[OK] cherche solution contre un virus/trojan/spyware/malware

Sécurité et insécurité. Virus, Trojans, Spywares, Failles etc. …

Modérateur: Modérateurs et Modératrices

Règles du forum
Assiste.com a suspendu l'assistance à la décontamination après presque 15 ans sur l'ancien forum puis celui-ci. Voir :

Procédure de décontamination 1 - Anti-malware
Décontamination anti-malwares

Procédure de décontamination 2 - Anti-malware et antivirus (La Manip)
La Manip - Procédure standard de décontamination

Entretien périodique d'un PC sous Windows
Entretien périodique d'un PC sous Windows

Protection des navigateurs, de la navigation et de la vie privée
Protéger le navigateur, la navigation et la vie privée

[OK] cherche solution contre un virus/trojan/spyware/malware

Messagede mogan85 » 11 Déc 2008, 22:32

Bonjour à tous! Je post sur ce forum car je suis confronté un quelquechose qui a infecté mon ordinateur. voici les symptomes: ma connexion est tres lente, toute connexion sur un site depuis une recherche google me redirige sur des sites de publicité, enfin je ne peux plus avoir accès a ma boite mail msn, j'ai du utiliser une autre adresse pour m'inscrire sur ce forum! Mais jusqu'ici rien d'insurmontable...le souci c'est que je ne parviens pas à installer des logiciels qui me permettraient de regler le probleme comme hijackthis, ou spybot! Je les ai télécharger mais impossible rien ne se passe quand je double-click pour installer hijackthis, quand a spybot il ne parvient pas a se connecter lors de l'installation ce qui m'oblige a l'annuler a chaque fois. Je ne peux me connecter a aucun site lié aux anti-virus ou scan en ligne...c'est vraiment la galère!!! Si quelqu'un peut m'aider vous etes mon dernier espoir (et non il n'y en a pas d'autres!) merci d'avance!! je suis a votre disposition pour plus de détails!

système d'exploitation: windows XP
antivirus: Antivir
pare-feu: pare-feu par défaut
mogan85
 
Messages: 28
Inscription: 11 Déc 2008, 21:34

Messagede mogan85 » 11 Déc 2008, 22:50

J'ai réussi a utiliser hijackthis grace à une technique trouvée sur votre forum. Je publie le rapport:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:48:46, on 11/12/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ycomp/ ... ch/ie.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ycomp/ ... .yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ycomp/ ... .yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [EnvyHFCPL] C:\Program Files\Audio Deck\EnMixCPL.exe 1
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) - http://ax.emsisoft.com/asquared.cab
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

--
End of file - 5615 bytes
mogan85
 
Messages: 28
Inscription: 11 Déc 2008, 21:34

Messagede nickW » 11 Déc 2008, 23:09

Bonsoir,


Je t'ai envoyé un MP (Message Privé).


A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede mogan85 » 11 Déc 2008, 23:36

RE-bonsoir j'ai suivi tes instructions voilà le log malware:

Malwarebytes' Anti-Malware 1.31
Version de la base de données: 1456
Windows 5.1.2600 Service Pack 2

11/12/2008 23:17:08
mbam-log-2008-12-11 (23-17-08).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 88335
Temps écoulé: 21 minute(s), 56 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 2
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 7

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\tdssdata (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\tdss (Trojan.Agent) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\system32\TDSScfub.dll (Trojan.TDSS) -> Delete on reboot.
C:\WINDOWS\system32\TDSSnrsr.dll (Trojan.TDSS) -> Delete on reboot.
C:\WINDOWS\system32\TDSSofxh.dll (Trojan.TDSS) -> Delete on reboot.
C:\WINDOWS\system32\TDSSriqp.dll (Trojan.TDSS) -> Delete on reboot.
C:\WINDOWS\system32\drivers\TDSSpaxt.sys (Trojan.TDSS) -> Delete on reboot.
C:\WINDOWS\system32\TDSSfpmp.dll (Rootkit.Agent) -> Delete on reboot.
C:\WINDOWS\system32\TDSStkdv.log (Trojan.TDSS) -> Delete on reboot.
mogan85
 
Messages: 28
Inscription: 11 Déc 2008, 21:34

Messagede mogan85 » 11 Déc 2008, 23:37

Voici le log OTListlt.txt:
OTListIt logfile created on: 11/12/2008 23:34:57 - Run 2
OTListIt by OldTimer - Version 1.0.12.1 Folder = C:\Documents and Settings\komtok\Mes documents
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,65 Gb Available Physical Memory | 82,54% Memory free
3,85 Gb Paging File | 3,56 Gb Available in Paging File | 92,57% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 11,04 Gb Total Space | 2,68 Gb Free Space | 24,26% Space Free | Partition Type: NTFS
Drive D: | 63,48 Gb Total Space | 0,62 Gb Free Space | 0,98% Space Free | Partition Type: NTFS
Drive E: | 3,50 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MORGAN
Current User Name: komtok
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
File Age = 30 Days

