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 32068
Message: La règle de routage de trafic sortant n'est pas valide car elle ne peut pas trouver de périphérique valide. Les télécopies sortantes qui utilisent cette règle ne peuvent pas être acheminées. Vérifiez que le ou les périphériques concernés (en cas de routage vers un groupe de périphériques) sont connectés et installés correctement et allumés. En cas de routage vers un groupe, vérifiez que le groupe est configuré correctement.
Code de pays/région : '*'
Indicatif régional : '*'
Record Number: 3
Source Name: Microsoft Fax
Time Written: 20090323203850.000000+060
Event Type: Avertissement
User:
Computer Name: ACER-755E621E64
Event Code: 32026
Message: Le service de télécopie n'a pas pu initialiser de périphériques de télécopies attribués (virtuel ou TAPI).
Aucune télécopie ne peut être envoyée ou reçue tant qu'un périphérique de télécopies n'a pas été installé.
Record Number: 2
Source Name: Microsoft Fax
Time Written: 20090323203850.000000+060
Event Type: Avertissement
User:
Computer Name: ACER-755E621E64
Event Code: 0
Message:
Record Number: 1
Source Name: Acer Media Server
Time Written: 20090323203838.000000+060
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%Sys
Run by HUBERT at 2009-06-07 19:23:16
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 85 GB (73%) free of 117 GB
Total RAM: 1791 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:24:38, on 07/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Fighters\configservice.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Fighters\licenseservice.exe
C:\Program Files\Fighters\updateservice.exe
C:\Program Files\Fighters\ScannerService.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\BITWARE\NT\bwprnmon.exe
C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\WINDOWS\system32\ntvdm.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
c:\program files\fighters\spywarefighter\SPYWAREfighterTray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\AVG\AVG8\avgui.exe
C:\Program Files\AVG\AVG8\avgscanx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\FREEDO~1\FDM.exe
C:\Documents and Settings\HUBERT\Bureau\RSIT.exe
C:\Program Files\trend micro\HUBERT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aliceadsl.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [bwprnmon.exe] C:\BITWARE\NT\bwprnmon.exe
O4 - HKLM\..\Run: [AliceSAV] C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [spywarefighterguard] C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [uxqwohj] rundll32.exe "C:\WINDOWS\system32\yuxudu.dll",gdpmejb (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun (User 'FAMILLE')
O4 - Startup: .lnk = C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
O4 - Startup: Moteur du Planificateur de tâches SolidWorks.lnk = C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PTK License-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\licenseservice.exe
O23 - Service: PTK Live Update-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\updateservice.exe
O23 - Service: PTK Scanner-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\ScannerService.exe
O23 - Service: PTK SharedAccess-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\configservice.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
--
End of file - 9730 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-05-04 1107224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-23 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{955BE0B8-BC85-4CAF-856E-8E0D8B610560}]
BHO pour Compagnon Web Encarta - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL [2005-06-04 228048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-05-04 2223872]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2009-03-02 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-23 34816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-23 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{147D6308-0614-4112-89B1-31402F9B82C4} - Compagnon Web Encarta - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL [2005-06-04 228048]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-05-04 2223872]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"bwprnmon.exe"=C:\BITWARE\NT\bwprnmon.exe [2006-09-17 54272]
"AliceSAV"=C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe [2005-12-16 81408]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-23 136600]
"MediaSync"=C:\Program Files\Acer\Acer eConsole\MediaSync.exe [2005-09-21 425984]
"LaunchApp"=Alaunch []
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"eRecoveryService"=C:\Acer\Empowering Technology\eRecovery\Monitor.exe [2005-11-16 397312]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-05-04 1947928]
"AspireService"=C:\Program Files\Acer\Acer eMode Management\AspireService.exe [2005-09-29 114688]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-07-09 919016]
"spywarefighterguard"=C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe [2008-11-18 180872]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2008-12-19 1434864]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDNewsAgent]
c:\program files\softwin\bitdefender8\bdnagent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanalPlayer]
C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ntiMUI]
c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe [2005-05-11 45056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^LUMIX Simple Viewer.lnk.disabled]
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\LUMIX Simple Viewer.lnk.disabled []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"usnjsvc"=3
"SolidWorks Licensing Service"=3
"Service CANALPLAY"=3
"Boonty Games"=3
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Démarrage rapide du logiciel HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
C:\Documents and Settings\HUBERT\Menu Démarrer\Programmes\Démarrage
.lnk - C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
Moteur du Planificateur de tâches SolidWorks.lnk - C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-04-15 46080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2009-05-04 11952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"WizmaxBackup_NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"WizmaxBackup_NoDriveTypeAutoRun"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Acer\Acer eConsole\MediaSync.exe"="C:\Program Files\Acer\Acer eConsole\MediaSync.exe:LocalSubNet:Enabled:Media Synchoronizer"
"C:\Program Files\Acer\Acer eConsole\eConsole.exe"="C:\Program Files\Acer\Acer eConsole\eConsole.exe:LocalSubNet:Enabled:eConsole"
"C:\Program Files\Acer\Acer eConsole\MediaServerService.exe"="C:\Program Files\Acer\Acer eConsole\MediaServerService.exe:LocalSubNet:Enabled:Acer Media Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\StubInstaller.exe"="C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\WINDOWS\system32\fxsclnt.exe"="C:\WINDOWS\system32\fxsclnt.exe:*:Enabled:Microsoft Fax Console"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\svchost.exe"="C:\WINDOWS\system32\svchost.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\32exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\32exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\22exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\22exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\15exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\15exinjs.a6.exe:*:Disabled:15exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\45exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\45exinjs.a6.exe:*:Disabled:45exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\88exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\88exinjs.a6.exe:*:Disabled:88exinjs.a6"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\77exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\77exinjs.a6.exe:*:Disabled:77exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\85exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\85exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\46exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\46exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\90exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\90exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\4exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\4exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\9exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\9exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\35exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\35exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\66exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\66exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\86exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\86exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\67exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\67exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\42exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\42exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\57exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\57exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\23exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\23exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\10exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\10exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\16exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\16exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\69exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\69exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\45exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\45exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\65exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\65exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\0exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\0exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\20exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\20exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\71exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\71exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\64exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\64exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\5exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\5exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\44exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\44exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\13exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\13exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\41exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\41exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\93exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\93exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\40exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\40exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\43exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\43exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\58exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\58exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\59exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\59exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\25exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\25exinjs.a9.exe:*:Disabled:25exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\40exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\40exinjs.a9.exe:*:Disabled:40exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\99exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\99exinjs.a9.exe:*:Disabled:99exinjs.a9"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\53exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\53exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\32exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\32exinjs.a9.exe:*:Disabled:32exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\97exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\97exinjs.a9.exe:*:Disabled:97exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\46exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\46exinjs.a9.exe:*:Disabled:46exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\67exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\67exinjs.a9.exe:*:Disabled:67exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\15exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\15exinjs.a9.exe:*:Disabled:15exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\30exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\30exinjs.a9.exe:*:Disabled:30exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\31exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\31exinjs.a9.exe:*:Disabled:31exinjs.a9"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\29exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\29exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\15exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\15exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\84exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\84exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\33exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\33exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\38exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\38exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\79exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\79exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\36exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\36exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\61exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\61exinjs.a9.exe:*:Enabled:Microsoft Update"
"D:\SOLIDWORS\BitDownload\BitDownload.exe"="D:\SOLIDWORS\BitDownload\BitDownload.exe:*:Enabled:Warez3"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\81exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\81exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\31exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\31exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\82exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\82exinjs.a9.exe:*:Enabled:Microsoft Update"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