========== Processes ==========

[2008/10/29 03:09:10 | 00,585,728 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
[2008/10/29 03:09:10 | 00,585,728 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
[2008/10/15 13:31:25 | 00,068,865 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
[2008/10/15 13:29:28 | 00,151,297 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
[2008/11/14 18:43:03 | 00,020,480 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\realplay.exe
[2002/09/20 15:16:30 | 00,090,112 | ---- | M] (Logitech Inc.) -- C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVComS.exe
[2003/12/13 01:50:34 | 00,033,792 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
[2008/06/10 04:27:04 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
[2008/06/12 13:28:40 | 00,266,497 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
[2008/10/16 14:09:44 | 00,051,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
[2007/10/18 11:31:54 | 00,098,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe
[2004/08/03 23:54:52 | 00,093,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE
[2007/09/20 10:35:36 | 00,118,336 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
[2004/08/03 23:55:04 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe
[2008/12/11 22:46:56 | 00,418,816 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\komtok\Mes documents\machin.exe

========== (O23) Win32 Services ==========

[2008/10/15 13:31:25 | 00,068,865 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe -- (AntiVirScheduler [Auto | Running])
[2008/10/15 13:29:28 | 00,151,297 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe -- (AntiVirService [Auto | Running])
[2008/10/29 03:09:10 | 00,585,728 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller [Auto | Running])
[2008/10/28 21:05:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart [Auto | Stopped])
[2005/04/04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
[2007/10/18 11:31:54 | 00,098,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Running])
[2007/10/25 15:27:54 | 00,266,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc [On_Demand | Stopped])

========== Driver Services ==========

[2008/10/29 04:10:58 | 03,341,824 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag [On_Demand | Running])
[2008/11/15 00:43:29 | 00,278,728 | ---- | M] () -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt [Auto | Running])
[2007/02/27 14:24:55 | 00,011,840 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys -- (avgio [System | Running])
[2008/05/20 15:29:43 | 00,052,032 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys -- (avgntflt [On_Demand | Running])
[2008/12/10 18:11:54 | 00,075,072 | ---- | M] (Avira GmbH) -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb [System | Running])
[2005/02/23 07:47:50 | 00,584,512 | ---- | M] (VIA - IC Ensemble, Inc.) -- C:\WINDOWS\system32\drivers\Envy24HF.sys -- (Envy24HFS [On_Demand | Running])
[2008/11/15 00:43:29 | 00,025,416 | ---- | M] () -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt [Auto | Running])
[2008/08/01 11:36:00 | 00,054,784 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD [On_Demand | Running])
[2008/08/18 18:54:00 | 00,145,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts [Boot | Running])
[2008/08/01 11:36:00 | 00,022,016 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus [On_Demand | Running])
[2002/06/10 14:16:34 | 00,371,766 | ---- | M] (Philips Semiconductors) -- C:\WINDOWS\system32\drivers\CamDrL21.sys -- (PhilCam8116 [On_Demand | Running])
[2001/08/28 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink [On_Demand | Running])
[2008/09/19 22:57:32 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\drivers\pxhelp20.sys -- (PxHelp20 [Boot | Running])
[2004/07/17 10:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv [On_Demand | Stopped])
[2007/11/08 18:03:26 | 00,021,248 | ---- | M] (AVIRA GmbH) -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv [System | Running])
[2004/08/03 23:07:56 | 00,059,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio [On_Demand | Running])

========== Internet Explorer ==========

HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions =
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ycomp/ ... .yahoo.com
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

O1 HOSTS File: (790 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - Reg Error: Key does not exist or could not be opened. File not found
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - Reg Error: Key does not exist or could not be opened. File not found
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - Reg Error: Key does not exist or could not be opened. File not found
O3 - HKCU\..\Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key does not exist or could not be opened. File not found
O4 - HKLM..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min (Avira GmbH)
O4 - HKLM..\Run: [EnvyHFCPL] C:\Program Files\Audio Deck\EnMixCPL.exe 1 (VIA Technologies, Inc)
O4 - HKLM..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe (Logitech Inc.)
O4 - HKLM..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE (Logitech Inc.)
O4 - HKLM..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER (RealNetworks, Inc.)
O4 - HKLM..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKCU..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\komtok\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O15 - HKLM\..Trusted Sites: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} http://ax.emsisoft.com/asquared.cab (a-squared Scanner)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O18 - Protocol\Handler: - ipp - No CLSID value found
O18 - Protocol\Handler: - ipp\0x00000001 - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler: - livecall - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler: - msdaipp - No CLSID value found
O18 - Protocol\Handler: - msdaipp\0x00000001 - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler: - msdaipp\oledb - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler: - msnim - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler: - wlmailhtml - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - See sections below for AppInitDlls and Winlogon settings

========== Winlogon Notify Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\]
AtiExtEvent: "DllName" = Ati2evxx.dll -- C:\WINDOWS\system32\ati2evxx.dll (ATI Technologies Inc.)

========== Safeboot Options ==========

"AlternateShell" = cmd.exe

========== CDRom AutoRun Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1

========== Autorun Files on Drives ==========

AUTOEXEC.BAT []
[2008/11/14 01:13:17 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ NTFS ]

autoplay.exe [MZ | ]
[2006/09/15 19:31:42 | 00,983,040 | R--- | M] () -- E:\autoplay.exe -- [ UDF ]

Autoplay.ini [[general] | | ; loc id for the "Exit" link | exit = 1004 | | ; loc id for the "Browse CD" link | browse = 1006 | | ; loc id for title of the window | title = 1000 | | ; loc id for the "Play Game" link | play = 1002 | | ; loc id for the "Install Game" link | install = 1001 | | [display] | | ; background bitmap. it will be strecthed to cover the entire window | background = Autorun.bmp | | ; width of the window (in pixels) | width = 640 | | ; height of the window (in pixels) | height = 300 | | ; truetype font to use for the links | fontName = Tahoma | | ; font size (in points) for links displayed in large font | fontLarge = 17 | | ; font size (in points) for links displayed in small font | fontSmall = 15 | | ; text colour for the links | colourNormal = R235 G245 B251 | | ; text colour when the mouse is over a link | colourHover = R255 G230 B52 | | ; text colour when a link is clicked | colourClicked = R255 G0 B0 | | [app] | | ; name of the setup exe to install the game | appsetup = setup.exe | | ; name of the game exe to launch the game | appexec = DarkCrusade.exe | | ; name of the key to look for in the registry | registrykey = Software\THQ\Dawn of War - Dark Crusade | | ; name of the installation folder registry value | registryvalueinstall = InstallLocation | | ; name of the cd key registry value | registryvaluecdkey = CDKEY | | [blockprocesses] | | ; names of processes to block on - if any of these processes is active when the autorun starts, the autorun will abort | | 102 = DarkCrusade.exe | | [links] | | ; each link must follow this format: | ; alpha-sorted-name = loc id of the link, use large font (0/1), command to execute | | ; empty links are allowed, in this format: | ; alpha-sorted-name = 0, 0, | | l01 = 1003, 1, readme.html | l02 = 0, 0, | l04 = 1013, 0, http://www.thq.com | l05 = 1008, 0, http://www.thq.com/support | l06 = 1012, 0, http://www.dawnofwargame.com/register/ | l07 = 1011, 0, directx/dxsetup.exe | l08 = 1014, 0, xfire_installer.exe | l09 = 0, 0, | l10 = 0, 0, | l11 = 0, 0 | | ]
[2006/09/13 08:06:40 | 00,001,989 | R--- | M] () -- E:\Autoplay.ini -- [ UDF ]

Autoplay.ucs [1000 Programme de lancement de Dawn of War: Dark Crusade | 1001 Installer le jeu | 1002 Jouer au jeu | 1003 Readme (LisezMoi) | 1004 Fermer la fenêtre | 1005 Installer Adobe Acrobat Reader | 1006 Parcourir le DVD | 1007 Bonus | 1008 Site web d'assistance | 1009 Bande-annonce de Full Spectrum Warrior | 1010 Bande-annonce de Company of Heroes | 1011 Installer DirectX 9.0c | 1012 S'inscrire en ligne | 1013 Site web de THQ | 1014 Installer XFire | ]
[2006/09/15 04:50:54 | 00,000,870 | R--- | M] () -- E:\Autoplay.ucs -- [ UDF ]

autorun.bmp [BM8Ê | ]
[2006/08/31 23:39:37 | 00,576,056 | R--- | M] () -- E:\autorun.bmp -- [ UDF ]

autorun.inf [[autorun] | open=AutoPlay.exe | icon=AutoPlay.exe | ]
[2006/08/30 13:00:03 | 00,000,049 | R--- | M] () -- E:\autorun.inf -- [ UDF ]

========== MountPoints2 ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{450e031b-b1e5-11dd-a8d9-806d6172696f}\Shell]
"" = AutoRun


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{450e031b-b1e5-11dd-a8d9-806d6172696f}\Shell\AutoRun\command]
"" = E:\AutoPlay.exe -- [2006/09/15 19:31:42 | 00,983,040 | R--- | M] ()