======List of files/folders created in the last 1 months======
2009-06-07 19:23:18 ----D---- C:\Program Files\trend micro
2009-06-07 19:23:16 ----D---- C:\rsit
2009-06-06 22:21:56 ----D---- C:\Program Files\Fighters
2009-06-06 22:21:56 ----D---- C:\Documents and Settings\All Users\Application Data\Fighters
2009-06-06 22:19:57 ----A---- C:\Documents and Settings\HUBERT\Application Data\install.txt
2009-06-05 22:39:18 ----A---- C:\WINDOWS\~DF2CA5.tmp
2009-05-26 22:34:23 ----A---- C:\Program Files\ccsetup219.exe
2009-05-26 22:28:05 ----A---- C:\TCleaner.txt
2009-05-25 21:18:21 ----D---- C:\Documents and Settings\HUBERT\Application Data\Malwarebytes
2009-05-25 21:18:12 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
======List of files/folders modified in the last 1 months======
2009-06-07 19:24:43 ----D---- C:\WINDOWS\temp
2009-06-07 19:23:58 ----D---- C:\WINDOWS\Prefetch
2009-06-07 19:23:22 ----D---- C:\WINDOWS\Internet Logs
2009-06-07 19:23:18 ----RD---- C:\Program Files
2009-06-07 18:51:05 ----D---- C:\temp
2009-06-07 18:31:48 ----D---- C:\Documents and Settings\HUBERT\Application Data\SolidWorks
2009-06-07 18:23:43 ----D---- C:\WINDOWS\Debug
2009-06-07 18:23:42 ----D---- C:\WINDOWS
2009-06-07 18:23:41 ----D---- C:\WINDOWS\Minidump
2009-06-07 18:23:40 ----A---- C:\WINDOWS\system32\eRLog.ini
2009-06-07 18:23:38 ----AD---- C:\WINDOWS\system32
2009-06-07 13:01:11 ----HD---- C:\$AVG8.VAULT$
2009-06-07 12:10:40 ----N---- C:\WINDOWS\SchedLgU.Txt
2009-06-06 23:42:23 ----D---- C:\WINDOWS\system32\CatRoot2
2009-06-06 23:38:28 ----D---- C:\Documents and Settings\HUBERT\Application Data\Free Download Manager
2009-06-06 22:29:34 ----SHD---- C:\WINDOWS\Installer
2009-06-06 22:28:58 ----HD---- C:\Config.Msi
2009-06-06 22:28:34 ----HD---- C:\WINDOWS\inf
2009-06-06 22:28:34 ----AD---- C:\WINDOWS\system32\drivers
2009-06-06 22:01:40 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-06-06 17:11:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-06-04 22:10:04 ----D---- C:\Downloads
2009-06-04 21:40:19 ----A---- C:\WINDOWS\NeroDigital.ini
2009-05-27 22:47:16 ----SHD---- C:\System Volume Information
2009-05-27 22:47:16 ----D---- C:\WINDOWS\system32\Restore
2009-05-26 22:35:49 ----D---- C:\Program Files\CCleaner
2009-05-24 13:52:18 ----A---- C:\AILog.txt
2009-05-20 21:47:54 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-05-20 21:25:06 ----D---- C:\Documents and Settings\HUBERT\Application Data\dvdcss
2009-05-08 19:36:13 ----D---- C:\Program Files\Free Download Manager
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-05-04 325896]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-05-04 27784]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-05-04 108552]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 KLIF;KLIF; C:\WINDOWS\system32\DRIVERS\klif.sys [2007-07-19 127768]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-04-08 54272]
R1 UBHelper;UBHelper; C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 13952]
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
R2 CdaC15BA;CdaC15BA; \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS []
R2 int15.sys;int15.sys; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys []
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2003-12-04 11264]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-04-15 1130496]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-11-14 4625408]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2005-12-16 6144]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 Vfscan;Vfscan; C:\WINDOWS\system32\DRIVERS\vffilter.sys [2008-11-18 15496]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-03-30 230400]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 catchme;catchme; \??\C:\DOCUME~1\HUBERT\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 C-Dilla;C-Dilla; \??\C:\WINDOWS\system32\drivers\CDANT.SYS []
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
S3 JL2005;JL2005A Toy Camera; C:\WINDOWS\System32\Drivers\toywdm.sys []
S3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2004-08-05 126686]
S3 Mtlstrm;Mtlstrm; C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2004-08-05 1309184]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NtMtlFax;NtMtlFax; C:\WINDOWS\system32\DRIVERS\NtMtlFax.sys [2004-08-05 180360]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2007-04-15 47360]
S3 SaiH040B;SaiH040B; C:\WINDOWS\system32\DRIVERS\SaiH040B.sys [2007-05-01 132232]
S3 SaiU040B;SaiU040B; C:\WINDOWS\system32\DRIVERS\SaiU040B.sys [2007-05-01 28416]
S3 skeyusb;SmartKey USB; C:\WINDOWS\System32\Drivers\skeyusb.sys [2002-11-18 17888]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 Slnt7554;USB Soft Modem Driver; C:\WINDOWS\system32\DRIVERS\slnt7554.sys [2004-08-05 129535]
S3 SlNtHal;SlNtHal; C:\WINDOWS\system32\DRIVERS\Slnthal.sys [2004-08-05 95424]
S3 SlWdmSup;SlWdmSup; C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2004-08-05 13240]
S3 SQTECH905C;Dual Camera; C:\WINDOWS\System32\Drivers\Capt905c.sys [2005-06-17 33545]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\IDS-DI~1\20060901.084\symidsco.sys []
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Acer Media Server;Acer Media Server; C:\Program Files\Acer\Acer eConsole\MediaServerService.exe [2005-09-21 438272]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-04-15 364544]
R2 avg8wd;AVG8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-05-04 298776]
R2 C-DillaSrv;C-DillaSrv; C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE [2001-09-10 32256]
R2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-23 152984]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
R2 PTK License-FIGHTERS-297811811;PTK License-FIGHTERS-297811811; C:\Program Files\Fighters\licenseservice.exe [2008-11-18 283272]
R2 PTK Live Update-FIGHTERS-297811811;PTK Live Update-FIGHTERS-297811811; C:\Program Files\Fighters\updateservice.exe [2008-11-18 307848]
R2 PTK Scanner-FIGHTERS-297811811;PTK Scanner-FIGHTERS-297811811; C:\Program Files\Fighters\ScannerService.exe [2008-11-18 311944]
R2 PTK SharedAccess-FIGHTERS-297811811;PTK SharedAccess-FIGHTERS-297811811; C:\Program Files\Fighters\configservice.exe [2008-11-18 139912]
R2 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2008-04-14 73796]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe [2008-07-05 79360]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]
S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.06 2009-06-07 19:25:14
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Acer eConsole-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EC028E6B-F3F1-4192-B63E-A7C97302ED5A}\setup.exe" -l0x40c
Acer eMode Management-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{65CDEC30-4BF4-48FB-8059-9FC480E4E94F}\setup.exe" -l0x40c
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Alice Auto-diagnostic-->C:\Program Files\TechCity Solutions\AliceSAV\uninstall.exe
ArcSoft Software Suite-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E397B40-13F7-4CA2-9943-ADB29ACBBFDF}\setup.exe" -l0x40c
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AVG 8.5-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
C-Dilla Licence Management System-->C:\C_DILLA\setup\cdunin16.exe
Collection Microsoft Encarta 2006-->MsiExec.exe /I{06180000-3E21-46D6-9A91-D927BA08F41D}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
Guide C.E. l'essentiel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4DED81FF-FD0D-42F2-984B-A59228A6C7FD}\setup.exe"
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Document Viewer 5.3-->C:\Program Files\HP\Digital Imaging\DocumentViewer\hpzscr01.exe -datfile hpqbud04.dat
HP Image Zone 5.3-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Imaging Device Functions 5.3-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP PSC & OfficeJet 5.3.A-->"C:\Program Files\HP\Digital Imaging\{3E386744-10FA-44b2-98C9-DF7A270DECB3}\setup\hpzscr01.exe" -datfile hposcr06.dat
HP Solution Center & Imaging Support Tools 5.3-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
J2SE Runtime Environment 5.0 Update 10-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
J2SE Runtime Environment 5.0 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150050}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Kit de Connexion Alice ADSL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A0221AD-D30B-4320-8F9B-1D0F0E6C6843}\setup.exe" -l0x40c ControlPanel
L&H TTS3000 Français-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\LHTTSFRF.inf, Uninstall
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LimeWire 4.18.8-->"C:\Program Files\LimeWire\uninstall.exe"
LUMIX Simple Viewer-->C:\Program Files\InstallShield Installation Information\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}\setup.exe -runfromtemp -l0x040c -removeonly
Macromedia Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft .NET Framework 3.0-->MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft Age of Empires II-->"C:\Program Files\Microsoft Games\Age of Empires II\UNINSTAL.EXE" /runtemp /uninstall
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2003 Web Components-->MsiExec.exe /I{90120000-00A4-0409-0000-0000000FF1CE}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Nero OEM-->D:\NERO\nero\uninstall\UNNERO.exe /UNINSTALL
NTI Backup NOW! 4-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{385979FE-DC4F-4140-8EAD-A59625000D72} /l1036 BUN4
NTI CD & DVD-Maker-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} /l1036 CDM7
NTI HomeVideo-Maker-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8A6F713-D72D-47AD-A92D-B5C0E13F98C1}\setup.exe" -l0x40c
OpenOffice.org 3.0-->MsiExec.exe /I{1572F66F-F9AD-4D45-B0D2-0F45A0D5A0F6}
Package de base Microsoft de service de chiffrement pour cartes à puce-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
PHOTOfunSTUDIO -viewer--->C:\Program Files\InstallShield Installation Information\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}\Setup.exe -runfromtemp -l0x040cPackage -removeonly
PlayStation(R)Network Downloader-->MsiExec.exe /X{BC4CA8FA-41D2-4B81-8680-E9B7573D6500}
PlayStation(R)Store-->MsiExec.exe /X{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
Race Driver 2-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{D474A0E8-4421-43C0-BE8E-F454F91E2E2A} /l1036
RAW Thumbnail Viewer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAEF3BE9-F5CF-4355-BBC3-90134AD070F8}\Setup.exe" -l0x9
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
SolidWorks 2008 SP0-->MsiExec.exe /I{CE3DA0AA-6784-4548-84B6-E0F89637E407}
Sony Media Manager for PSP 3.0-->MsiExec.exe /X{21C6344A-918B-4D35-ADB6-7614F97B78EA}
SPYWAREfighter-->"C:\Program Files\Fighters\spywarefighter\Uninstall.exe" Remove
SPYWAREfighter-->MsiExec.exe /I{B940005A-1212-4E87-885B-1FF80B40D6F4}
Studio 9-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E491AB7-4589-48CA-9CBB-874CB2788391}\Setup.exe" -l0x40c UNINSTALL
Tomb Raider: Legend 1.0-->D:\TOMB RAIDER\Tomb Raider - Legend\uninsttrl.exe
VLC media player 0.9.4-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp-->"D:\Winamp\UninstWA.exe"
Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
ZoneAlarm-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe
======Hosts File======
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
======Security center information======
AV: AVG Anti-Virus Free
FW: ZoneAlarm Firewall (disabled)
======System event log======
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Service de la passerelle de la couche Application est entré dans l'état : en cours d'exécution.
Record Number: 135544
Source Name: Service Control Manager
Time Written: 20090430195135.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service de la passerelle de la couche Application.
Record Number: 135543
Source Name: Service Control Manager
Time Written: 20090430195135.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Carte de performance WMI est entré dans l'état : arrêté.
Record Number: 135542
Source Name: Service Control Manager
Time Written: 20090430195134.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Carte de performance WMI est entré dans l'état : en cours d'exécution.
Record Number: 135541
Source Name: Service Control Manager
Time Written: 20090430195133.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Carte de performance WMI.
Record Number: 135540
Source Name: Service Control Manager
Time Written: 20090430195133.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
=====Application event log=====
Computer Name: ACER-755E621E64
Event Code: 1517
Message: Windows a sauvegardé le Registre utilisateur ACER-755E621E64\HUBERT alors qu'une application ou un service utilisait toujours le Registre pendant la fermeture de la session. La mémoire utilisée par le Registre de l'utilisateur n'a pas été libérée. le Registre sera déchargé lorsqu'il ne sera plus utilisé.
Cela est souvent causé par des services s'exécutant en tant que compte d'utilisateur, essayez de configurer les services pour s'exécuter dans le compte service réseau ou service local.
Record Number: 5
Source Name: Userenv
Time Written: 20090323214655.000000+060
Event Type: Avertissement
User: AUTORITE NT\SYSTEM
Computer Name: ACER-755E621E64
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.
Record Number: 4
Source Name: SecurityCenter
Time Written: 20090323203851.000000+060
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 32068
Message: La règle de routage de trafic sortant n'est pas valide car elle ne peut pas trouver de périphérique valide. Les télécopies sortantes qui utilisent cette règle ne peuvent pas être acheminées. Vérifiez que le ou les périphériques concernés (en cas de routage vers un groupe de périphériques) sont connectés et installés correctement et allumés. En cas de routage vers un groupe, vérifiez que le groupe est configuré correctement.
Code de pays/région : '*'
Indicatif régional : '*'
Record Number: 3
Source Name: Microsoft Fax
Time Written: 20090323203850.000000+060
Event Type: Avertissement
User:
Computer Name: ACER-755E621E64
Event Code: 32026
Message: Le service de télécopie n'a pas pu initialiser de périphériques de télécopies attribués (virtuel ou TAPI).
Aucune télécopie ne peut être envoyée ou reçue tant qu'un périphérique de télécopies n'a pas été installé.
Record Number: 2
Source Name: Microsoft Fax
Time Written: 20090323203850.000000+060
Event Type: Avertissement
User:
Computer Name: ACER-755E621E64
Event Code: 0
Message:
Record Number: 1
Source Name: Acer Media Server
Time Written: 20090323203838.000000+060
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%Sys
HUB DE ROE
le 07 juin 2009 à 19h28
Logfile of random's system information tool 1.06 (written by random/random)
Run by HUBERT at 2009-06-07 19:23:16
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 85 GB (73%) free of 117 GB
Total RAM: 1791 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:24:38, on 07/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Fighters\configservice.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Fighters\licenseservice.exe
C:\Program Files\Fighters\updateservice.exe
C:\Program Files\Fighters\ScannerService.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\BITWARE\NT\bwprnmon.exe
C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\WINDOWS\system32\ntvdm.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
c:\program files\fighters\spywarefighter\SPYWAREfighterTray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\AVG\AVG8\avgui.exe
C:\Program Files\AVG\AVG8\avgscanx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\FREEDO~1\FDM.exe
C:\Documents and Settings\HUBERT\Bureau\RSIT.exe
C:\Program Files\trend micro\HUBERT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aliceadsl.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [bwprnmon.exe] C:\BITWARE\NT\bwprnmon.exe
O4 - HKLM\..\Run: [AliceSAV] C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [spywarefighterguard] C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [uxqwohj] rundll32.exe "C:\WINDOWS\system32\yuxudu.dll",gdpmejb (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun (User 'FAMILLE')
O4 - Startup: .lnk = C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
O4 - Startup: Moteur du Planificateur de tâches SolidWorks.lnk = C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PTK License-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\licenseservice.exe
O23 - Service: PTK Live Update-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\updateservice.exe
O23 - Service: PTK Scanner-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\ScannerService.exe
O23 - Service: PTK SharedAccess-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\configservice.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
--
End of file - 9730 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-05-04 1107224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-23 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{955BE0B8-BC85-4CAF-856E-8E0D8B610560}]
BHO pour Compagnon Web Encarta - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL [2005-06-04 228048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-05-04 2223872]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2009-03-02 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-23 34816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-23 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{147D6308-0614-4112-89B1-31402F9B82C4} - Compagnon Web Encarta - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL [2005-06-04 228048]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-05-04 2223872]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"bwprnmon.exe"=C:\BITWARE\NT\bwprnmon.exe [2006-09-17 54272]
"AliceSAV"=C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe [2005-12-16 81408]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-23 136600]
"MediaSync"=C:\Program Files\Acer\Acer eConsole\MediaSync.exe [2005-09-21 425984]
"LaunchApp"=Alaunch []
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"eRecoveryService"=C:\Acer\Empowering Technology\eRecovery\Monitor.exe [2005-11-16 397312]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-05-04 1947928]
"AspireService"=C:\Program Files\Acer\Acer eMode Management\AspireService.exe [2005-09-29 114688]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-07-09 919016]
"spywarefighterguard"=C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe [2008-11-18 180872]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2008-12-19 1434864]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDNewsAgent]
c:\program files\softwin\bitdefender8\bdnagent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanalPlayer]
C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ntiMUI]
c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe [2005-05-11 45056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^LUMIX Simple Viewer.lnk.disabled]
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\LUMIX Simple Viewer.lnk.disabled []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"usnjsvc"=3
"SolidWorks Licensing Service"=3
"Service CANALPLAY"=3
"Boonty Games"=3
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Démarrage rapide du logiciel HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
C:\Documents and Settings\HUBERT\Menu Démarrer\Programmes\Démarrage
.lnk - C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
Moteur du Planificateur de tâches SolidWorks.lnk - C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-04-15 46080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2009-05-04 11952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"WizmaxBackup_NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"WizmaxBackup_NoDriveTypeAutoRun"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Acer\Acer eConsole\MediaSync.exe"="C:\Program Files\Acer\Acer eConsole\MediaSync.exe:LocalSubNet:Enabled:Media Synchoronizer"
"C:\Program Files\Acer\Acer eConsole\eConsole.exe"="C:\Program Files\Acer\Acer eConsole\eConsole.exe:LocalSubNet:Enabled:eConsole"
"C:\Program Files\Acer\Acer eConsole\MediaServerService.exe"="C:\Program Files\Acer\Acer eConsole\MediaServerService.exe:LocalSubNet:Enabled:Acer Media Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\StubInstaller.exe"="C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\WINDOWS\system32\fxsclnt.exe"="C:\WINDOWS\system32\fxsclnt.exe:*:Enabled:Microsoft Fax Console"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\svchost.exe"="C:\WINDOWS\system32\svchost.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\32exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\32exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\22exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\22exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\15exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\15exinjs.a6.exe:*:Disabled:15exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\45exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\45exinjs.a6.exe:*:Disabled:45exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\88exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\88exinjs.a6.exe:*:Disabled:88exinjs.a6"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\77exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\77exinjs.a6.exe:*:Disabled:77exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\85exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\85exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\46exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\46exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\90exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\90exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\4exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\4exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\9exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\9exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\35exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\35exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\66exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\66exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\86exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\86exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\67exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\67exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\42exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\42exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\57exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\57exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\23exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\23exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\10exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\10exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\16exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\16exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\69exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\69exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\45exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\45exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\65exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\65exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\0exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\0exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\20exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\20exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\71exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\71exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\64exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\64exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\5exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\5exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\44exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\44exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\13exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\13exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\41exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\41exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\93exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\93exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\40exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\40exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\43exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\43exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\58exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\58exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\59exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\59exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\25exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\25exinjs.a9.exe:*:Disabled:25exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\40exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\40exinjs.a9.exe:*:Disabled:40exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\99exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\99exinjs.a9.exe:*:Disabled:99exinjs.a9"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\53exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\53exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\32exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\32exinjs.a9.exe:*:Disabled:32exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\97exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\97exinjs.a9.exe:*:Disabled:97exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\46exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\46exinjs.a9.exe:*:Disabled:46exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\67exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\67exinjs.a9.exe:*:Disabled:67exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\15exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\15exinjs.a9.exe:*:Disabled:15exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\30exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\30exinjs.a9.exe:*:Disabled:30exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\31exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\31exinjs.a9.exe:*:Disabled:31exinjs.a9"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\29exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\29exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\15exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\15exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\84exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\84exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\33exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\33exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\38exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\38exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\79exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\79exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\36exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\36exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\61exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\61exinjs.a9.exe:*:Enabled:Microsoft Update"
"D:\SOLIDWORS\BitDownload\BitDownload.exe"="D:\SOLIDWORS\BitDownload\BitDownload.exe:*:Enabled:Warez3"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\81exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\81exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\31exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\31exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\82exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\82exinjs.a9.exe:*:Enabled:Microsoft Update"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
======List of files/folders created in the last 1 months======
2009-06-07 19:23:18 ----D---- C:\Program Files\trend micro
2009-06-07 19:23:16 ----D---- C:\rsit
2009-06-06 22:21:56 ----D---- C:\Program Files\Fighters
2009-06-06 22:21:56 ----D---- C:\Documents and Settings\All Users\Application Data\Fighters
2009-06-06 22:19:57 ----A---- C:\Documents and Settings\HUBERT\Application Data\install.txt
2009-06-05 22:39:18 ----A---- C:\WINDOWS\~DF2CA5.tmp
2009-05-26 22:34:23 ----A---- C:\Program Files\ccsetup219.exe
2009-05-26 22:28:05 ----A---- C:\TCleaner.txt
2009-05-25 21:18:21 ----D---- C:\Documents and Settings\HUBERT\Application Data\Malwarebytes
2009-05-25 21:18:12 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
======List of files/folders modified in the last 1 months======
2009-06-07 19:24:43 ----D---- C:\WINDOWS\temp
2009-06-07 19:23:58 ----D---- C:\WINDOWS\Prefetch
2009-06-07 19:23:22 ----D---- C:\WINDOWS\Internet Logs
2009-06-07 19:23:18 ----RD---- C:\Program Files
2009-06-07 18:51:05 ----D---- C:\temp
2009-06-07 18:31:48 ----D---- C:\Documents and Settings\HUBERT\Application Data\SolidWorks
2009-06-07 18:23:43 ----D---- C:\WINDOWS\Debug
2009-06-07 18:23:42 ----D---- C:\WINDOWS
2009-06-07 18:23:41 ----D---- C:\WINDOWS\Minidump
2009-06-07 18:23:40 ----A---- C:\WINDOWS\system32\eRLog.ini
2009-06-07 18:23:38 ----AD---- C:\WINDOWS\system32
2009-06-07 13:01:11 ----HD---- C:\$AVG8.VAULT$
2009-06-07 12:10:40 ----N---- C:\WINDOWS\SchedLgU.Txt
2009-06-06 23:42:23 ----D---- C:\WINDOWS\system32\CatRoot2
2009-06-06 23:38:28 ----D---- C:\Documents and Settings\HUBERT\Application Data\Free Download Manager
2009-06-06 22:29:34 ----SHD---- C:\WINDOWS\Installer
2009-06-06 22:28:58 ----HD---- C:\Config.Msi
2009-06-06 22:28:34 ----HD---- C:\WINDOWS\inf
2009-06-06 22:28:34 ----AD---- C:\WINDOWS\system32\drivers
2009-06-06 22:01:40 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-06-06 17:11:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-06-04 22:10:04 ----D---- C:\Downloads
2009-06-04 21:40:19 ----A---- C:\WINDOWS\NeroDigital.ini
2009-05-27 22:47:16 ----SHD---- C:\System Volume Information
2009-05-27 22:47:16 ----D---- C:\WINDOWS\system32\Restore
2009-05-26 22:35:49 ----D---- C:\Program Files\CCleaner
2009-05-24 13:52:18 ----A---- C:\AILog.txt
2009-05-20 21:47:54 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-05-20 21:25:06 ----D---- C:\Documents and Settings\HUBERT\Application Data\dvdcss
2009-05-08 19:36:13 ----D---- C:\Program Files\Free Download Manager
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-05-04 325896]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-05-04 27784]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-05-04 108552]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 KLIF;KLIF; C:\WINDOWS\system32\DRIVERS\klif.sys [2007-07-19 127768]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-04-08 54272]
R1 UBHelper;UBHelper; C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 13952]
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
R2 CdaC15BA;CdaC15BA; \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS []
R2 int15.sys;int15.sys; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys []
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2003-12-04 11264]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-04-15 1130496]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-11-14 4625408]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2005-12-16 6144]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 Vfscan;Vfscan; C:\WINDOWS\system32\DRIVERS\vffilter.sys [2008-11-18 15496]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-03-30 230400]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 catchme;catchme; \??\C:\DOCUME~1\HUBERT\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 C-Dilla;C-Dilla; \??\C:\WINDOWS\system32\drivers\CDANT.SYS []
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
S3 JL2005;JL2005A Toy Camera; C:\WINDOWS\System32\Drivers\toywdm.sys []
S3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2004-08-05 126686]
S3 Mtlstrm;Mtlstrm; C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2004-08-05 1309184]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NtMtlFax;NtMtlFax; C:\WINDOWS\system32\DRIVERS\NtMtlFax.sys [2004-08-05 180360]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2007-04-15 47360]
S3 SaiH040B;SaiH040B; C:\WINDOWS\system32\DRIVERS\SaiH040B.sys [2007-05-01 132232]
S3 SaiU040B;SaiU040B; C:\WINDOWS\system32\DRIVERS\SaiU040B.sys [2007-05-01 28416]
S3 skeyusb;SmartKey USB; C:\WINDOWS\System32\Drivers\skeyusb.sys [2002-11-18 17888]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 Slnt7554;USB Soft Modem Driver; C:\WINDOWS\system32\DRIVERS\slnt7554.sys [2004-08-05 129535]
S3 SlNtHal;SlNtHal; C:\WINDOWS\system32\DRIVERS\Slnthal.sys [2004-08-05 95424]
S3 SlWdmSup;SlWdmSup; C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2004-08-05 13240]
S3 SQTECH905C;Dual Camera; C:\WINDOWS\System32\Drivers\Capt905c.sys [2005-06-17 33545]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\IDS-DI~1\20060901.084\symidsco.sys []
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Acer Media Server;Acer Media Server; C:\Program Files\Acer\Acer eConsole\MediaServerService.exe [2005-09-21 438272]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-04-15 364544]
R2 avg8wd;AVG8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-05-04 298776]
R2 C-DillaSrv;C-DillaSrv; C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE [2001-09-10 32256]
R2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-23 152984]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
R2 PTK License-FIGHTERS-297811811;PTK License-FIGHTERS-297811811; C:\Program Files\Fighters\licenseservice.exe [2008-11-18 283272]
R2 PTK Live Update-FIGHTERS-297811811;PTK Live Update-FIGHTERS-297811811; C:\Program Files\Fighters\updateservice.exe [2008-11-18 307848]
R2 PTK Scanner-FIGHTERS-297811811;PTK Scanner-FIGHTERS-297811811; C:\Program Files\Fighters\ScannerService.exe [2008-11-18 311944]
R2 PTK SharedAccess-FIGHTERS-297811811;PTK SharedAccess-FIGHTERS-297811811; C:\Program Files\Fighters\configservice.exe [2008-11-18 139912]
R2 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2008-04-14 73796]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe [2008-07-05 79360]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]
S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.06 2009-06-07 19:25:14
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Acer eConsole-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EC028E6B-F3F1-4192-B63E-A7C97302ED5A}\setup.exe" -l0x40c
Acer eMode Management-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{65CDEC30-4BF4-48FB-8059-9FC480E4E94F}\setup.exe" -l0x40c
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Alice Auto-diagnostic-->C:\Program Files\TechCity Solutions\AliceSAV\uninstall.exe
ArcSoft Software Suite-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E397B40-13F7-4CA2-9943-ADB29ACBBFDF}\setup.exe" -l0x40c
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AVG 8.5-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
C-Dilla Licence Management System-->C:\C_DILLA\setup\cdunin16.exe
Collection Microsoft Encarta 2006-->MsiExec.exe /I{06180000-3E21-46D6-9A91-D927BA08F41D}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
Guide C.E. l'essentiel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4DED81FF-FD0D-42F2-984B-A59228A6C7FD}\setup.exe"
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Document Viewer 5.3-->C:\Program Files\HP\Digital Imaging\DocumentViewer\hpzscr01.exe -datfile hpqbud04.dat
HP Image Zone 5.3-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Imaging Device Functions 5.3-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP PSC & OfficeJet 5.3.A-->"C:\Program Files\HP\Digital Imaging\{3E386744-10FA-44b2-98C9-DF7A270DECB3}\setup\hpzscr01.exe" -datfile hposcr06.dat
HP Solution Center & Imaging Support Tools 5.3-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
J2SE Runtime Environment 5.0 Update 10-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
J2SE Runtime Environment 5.0 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150050}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Kit de Connexion Alice ADSL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A0221AD-D30B-4320-8F9B-1D0F0E6C6843}\setup.exe" -l0x40c ControlPanel
L&H TTS3000 Français-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\LHTTSFRF.inf, Uninstall
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LimeWire 4.18.8-->"C:\Program Files\LimeWire\uninstall.exe"
LUMIX Simple Viewer-->C:\Program Files\InstallShield Installation Information\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}\setup.exe -runfromtemp -l0x040c -removeonly
Macromedia Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft .NET Framework 3.0-->MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft Age of Empires II-->"C:\Program Files\Microsoft Games\Age of Empires II\UNINSTAL.EXE" /runtemp /uninstall
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2003 Web Components-->MsiExec.exe /I{90120000-00A4-0409-0000-0000000FF1CE}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Nero OEM-->D:\NERO\nero\uninstall\UNNERO.exe /UNINSTALL
NTI Backup NOW! 4-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{385979FE-DC4F-4140-8EAD-A59625000D72} /l1036 BUN4
NTI CD & DVD-Maker-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} /l1036 CDM7
NTI HomeVideo-Maker-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8A6F713-D72D-47AD-A92D-B5C0E13F98C1}\setup.exe" -l0x40c
OpenOffice.org 3.0-->MsiExec.exe /I{1572F66F-F9AD-4D45-B0D2-0F45A0D5A0F6}
Package de base Microsoft de service de chiffrement pour cartes à puce-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
PHOTOfunSTUDIO -viewer--->C:\Program Files\InstallShield Installation Information\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}\Setup.exe -runfromtemp -l0x040cPackage -removeonly
PlayStation(R)Network Downloader-->MsiExec.exe /X{BC4CA8FA-41D2-4B81-8680-E9B7573D6500}
PlayStation(R)Store-->MsiExec.exe /X{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
Race Driver 2-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{D474A0E8-4421-43C0-BE8E-F454F91E2E2A} /l1036
RAW Thumbnail Viewer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAEF3BE9-F5CF-4355-BBC3-90134AD070F8}\Setup.exe" -l0x9
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
SolidWorks 2008 SP0-->MsiExec.exe /I{CE3DA0AA-6784-4548-84B6-E0F89637E407}
Sony Media Manager for PSP 3.0-->MsiExec.exe /X{21C6344A-918B-4D35-ADB6-7614F97B78EA}
SPYWAREfighter-->"C:\Program Files\Fighters\spywarefighter\Uninstall.exe" Remove
SPYWAREfighter-->MsiExec.exe /I{B940005A-1212-4E87-885B-1FF80B40D6F4}
Studio 9-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E491AB7-4589-48CA-9CBB-874CB2788391}\Setup.exe" -l0x40c UNINSTALL
Tomb Raider: Legend 1.0-->D:\TOMB RAIDER\Tomb Raider - Legend\uninsttrl.exe
VLC media player 0.9.4-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp-->"D:\Winamp\UninstWA.exe"
Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
ZoneAlarm-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe
======Hosts File======
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
======Security center information======
AV: AVG Anti-Virus Free
FW: ZoneAlarm Firewall (disabled)
======System event log======
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Service de la passerelle de la couche Application est entré dans l'état : en cours d'exécution.
Record Number: 135544
Source Name: Service Control Manager
Time Written: 20090430195135.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service de la passerelle de la couche Application.
Record Number: 135543
Source Name: Service Control Manager
Time Written: 20090430195135.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Carte de performance WMI est entré dans l'état : arrêté.
Record Number: 135542
Source Name: Service Control Manager
Time Written: 20090430195134.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Carte de performance WMI est entré dans l'état : en cours d'exécution.
Record Number: 135541
Source Name: Service Control Manager
Time Written: 20090430195133.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Carte de performance WMI.
Record Number: 135540
Source Name: Service Control Manager
Time Written: 20090430195133.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
=====Application event log=====
Computer Name: ACER-755E621E64
Event Code: 1517
Message: Windows a sauvegardé le Registre utilisateur ACER-755E621E64\HUBERT alors qu'une application ou un service utilisait toujours le Registre pendant la fermeture de la session. La mémoire utilisée par le Registre de l'utilisateur n'a pas été libérée. le Registre sera déchargé lorsqu'il ne sera plus utilisé.
Cela est souvent causé par des services s'exécutant en tant que compte d'utilisateur, essayez de configurer les services pour s'exécuter dans le compte service réseau ou service local.
Record Number: 5
Source Name: Userenv
Time Written: 20090323214655.000000+060
Event Type: Avertissement
User: AUTORITE NT\SYSTEM
Computer Name: ACER-755E621E64
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.
Record Number: 4
Source Name: SecurityCenter
Time Written: 20090323203851.000000+060
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 32068
Message: La règle de routage de trafic sortant n'est pas valide car elle ne peut pas trouver de périphérique valide. Les télécopies sortantes qui utilisent cette règle ne peuvent pas être acheminées. Vérifiez que le ou les périphériques concernés (en cas de routage vers un groupe de périphériques) sont connectés et installés correctement et allumés. En cas de routage vers un groupe, vérifiez que le groupe est configuré correctement.
Code de pays/région : '*'
Indicatif régional : '*'
Record Number: 3
Source Name: Microsoft Fax
Time Written: 20090323203850.000000+060
Event Type: Avertissement
User:
Computer Name: ACER-755E621E64
Event Code: 32026
Message: Le service de télécopie n'a pas pu initialiser de périphériques de télécopies attribués (virtuel ou TAPI).
Aucune télécopie ne peut être envoyée ou reçue tant qu'un périphérique de télécopies n'a pas été installé.
Record Number: 2
Source Name: Microsoft Fax
Time Written: 20090323203850.000000+060
Event Type: Avertissement
User:
Computer Name: ACER-755E621E64
Event Code: 0
Message:
Record Number: 1
Source Name: Acer Media Server
Time Written: 20090323203838.000000+060
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%Sys
Run by HUBERT at 2009-06-07 19:23:16
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 85 GB (73%) free of 117 GB
Total RAM: 1791 MB (44% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:24:38, on 07/06/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Fighters\configservice.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Fighters\licenseservice.exe
C:\Program Files\Fighters\updateservice.exe
C:\Program Files\Fighters\ScannerService.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\BITWARE\NT\bwprnmon.exe
C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\WINDOWS\system32\ntvdm.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
c:\program files\fighters\spywarefighter\SPYWAREfighterTray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\AVG\AVG8\avgui.exe
C:\Program Files\AVG\AVG8\avgscanx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\FREEDO~1\FDM.exe
C:\Documents and Settings\HUBERT\Bureau\RSIT.exe
C:\Program Files\trend micro\HUBERT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aliceadsl.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [bwprnmon.exe] C:\BITWARE\NT\bwprnmon.exe
O4 - HKLM\..\Run: [AliceSAV] C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [spywarefighterguard] C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [uxqwohj] rundll32.exe "C:\WINDOWS\system32\yuxudu.dll",gdpmejb (User 'FAMILLE')
O4 - HKUS\S-1-5-21-3973276915-200159989-1746211068-1013\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun (User 'FAMILLE')
O4 - Startup: .lnk = C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
O4 - Startup: Moteur du Planificateur de tâches SolidWorks.lnk = C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PTK License-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\licenseservice.exe
O23 - Service: PTK Live Update-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\updateservice.exe
O23 - Service: PTK Scanner-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\ScannerService.exe
O23 - Service: PTK SharedAccess-FIGHTERS-297811811 - SPAMfighter - C:\Program Files\Fighters\configservice.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
--
End of file - 9730 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-05-04 1107224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-23 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{955BE0B8-BC85-4CAF-856E-8E0D8B610560}]
BHO pour Compagnon Web Encarta - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL [2005-06-04 228048]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-05-04 2223872]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2009-03-02 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-23 34816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-23 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{147D6308-0614-4112-89B1-31402F9B82C4} - Compagnon Web Encarta - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL [2005-06-04 228048]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-05-04 2223872]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"bwprnmon.exe"=C:\BITWARE\NT\bwprnmon.exe [2006-09-17 54272]
"AliceSAV"=C:\Program Files\TechCity Solutions\AliceSAV\AliceAgent.exe [2005-12-16 81408]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-23 136600]
"MediaSync"=C:\Program Files\Acer\Acer eConsole\MediaSync.exe [2005-09-21 425984]
"LaunchApp"=Alaunch []
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"eRecoveryService"=C:\Acer\Empowering Technology\eRecovery\Monitor.exe [2005-11-16 397312]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-05-04 1947928]
"AspireService"=C:\Program Files\Acer\Acer eMode Management\AspireService.exe [2005-09-29 114688]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-07-09 919016]
"spywarefighterguard"=C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.exe [2008-11-18 180872]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2008-12-19 1434864]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDNewsAgent]
c:\program files\softwin\bitdefender8\bdnagent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanalPlayer]
C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ntiMUI]
c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe [2005-05-11 45056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^LUMIX Simple Viewer.lnk.disabled]
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\LUMIX Simple Viewer.lnk.disabled []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"usnjsvc"=3
"SolidWorks Licensing Service"=3
"Service CANALPLAY"=3
"Boonty Games"=3
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Démarrage rapide du logiciel HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
C:\Documents and Settings\HUBERT\Menu Démarrer\Programmes\Démarrage
.lnk - C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
Moteur du Planificateur de tâches SolidWorks.lnk - C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-04-15 46080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2009-05-04 11952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0
"WizmaxBackup_NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"WizmaxBackup_NoDriveTypeAutoRun"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Acer\Acer eConsole\MediaSync.exe"="C:\Program Files\Acer\Acer eConsole\MediaSync.exe:LocalSubNet:Enabled:Media Synchoronizer"
"C:\Program Files\Acer\Acer eConsole\eConsole.exe"="C:\Program Files\Acer\Acer eConsole\eConsole.exe:LocalSubNet:Enabled:eConsole"
"C:\Program Files\Acer\Acer eConsole\MediaServerService.exe"="C:\Program Files\Acer\Acer eConsole\MediaServerService.exe:LocalSubNet:Enabled:Acer Media Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\StubInstaller.exe"="C:\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\WINDOWS\system32\fxsclnt.exe"="C:\WINDOWS\system32\fxsclnt.exe:*:Enabled:Microsoft Fax Console"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\svchost.exe"="C:\WINDOWS\system32\svchost.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\32exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\32exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\22exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\22exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\15exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\15exinjs.a6.exe:*:Disabled:15exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\45exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\45exinjs.a6.exe:*:Disabled:45exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\88exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\88exinjs.a6.exe:*:Disabled:88exinjs.a6"
"C:\Documents and Settings\NOELLA\Local Settings\Temp\77exinjs.a6.exe"="C:\Documents and Settings\NOELLA\Local Settings\Temp\77exinjs.a6.exe:*:Disabled:77exinjs.a6"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\85exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\85exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\46exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\46exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\90exinjs.a6.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\90exinjs.a6.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\4exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\4exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\95exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\9exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\9exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\35exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\35exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\66exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\66exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\86exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\86exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\67exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\67exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\42exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\42exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\57exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\57exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\23exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\23exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\10exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\10exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\49exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\16exinjs.a8.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\16exinjs.a8.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\88exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\69exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\69exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\45exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\45exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\65exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\65exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\0exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\0exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\20exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\20exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\92exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\71exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\71exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\64exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\64exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\94exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\5exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\5exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\44exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\44exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\13exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\13exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\41exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\41exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\93exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\93exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\87exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\40exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\40exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\25exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\43exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\43exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\34exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\58exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\58exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\59exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\59exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\30exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\25exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\25exinjs.a9.exe:*:Disabled:25exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\40exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\40exinjs.a9.exe:*:Disabled:40exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\99exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\99exinjs.a9.exe:*:Disabled:99exinjs.a9"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\53exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\53exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\32exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\32exinjs.a9.exe:*:Disabled:32exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\97exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\97exinjs.a9.exe:*:Disabled:97exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\46exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\46exinjs.a9.exe:*:Disabled:46exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\67exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\67exinjs.a9.exe:*:Disabled:67exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\15exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\15exinjs.a9.exe:*:Disabled:15exinjs.a9"
"C:\Documents and Settings\PAULINE\Local Settings\Temp\30exinjs.a9.exe"="C:\Documents and Settings\PAULINE\Local Settings\Temp\30exinjs.a9.exe:*:Disabled:30exinjs.a9"
"C:\Documents and Settings\BASTIEN\Local Settings\Temp\31exinjs.a9.exe"="C:\Documents and Settings\BASTIEN\Local Settings\Temp\31exinjs.a9.exe:*:Disabled:31exinjs.a9"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\29exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\29exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\15exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\15exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\84exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\84exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\63exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\62exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\70exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\33exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\33exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\48exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\38exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\38exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\79exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\79exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\3exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\36exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\36exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\54exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\61exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\61exinjs.a9.exe:*:Enabled:Microsoft Update"
"D:\SOLIDWORS\BitDownload\BitDownload.exe"="D:\SOLIDWORS\BitDownload\BitDownload.exe:*:Enabled:Warez3"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\81exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\81exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\31exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\31exinjs.a9.exe:*:Enabled:Microsoft Update"
"C:\DOCUME~1\HUBERT\LOCALS~1\Temp\82exinjs.a9.exe"="C:\DOCUME~1\HUBERT\LOCALS~1\Temp\82exinjs.a9.exe:*:Enabled:Microsoft Update"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
======List of files/folders created in the last 1 months======
2009-06-07 19:23:18 ----D---- C:\Program Files\trend micro
2009-06-07 19:23:16 ----D---- C:\rsit
2009-06-06 22:21:56 ----D---- C:\Program Files\Fighters
2009-06-06 22:21:56 ----D---- C:\Documents and Settings\All Users\Application Data\Fighters
2009-06-06 22:19:57 ----A---- C:\Documents and Settings\HUBERT\Application Data\install.txt
2009-06-05 22:39:18 ----A---- C:\WINDOWS\~DF2CA5.tmp
2009-05-26 22:34:23 ----A---- C:\Program Files\ccsetup219.exe
2009-05-26 22:28:05 ----A---- C:\TCleaner.txt
2009-05-25 21:18:21 ----D---- C:\Documents and Settings\HUBERT\Application Data\Malwarebytes
2009-05-25 21:18:12 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
======List of files/folders modified in the last 1 months======
2009-06-07 19:24:43 ----D---- C:\WINDOWS\temp
2009-06-07 19:23:58 ----D---- C:\WINDOWS\Prefetch
2009-06-07 19:23:22 ----D---- C:\WINDOWS\Internet Logs
2009-06-07 19:23:18 ----RD---- C:\Program Files
2009-06-07 18:51:05 ----D---- C:\temp
2009-06-07 18:31:48 ----D---- C:\Documents and Settings\HUBERT\Application Data\SolidWorks
2009-06-07 18:23:43 ----D---- C:\WINDOWS\Debug
2009-06-07 18:23:42 ----D---- C:\WINDOWS
2009-06-07 18:23:41 ----D---- C:\WINDOWS\Minidump
2009-06-07 18:23:40 ----A---- C:\WINDOWS\system32\eRLog.ini
2009-06-07 18:23:38 ----AD---- C:\WINDOWS\system32
2009-06-07 13:01:11 ----HD---- C:\$AVG8.VAULT$
2009-06-07 12:10:40 ----N---- C:\WINDOWS\SchedLgU.Txt
2009-06-06 23:42:23 ----D---- C:\WINDOWS\system32\CatRoot2
2009-06-06 23:38:28 ----D---- C:\Documents and Settings\HUBERT\Application Data\Free Download Manager
2009-06-06 22:29:34 ----SHD---- C:\WINDOWS\Installer
2009-06-06 22:28:58 ----HD---- C:\Config.Msi
2009-06-06 22:28:34 ----HD---- C:\WINDOWS\inf
2009-06-06 22:28:34 ----AD---- C:\WINDOWS\system32\drivers
2009-06-06 22:01:40 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-06-06 17:11:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-06-04 22:10:04 ----D---- C:\Downloads
2009-06-04 21:40:19 ----A---- C:\WINDOWS\NeroDigital.ini
2009-05-27 22:47:16 ----SHD---- C:\System Volume Information
2009-05-27 22:47:16 ----D---- C:\WINDOWS\system32\Restore
2009-05-26 22:35:49 ----D---- C:\Program Files\CCleaner
2009-05-24 13:52:18 ----A---- C:\AILog.txt
2009-05-20 21:47:54 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-05-20 21:25:06 ----D---- C:\Documents and Settings\HUBERT\Application Data\dvdcss
2009-05-08 19:36:13 ----D---- C:\Program Files\Free Download Manager
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-05-04 325896]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-05-04 27784]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-05-04 108552]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 KLIF;KLIF; C:\WINDOWS\system32\DRIVERS\klif.sys [2007-07-19 127768]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-04-08 54272]
R1 UBHelper;UBHelper; C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 13952]
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-07-09 394952]
R2 CdaC15BA;CdaC15BA; \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS []
R2 int15.sys;int15.sys; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys []
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2003-12-04 11264]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-04-15 1130496]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-11-14 4625408]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2005-12-16 6144]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 Vfscan;Vfscan; C:\WINDOWS\system32\DRIVERS\vffilter.sys [2008-11-18 15496]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-03-30 230400]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S3 catchme;catchme; \??\C:\DOCUME~1\HUBERT\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 C-Dilla;C-Dilla; \??\C:\WINDOWS\system32\drivers\CDANT.SYS []
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
S3 JL2005;JL2005A Toy Camera; C:\WINDOWS\System32\Drivers\toywdm.sys []
S3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2004-08-05 126686]
S3 Mtlstrm;Mtlstrm; C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2004-08-05 1309184]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NtMtlFax;NtMtlFax; C:\WINDOWS\system32\DRIVERS\NtMtlFax.sys [2004-08-05 180360]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2007-04-15 47360]
S3 SaiH040B;SaiH040B; C:\WINDOWS\system32\DRIVERS\SaiH040B.sys [2007-05-01 132232]
S3 SaiU040B;SaiU040B; C:\WINDOWS\system32\DRIVERS\SaiU040B.sys [2007-05-01 28416]
S3 skeyusb;SmartKey USB; C:\WINDOWS\System32\Drivers\skeyusb.sys [2002-11-18 17888]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 Slnt7554;USB Soft Modem Driver; C:\WINDOWS\system32\DRIVERS\slnt7554.sys [2004-08-05 129535]
S3 SlNtHal;SlNtHal; C:\WINDOWS\system32\DRIVERS\Slnthal.sys [2004-08-05 95424]
S3 SlWdmSup;SlWdmSup; C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2004-08-05 13240]
S3 SQTECH905C;Dual Camera; C:\WINDOWS\System32\Drivers\Capt905c.sys [2005-06-17 33545]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\IDS-DI~1\20060901.084\symidsco.sys []
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Acer Media Server;Acer Media Server; C:\Program Files\Acer\Acer eConsole\MediaServerService.exe [2005-09-21 438272]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-04-15 364544]
R2 avg8wd;AVG8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-05-04 298776]
R2 C-DillaSrv;C-DillaSrv; C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE [2001-09-10 32256]
R2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 268800]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-23 152984]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 270336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2007-08-09 73728]
R2 PTK License-FIGHTERS-297811811;PTK License-FIGHTERS-297811811; C:\Program Files\Fighters\licenseservice.exe [2008-11-18 283272]
R2 PTK Live Update-FIGHTERS-297811811;PTK Live Update-FIGHTERS-297811811; C:\Program Files\Fighters\updateservice.exe [2008-11-18 307848]
R2 PTK Scanner-FIGHTERS-297811811;PTK Scanner-FIGHTERS-297811811; C:\Program Files\Fighters\ScannerService.exe [2008-11-18 311944]
R2 PTK SharedAccess-FIGHTERS-297811811;PTK SharedAccess-FIGHTERS-297811811; C:\Program Files\Fighters\configservice.exe [2008-11-18 139912]
R2 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2008-04-14 73796]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-07-09 75304]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exe [2008-07-05 79360]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]
S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.06 2009-06-07 19:25:14
======Uninstall list======
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Acer eConsole-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EC028E6B-F3F1-4192-B63E-A7C97302ED5A}\setup.exe" -l0x40c
Acer eMode Management-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{65CDEC30-4BF4-48FB-8059-9FC480E4E94F}\setup.exe" -l0x40c
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Alice Auto-diagnostic-->C:\Program Files\TechCity Solutions\AliceSAV\uninstall.exe
ArcSoft Software Suite-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E397B40-13F7-4CA2-9943-ADB29ACBBFDF}\setup.exe" -l0x40c
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AVG 8.5-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
C-Dilla Licence Management System-->C:\C_DILLA\setup\cdunin16.exe
Collection Microsoft Encarta 2006-->MsiExec.exe /I{06180000-3E21-46D6-9A91-D927BA08F41D}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
Guide C.E. l'essentiel-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4DED81FF-FD0D-42F2-984B-A59228A6C7FD}\setup.exe"
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Document Viewer 5.3-->C:\Program Files\HP\Digital Imaging\DocumentViewer\hpzscr01.exe -datfile hpqbud04.dat
HP Image Zone 5.3-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Imaging Device Functions 5.3-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Product Assistant-->MsiExec.exe /I{36FDBE6E-6684-462B-AE98-9A39A1B200CC}
HP PSC & OfficeJet 5.3.A-->"C:\Program Files\HP\Digital Imaging\{3E386744-10FA-44b2-98C9-DF7A270DECB3}\setup\hpzscr01.exe" -datfile hposcr06.dat
HP Solution Center & Imaging Support Tools 5.3-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
J2SE Runtime Environment 5.0 Update 10-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
J2SE Runtime Environment 5.0 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150050}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Kit de Connexion Alice ADSL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A0221AD-D30B-4320-8F9B-1D0F0E6C6843}\setup.exe" -l0x40c ControlPanel
L&H TTS3000 Français-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\LHTTSFRF.inf, Uninstall
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
LimeWire 4.18.8-->"C:\Program Files\LimeWire\uninstall.exe"
LUMIX Simple Viewer-->C:\Program Files\InstallShield Installation Information\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}\setup.exe -runfromtemp -l0x040c -removeonly
Macromedia Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0\setup.exe
Microsoft .NET Framework 3.0-->MsiExec.exe /X{15095BF3-A3D7-4DDF-B193-3A496881E003}
Microsoft Age of Empires II-->"C:\Program Files\Microsoft Games\Age of Empires II\UNINSTAL.EXE" /runtemp /uninstall
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2003 Web Components-->MsiExec.exe /I{90120000-00A4-0409-0000-0000000FF1CE}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mise à jour critique pour Lecteur Windows Media 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Nero OEM-->D:\NERO\nero\uninstall\UNNERO.exe /UNINSTALL
NTI Backup NOW! 4-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{385979FE-DC4F-4140-8EAD-A59625000D72} /l1036 BUN4
NTI CD & DVD-Maker-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} /l1036 CDM7
NTI HomeVideo-Maker-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8A6F713-D72D-47AD-A92D-B5C0E13F98C1}\setup.exe" -l0x40c
OpenOffice.org 3.0-->MsiExec.exe /I{1572F66F-F9AD-4D45-B0D2-0F45A0D5A0F6}
Package de base Microsoft de service de chiffrement pour cartes à puce-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
PhotoFiltre-->"C:\Program Files\PhotoFiltre\Uninst.exe"
PHOTOfunSTUDIO -viewer--->C:\Program Files\InstallShield Installation Information\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}\Setup.exe -runfromtemp -l0x040cPackage -removeonly
PlayStation(R)Network Downloader-->MsiExec.exe /X{BC4CA8FA-41D2-4B81-8680-E9B7573D6500}
PlayStation(R)Store-->MsiExec.exe /X{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
Race Driver 2-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{D474A0E8-4421-43C0-BE8E-F454F91E2E2A} /l1036
RAW Thumbnail Viewer-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CAEF3BE9-F5CF-4355-BBC3-90134AD070F8}\Setup.exe" -l0x9
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
SolidWorks 2008 SP0-->MsiExec.exe /I{CE3DA0AA-6784-4548-84B6-E0F89637E407}
Sony Media Manager for PSP 3.0-->MsiExec.exe /X{21C6344A-918B-4D35-ADB6-7614F97B78EA}
SPYWAREfighter-->"C:\Program Files\Fighters\spywarefighter\Uninstall.exe" Remove
SPYWAREfighter-->MsiExec.exe /I{B940005A-1212-4E87-885B-1FF80B40D6F4}
Studio 9-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E491AB7-4589-48CA-9CBB-874CB2788391}\Setup.exe" -l0x40c UNINSTALL
Tomb Raider: Legend 1.0-->D:\TOMB RAIDER\Tomb Raider - Legend\uninsttrl.exe
VLC media player 0.9.4-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp-->"D:\Winamp\UninstWA.exe"
Windows Communication Foundation-->MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation-->MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
ZoneAlarm-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe
======Hosts File======
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
======Security center information======
AV: AVG Anti-Virus Free
FW: ZoneAlarm Firewall (disabled)
======System event log======
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Service de la passerelle de la couche Application est entré dans l'état : en cours d'exécution.
Record Number: 135544
Source Name: Service Control Manager
Time Written: 20090430195135.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service de la passerelle de la couche Application.
Record Number: 135543
Source Name: Service Control Manager
Time Written: 20090430195135.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Carte de performance WMI est entré dans l'état : arrêté.
Record Number: 135542
Source Name: Service Control Manager
Time Written: 20090430195134.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7036
Message: Le service Carte de performance WMI est entré dans l'état : en cours d'exécution.
Record Number: 135541
Source Name: Service Control Manager
Time Written: 20090430195133.000000+120
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Carte de performance WMI.
Record Number: 135540
Source Name: Service Control Manager
Time Written: 20090430195133.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
=====Application event log=====
Computer Name: ACER-755E621E64
Event Code: 1517
Message: Windows a sauvegardé le Registre utilisateur ACER-755E621E64\HUBERT alors qu'une application ou un service utilisait toujours le Registre pendant la fermeture de la session. La mémoire utilisée par le Registre de l'utilisateur n'a pas été libérée. le Registre sera déchargé lorsqu'il ne sera plus utilisé.
Cela est souvent causé par des services s'exécutant en tant que compte d'utilisateur, essayez de configurer les services pour s'exécuter dans le compte service réseau ou service local.
Record Number: 5
Source Name: Userenv
Time Written: 20090323214655.000000+060
Event Type: Avertissement
User: AUTORITE NT\SYSTEM
Computer Name: ACER-755E621E64
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.
Record Number: 4
Source Name: SecurityCenter
Time Written: 20090323203851.000000+060
Event Type: Informations
User:
Computer Name: ACER-755E621E64
Event Code: 32068
Message: La règle de routage de trafic sortant n'est pas valide car elle ne peut pas trouver de périphérique valide. Les télécopies sortantes qui utilisent cette règle ne peuvent pas être acheminées. Vérifiez que le ou les périphériques concernés (en cas de routage vers un groupe de périphériques) sont connectés et installés correctement et allumés. En cas de routage vers un groupe, vérifiez que le groupe est configuré correctement.
Code de pays/région : '*'
Indicatif régional : '*'
Record Number: 3
Source Name: Microsoft Fax
Time Written: 20090323203850.000000+060
Event Type: Avertissement
User:
Computer Name: ACER-755E621E64
Event Code: 32026
Message: Le service de télécopie n'a pas pu initialiser de périphériques de télécopies attribués (virtuel ou TAPI).
Aucune télécopie ne peut être envoyée ou reçue tant qu'un périphérique de télécopies n'a pas été installé.
Record Number: 2
Source Name: Microsoft Fax
Time Written: 20090323203850.000000+060
Event Type: Avertissement
User:
Computer Name: ACER-755E621E64
Event Code: 0
Message:
Record Number: 1
Source Name: Acer Media Server
Time Written: 20090323203838.000000+060
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%Sys
bzhatao
le 07 juin 2009 à 19h44
Telecharges malwarebytes + tutoriel :
-> http://www.malekal.com/tutorial_MalwareBytes_AntiMalware.php
Tu l´installes; mets le a jour...(onglet mise a jour)
Click maintenant sur l´onglet recherche et coche la case : "executer un examen rapide".
Puis click sur "rechercher".
Laisses le scanner le pc...
Si des elements on ete trouvés > click sur supprimer la selection.
si il t´es demandé de redemarrer > click sur "oui".
A la fin un rapport va s´ouvrir; sauvegarde le de maniere a le retrouver en vue de le poster sur le forum.
Copies et colles le rapport stp.
a+
-> http://www.malekal.com/tutorial_MalwareBytes_AntiMalware.php
Tu l´installes; mets le a jour...(onglet mise a jour)
Click maintenant sur l´onglet recherche et coche la case : "executer un examen rapide".
Puis click sur "rechercher".
Laisses le scanner le pc...
Si des elements on ete trouvés > click sur supprimer la selection.
si il t´es demandé de redemarrer > click sur "oui".
A la fin un rapport va s´ouvrir; sauvegarde le de maniere a le retrouver en vue de le poster sur le forum.
Copies et colles le rapport stp.
a+
HUB DE ROE
le 07 juin 2009 à 21h13
Malwarebytes' Anti-Malware 1.37
Version de la base de données: 2245
Windows 5.1.2600 Service Pack 3
07/06/2009 21:12:52
mbam-log-2009-06-07 (21-12-52).txt
Type de recherche: Examen rapide
Eléments examinés: 102013
Temps écoulé: 39 minute(s), 58 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Version de la base de données: 2245
Windows 5.1.2600 Service Pack 3
07/06/2009 21:12:52
mbam-log-2009-06-07 (21-12-52).txt
Type de recherche: Examen rapide
Eléments examinés: 102013
Temps écoulé: 39 minute(s), 58 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
bzhatao
le 07 juin 2009 à 21h25
RSIT et MBAM ne montrent rien....
Un dernier scan pour etre sur qu'il n'y a rien:
Telecharge GENPROC
lien +tuto :
http://www.alt-shift-return.org/Info/GenProc-HowTo.html
Copie et colle le rapport stp...
a+
Un dernier scan pour etre sur qu'il n'y a rien:
Telecharge GENPROC
lien +tuto :
http://www.alt-shift-return.org/Info/GenProc-HowTo.html
Copie et colle le rapport stp...
a+
HUB DE ROE
le 07 juin 2009 à 21h58
Voici le rapport, il semble ne rien trouver alors serait-ce une erreur de AVG8 ?
Rapport GenProc 2.580 [1]
@ 07/06/2009 à 21:56:15
@ Windows XP Service Pack 3
@ Internet Explorer (7.0.5730.11) [Navigateur par défaut]
GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :
Poste un rapport Nod32 http://www.eset-nod32.fr/scanner.html (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
- C:\Program Files\EsetOnlineScanner\log.txt
----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------
Rapport GenProc 2.580 [1]
@ 07/06/2009 à 21:56:15
@ Windows XP Service Pack 3
@ Internet Explorer (7.0.5730.11) [Navigateur par défaut]
GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :
Poste un rapport Nod32 http://www.eset-nod32.fr/scanner.html (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
- C:\Program Files\EsetOnlineScanner\log.txt
----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------
bzhatao
le 07 juin 2009 à 22h09
Je ne pense pas que tu sois infecté...
Donnes des arguments stp....
a+
Donnes des arguments stp....
a+
HUB DE ROE
le 07 juin 2009 à 22h29
Voici ce que AVG me mets en quarantaine, est-ce que je me fait des idées ? A suivre !
"Infection";"Cheval de Troie : Downloader.Generic_c.AGS";"C:\RECYCLER\S-1-5-21-3973276915-200159989-1746211068-1013\Dc5.avi";"";"31/05/2009, 20:39:58"
"Avertissement";"Détection de : Tracking cookie.247realmedia ";"C:\Documents and Settings\FAMILLE\Cookies\famille@247realmedia[2].txt";"";"01/06/2009, 19:08:43"
"Avertissement";"Détection de : Tracking cookie.247realmedia ";"C:\Documents and Settings\FAMILLE\Cookies\famille@247realmedia[1].txt";"";"06/06/2009, 14:38:42"
"Avertissement";"Détection de : Tracking cookie.247realmedia ";"C:\Documents and Settings\FAMILLE\Cookies\famille@247realmedia[1].txt";"";"31/05/2009, 19:08:16"
"Avertissement";"Détection de : Tracking cookie.247realmedia ";"C:\Documents and Settings\FAMILLE\Cookies\famille@247realmedia[1].txt";"";"29/05/2009, 19:09:05"
"Avertissement";"Détection de : Tracking cookie.2o7 ";"C:\Documents and Settings\FAMILLE\Cookies\famille@msnportal.112.2o7[1].txt";"";"03/06/2009, 19:08:30"
"Avertissement";"Détection de : Tracking cookie.2o7 ";"C:\Documents and Settings\FAMILLE\Cookies\famille@msnportal.112.2o7[1].txt";"";"06/06/2009, 14:38:45"
"Avertissement";"Détection de : Tracking cookie.2o7 ";"C:\Documents and Settings\FAMILLE\Cookies\famille@msnportal.112.2o7[1].txt";"";"07/06/2009, 12:25:09"
"Avertissement";"Détection de : Tracking cookie.2o7 ";"C:\Documents and Settings\FAMILLE\Cookies\famille@msnportal.112.2o7[1].txt";"";"07/06/2009, 12:18:44"
"Avertissement";"Détection de : Tracking cookie.2o7 ";"C:\Documents and Settings\HUBERT\Cookies\hubert@2o7[2].txt";"";"06/06/2009, 14:50:48"
"Avertissement";"Détection de : Tracking cookie.2o7 ";"C:\Documents and Settings\FAMILLE\Cookies\famille@msnportal.112.2o7[1].txt";"";"30/05/2009, 19:10:45"
"Avertissement";"Détection de : Tracking cookie.2o7 ";"C:\Documents and Settings\FAMILLE\Cookies\famille@msnportal.112.2o7[1].txt";"";"29/05/2009, 19:09:07"
"Avertissement";"Détection de : Tracking cookie.Adtech ";"C:\Documents and Settings\FAMILLE\Cookies\famille@adtech[1].txt";"";"29/05/2009, 19:09:06"
"Avertissement";"Détection de : Tracking cookie.Adtech ";"C:\Documents and Settings\FAMILLE\Cookies\famille@adtech[1].txt";"";"03/06/2009, 19:08:28"
"Avertissement";"Détection de : Tracking cookie.Adtech ";"C:\Documents and Settings\FAMILLE\Cookies\famille@adtech[1].txt";"";"31/05/2009, 19:08:17"
"Avertissement";"Détection de : Tracking cookie.Estat ";"C:\Documents and Settings\FAMILLE\Cookies\famille@estat[1].txt";"";"01/06/2009, 19:08:45"
"Avertissement";"Détection de : Tracking cookie.Estat ";"C:\Documents and Settings\FAMILLE\Cookies\famille@estat[1].txt";"";"07/06/2009, 12:27:22"
"Avertissement";"Détection de : Tracking cookie.Estat ";"C:\Documents and Settings\FAMILLE\Cookies\famille@estat[1].txt";"";"05/06/2009, 20:23:06"
"Avertissement";"Détection de : Tracking cookie.Estat ";"C:\Documents and Settings\HUBERT\Cookies\hubert@estat[1].txt";"";"04/06/2009, 19:15:29"
"Avertissement";"Détection de : Tracking cookie.Estat ";"C:\Documents and Settings\HUBERT\Cookies\hubert@estat[1].txt";"";"06/06/2009, 14:50:48"
"Avertissement";"Détection de : Tracking cookie.Estat ";"C:\Documents and Settings\FAMILLE\Cookies\famille@estat[1].txt";"";"29/05/2009, 19:09:06"
"Avertissement";"Détection de : Tracking cookie.Overture ";"C:\Documents and Settings\FAMILLE\Cookies\famille@overture[1].txt";"";"26/05/2009, 19:08:47"
"Avertissement";"Détection de : Tracking cookie.Revsci ";"C:\Documents and Settings\FAMILLE\Cookies\famille@revsci[2].txt";"";"26/05/2009, 19:08:48"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@serving-sys[2].txt";"";"07/06/2009, 12:26:57"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@serving-sys[2].txt";"";"06/06/2009, 14:38:45"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@bs.serving-sys[1].txt";"";"06/06/2009, 14:38:43"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@bs.serving-sys[1].txt";"";"07/06/2009, 12:26:57"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@bs.serving-sys[1].txt";"";"27/05/2009, 19:09:28"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@serving-sys[2].txt";"";"27/05/2009, 19:09:29"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@bs.serving-sys[2].txt";"";"26/05/2009, 19:08:46"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@serving-sys[2].txt";"";"01/06/2009, 19:08:47"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@serving-sys[2].txt";"";"07/06/2009, 12:25:11"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\HUBERT\Cookies\hubert@serving-sys[2].txt";"";"26/05/2009, 19:13:00"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@bs.serving-sys[2].txt";"";"01/06/2009, 19:08:44"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\FAMILLE\Cookies\famille@bs.serving-sys[2].txt";"";"07/06/2009, 12:25:38"
"Avertissement";"Détection de : Tracking cookie.Serving-sys ";"C:\Documents and Settings\HUBERT\Cookies\hubert@bs.serving-sys[2].txt";"";"26/05/2009, 19:12:59"
"Avertissement";"Détection de : Tracking cookie.Smartadserver ";"C:\Documents and Settings\FAMILLE\Cookies\famille@smartadserver[1].txt";"";"06/06/2009, 14:38:47"
"Avertissement";"Détection de : Tracking cookie.Tacoda ";"C:\Documents and Settings\FAMILLE\Cookies\famille@tacoda[2].txt";"";"06/06/2009, 14:38:47"
"Avertissement";"Détection de : Tracking cookie.Weborama ";"C:\Documents and Settings\FAMILLE\Cookies\famille@weborama[1].txt";"";"06/06/2009, 14:38:48"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"26/05/2009, 19:13:00"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"31/05/2009, 19:00:04"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"31/05/2009, 17:12:19"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"31/05/2009, 20:36:42"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"31/05/2009, 14:25:46"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"31/05/2009, 23:14:59"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"01/06/2009, 14:28:08"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"01/06/2009, 14:55:33"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"31/05/2009, 12:36:41"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"31/05/2009, 11:58:21"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"30/05/2009, 21:34:16"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"30/05/2009, 13:20:14"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"01/06/2009, 19:08:46"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"30/05/2009, 00:01:38"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"01/06/2009, 21:25:45"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"02/06/2009, 19:08:33"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"02/06/2009, 19:16:13"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"02/06/2009, 22:36:52"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"07/06/2009, 12:17:51"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"03/06/2009, 15:47:06"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"06/06/2009, 22:35:29"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"26/05/2009, 19:08:47"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[1].txt";"";"03/06/2009, 19:08:30"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"29/05/2009, 19:15:07"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"27/05/2009, 19:13:50"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"04/06/2009, 19:15:29"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"05/06/2009, 15:31:17"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"06/06/2009, 19:16:24"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"05/06/2009, 19:07:48"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"05/06/2009, 19:15:50"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"05/06/2009, 19:39:09"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"26/05/2009, 22:11:07"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[1].txt";"";"06/06/2009, 14:50:48"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"06/06/2009, 14:15:50"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"27/05/2009, 21:37:09"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"07/06/2009, 12:23:40"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"26/05/2009, 08:30:02"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"27/05/2009, 13:30:41"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"28/05/2009, 18:43:10"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"27/05/2009, 14:02:44"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\HUBERT\Cookies\hubert@m.webtrends[2].txt";"";"25/05/2009, 22:03:12"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"07/06/2009, 12:18:15"
"Avertissement";"Détection de : Tracking cookie.Webtrends ";"C:\Documents and Settings\FAMILLE\Cookies\famille@m.webtrends[2].txt";"";"27/05/2009, 18:48:51"
"Avertissement";"Détection de : Tracking cookie.Yadro ";"C:\Documents and Settings\FAMILLE\Cookies\famille@yadro[2].txt";"";"06/06/2009, 14:38:49"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\FAMILLE\Cookies\famille@ad.yieldmanager[2].txt";"";"05/06/2009, 22:32:16"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\FAMILLE\Cookies\famille@ad.yieldmanager[2].txt";"";"05/06/2009, 19:07:46"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\HUBERT\Cookies\hubert@ad.yieldmanager[2].txt";"";"06/06/2009, 22:35:29"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\FAMILLE\Cookies\famille@ad.yieldmanager[2].txt";"";"03/06/2009, 19:08:28"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\HUBERT\Cookies\hubert@ad.yieldmanager[2].txt";"";"02/06/2009, 22:43:07"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\FAMILLE\Cookies\famille@ad.yieldmanager[2].txt";"";"01/06/2009, 19:08:43"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\FAMILLE\Cookies\famille@ad.yieldmanager[2].txt";"";"31/05/2009, 19:08:16"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\FAMILLE\Cookies\famille@ad.yieldmanager[1].txt";"";"29/05/2009, 19:09:05"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\HUBERT\Cookies\hubert@ad.yieldmanager[1].txt";"";"28/05/2009, 18:43:10"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\HUBERT\Cookies\hubert@ad.yieldmanager[1].txt";"";"27/05/2009, 23:01:46"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\HUBERT\Cookies\hubert@ad.yieldmanager[2].txt";"";"27/05/2009, 21:37:08"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\HUBERT\Cookies\hubert@ad.yieldmanager[2].txt";"";"26/05/2009, 22:37:54"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\HUBERT\Cookies\hubert@ad.yieldmanager[1].txt";"";"26/05/2009, 19:12:59"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\FAMILLE\Cookies\famille@ad.yieldmanager[1].txt";"";"26/05/2009, 19:08:46"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\FAMILLE\Cookies\famille@ad.yieldmanager[1].txt";"";"07/06/2009, 12:48:31"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\FAMILLE\Cookies\famille@ad.yieldmanager[1].txt";"";"07/06/2009, 12:49:08"
"Avertissement";"Détection de : Tracking cookie.Yieldmanager ";"C:\Documents and Settings\FAMILLE\Cookies\famille@ad.yieldmanager[1].txt";"";"07/06/2009, 13:01:11"
bzhatao
le 08 juin 2009 à 18h04
Poste un rapport Nod32 http://www.eset-nod32.fr/scanner.html (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
- C:\Program Files\EsetOnlineScanner\log.txt
a+
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
- C:\Program Files\EsetOnlineScanner\log.txt
a+
HUB DE ROE
le 09 juin 2009 à 22h09
Bonsoir,
Le scan a été très long et j'ai du reprendre ce jour, ci dessous le rapport
ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=6
# iexplore.exe=7.00.6000.16827 (vista_gdr.090226-1506)
# OnlineScanner.ocx=1.0.0.5863
# api_version=3.0.2
# EOSSerial=63709579aa426f4fb46cf9a8e943f554
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2009-06-09 08:03:11
# local_time=2009-06-09 10:03:11 (+0100, Paris, Madrid (heure d'été))
# country="France"
# lang=1036
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=1026 21 83 100 19087916093750
# scanned=103237
# found=2
# cleaned=2
# scan_time=10154
D:\ZONEALARM\zlsSetup_70_462_000_fr.exe une variante de Win32/AdInstaller application (supprimé - mis en quarantaine) 00000000000000000000000000000000
D:\NERO\Nero-6.6.1.15a.exe Win32/Toolbar.AskSBar application (supprimé - mis en quarantaine) 00000000000000000000000000000000
ESET me demande de désinstaller les fichiers à la fermeture et de supprimer les fichiers en qarantaine, est-ce que cela supprimera les menaces.
Urgent avant de tout fermer
Le scan a été très long et j'ai du reprendre ce jour, ci dessous le rapport
ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=6
# iexplore.exe=7.00.6000.16827 (vista_gdr.090226-1506)
# OnlineScanner.ocx=1.0.0.5863
# api_version=3.0.2
# EOSSerial=63709579aa426f4fb46cf9a8e943f554
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2009-06-09 08:03:11
# local_time=2009-06-09 10:03:11 (+0100, Paris, Madrid (heure d'été))
# country="France"
# lang=1036
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=1026 21 83 100 19087916093750
# scanned=103237
# found=2
# cleaned=2
# scan_time=10154
D:\ZONEALARM\zlsSetup_70_462_000_fr.exe une variante de Win32/AdInstaller application (supprimé - mis en quarantaine) 00000000000000000000000000000000
D:\NERO\Nero-6.6.1.15a.exe Win32/Toolbar.AskSBar application (supprimé - mis en quarantaine) 00000000000000000000000000000000
ESET me demande de désinstaller les fichiers à la fermeture et de supprimer les fichiers en qarantaine, est-ce que cela supprimera les menaces.
Urgent avant de tout fermer
bzhatao
le 10 juin 2009 à 20h11
Tout à fait...
Relances AVG piur voir s'il trouve toujours qquchose....
a+
HUB DE ROE
le 10 juin 2009 à 20h56
Dernière analyse de AVG ce soir, trouver aucun Trojan mais toujours ces foutus traceurs de cookies.
Serait-ce abuser de savoir si je peux les supprimer !
Merci d'avance.
bzhatao
le 10 juin 2009 à 21h54
Tout à fait: ==> Supprimes!!!
Pour desinstaller les outils utilisés
Telecharge ToolsCleaner2--> http://pc-system.fr/TC/ToolsCleaner2.exe
-Une fois téléchargé, installe-le et lance-le
-Clique sur Recherche et laisse le scan se terminer
-Clique sur SUPPRESSION
-Clique sur Quitter pour que le rapport puisse se créer
-Poste moi le rapport se trouvant ici--> C:\TCleaner.txt
puis
---> Télécharge et installe CCleaner
(N'installe pas la Yahoo Toolbar) :
http://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs(...)
* Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
* Ensuite, choisis Registre, puis Chercher des erreurs. Une fois terminé, répare toutes les erreurs tant de fois qu il en trouve a l analyse(Sauvegarde la base de registre).
* Décoche la case plus vieux que 48 h
---> Il est nécessaire de désactiver puis réactiver la restauration système pour la purger :
XP:
http://www.tayo.fr/desactiver-restauration-systeme-sur-windows-xp-tutoriel.ph(...)
VISTA:
http://www.tayo.fr/desactiver-restauration-windows-vista-tutoriel.php
---> Je te conseille de créer un point de restauration que tu pourras utiliser plus tard si tu as un problème :
http://www.vulgarisation-informatique.com/creer-point-restauration.php
a+
PRODUITS
- Portables |
- PC |
- Moniteurs |
- Photo / Vidéo |
- T.V. |
- Audio |
- GPS |
- Stockage |
- Téléphonie |
- autres catégories
TÉLÉCHARGER - LOGICIELS
- Windows & logiciels |
- Bureautique |
- Développement |
- Internet |
- Jeux |
- Loisirs |
- Multimédia |
- Personnaliser son pc |
- Sécurité |
- Utilitaires |
- Logiciels Linux |
- logiciels Mac
JEUX VIDÉOS
- jeux PC |
- Xbox |
- Playstation |
- Wii |
- PSP |
- DS |
- Action |
- Aventure |
- MMORPG |
- Sports |
- Simulation |
- Enfant |
- Soluces et astuces
LOISIRS
01NET PRO
- Réseaux et Internet |
- Programmation et développement |
- Logiciels d'entreprise |
- Systèmes d'exploitation en entreprise |
- Sécurité en entreprise |
- Entreprenariat |
- Emploi |
- Services PRO |
- Matériel PRO
AVIS ET COMMENTAIRES
- Les actualités de 01net. |
- Avis sur les jeux vidéos |
- Avis sur les produits |
- Avis sur les logiciels |
A PROPOS DE 01NET
publicité
Messages des modérateurs
A lire aussi
PRODUITS
- [RESOLU]Virus ou trojan? - > plutôt problème carte graphique
- Trojan Et problème driver
- gros problème virus ou pas trojan ou pas ...????
TÉLÉCHARGER - LOGICIELS
- problème avec star downloader
- trojan Clspring.BW & Trojan-Downloader.BKK
- trojan.virtumod.bl , trojan.downloader , trojan[Résolu]
- Trojan.SwfDL.A2, Trojan.Downloader.Agent.AE1 help me please
- Trojan-PWS.WOW.AIC et Trojan-Downloader.VB in da place
JEUX VIDÉOS
LOISIRS
01NET PRO
AVIS ET COMMENTAIRES
A PROPOS DE 01NET
 |
 |
> Sécurité :
Norton Antivirus 2010 La solution antivirale la plus répandue du monde.
|
 |
||
L'ORDINATEUR INDIVIDUEL
Le mensuel informatique qui vous informe et vous conseille.
Nous contacter
|
Charte de confiance
|
Voir notice légale
01net. - 01men - RMC - BFM Radio - BFM TV - TousLesPodcasts - 01informatique.fr - Association RMC-BFM
01net. - 01men - RMC - BFM Radio - BFM TV - TousLesPodcasts - 01informatique.fr - Association RMC-BFM
Tous droits réservés © 1999 - 2009 Internext - 01net.