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\Shell]
"" = AutoRun


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\Shell\AutoRun\command]
"" = E:\AutoPlay.exe -- [2006/09/15 19:31:42 | 00,983,040 | R--- | M] ()

========== Files/Folders - Created Within 30 Days ==========

[4 C:\WINDOWS\System32\*.tmp files]
[4 C:\WINDOWS\*.tmp files]
[2008/12/11 23:25:20 | 02,539,400 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\komtok\Mes documents\bidule.exe
[2008/12/11 23:25:20 | 00,418,816 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\komtok\Mes documents\machin.exe
[2008/12/11 23:25:04 | 02,927,475 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\mogan85.zip
[2008/12/11 23:18:25 | 00,000,000 | ---D | C] -- C:\Avenger
[2008/12/11 22:54:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Malwarebytes
[2008/12/11 22:52:26 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2008/12/11 22:52:26 | 00,000,720 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\trucMalwarebytes' Anti-Malware.lnk
[2008/12/11 22:52:24 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2008/12/11 22:52:23 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2008/12/11 22:52:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2008/12/11 22:48:18 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\HijackThis.lnk
[2008/12/11 22:48:18 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2008/12/11 22:47:46 | 01,583,839 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\SmitfraudFix.exe
[2008/12/10 20:57:30 | 02,539,400 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\komtok\Mes documents\trucbidulembam-setup.exe
[2008/12/10 18:02:36 | 00,001,851 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\AntiVir PE Classic.lnk
[2008/12/10 18:02:29 | 00,045,376 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys
[2008/12/10 18:02:29 | 00,022,336 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys
[2008/12/10 18:02:29 | 00,021,248 | ---- | C] (AVIRA GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys
[2008/12/10 18:02:28 | 00,075,072 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2008/12/10 18:02:28 | 00,000,000 | ---D | C] -- C:\Program Files\Avira
[2008/12/10 18:02:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira
[2008/12/10 17:59:41 | 25,220,680 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\antivir_workstation_winu_fr_h.exe
[2008/12/10 17:40:29 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\komtok\Mes documents\HJTtrucbiduleInstall.exe
[2008/12/10 17:25:28 | 00,010,758 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\HiJackThis.zip
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\komtok\Mes documents\HiJackThis.zip:SummaryInformation
@Alternate Data Stream - 0 bytes -> C:\Documents and Settings\komtok\Mes documents\HiJackThis.zip:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
[2008/12/10 17:02:19 | 15,083,520 | ---- | C] (Safer Networking Limited ) -- C:\Documents and Settings\komtok\Mes documents\spybotsd160.exe
[2008/12/10 15:51:01 | 09,344,284 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\setupfre.exe
[2008/12/10 14:41:15 | 00,000,441 | ---- | C] () -- C:\WINDOWS\System32\TDSSosvd.dat
[2008/11/30 22:50:47 | 09,031,808 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\01_sekai_wa_sude_ni_azamuki_no_ue_ni.mp3
[2008/11/30 22:48:36 | 05,891,211 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\02_standing_to_defend_you.mp3
[2008/11/30 21:34:26 | 05,335,040 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\01_-_ichirin_no_hana.mp3
[2008/11/30 21:28:03 | 03,969,355 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\22_-_going_home.mp3
[2008/11/30 21:22:47 | 04,976,428 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\20_-_storm_center.mp3
[2008/11/30 21:19:36 | 02,725,136 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\16_-_heat_of_the_battle.mp3
[2008/11/30 21:16:35 | 04,185,784 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\15_-_catch-22.mp3
[2008/11/30 21:16:01 | 05,605,376 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\12_-_nothing_can_be_explained_(vocal_ver[1].).mp3
[2008/11/30 21:11:20 | 06,516,645 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\10_-_will_of_the_heart.mp3
[2008/11/30 21:09:32 | 03,796,728 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\11_-_requiem_for_the_lost_ones.mp3
[2008/11/30 21:05:08 | 04,482,959 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\08_-_raw_breath_of_danger.mp3
[2008/11/30 21:04:13 | 03,411,974 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\09_-_enemy_unseen.mp3
[2008/11/30 20:59:49 | 03,670,644 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\07_-_creeping_shadows.mp3
[2008/11/30 20:56:59 | 02,894,737 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\05_-_head_in_the_clouds.mp3
[2008/11/30 20:55:13 | 03,293,128 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\04_-_oh_so_tired.mp3
[2008/11/30 20:53:16 | 03,465,216 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\02_-_~asterisk~_(ost_ver[1].).mp3
[2008/11/30 20:49:55 | 08,237,243 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\21_-_swan_song.mp3
[2008/11/30 20:47:11 | 05,980,288 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\22_-_999.mp3
[2008/11/30 20:19:06 | 06,561,920 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\20_-_torn_apart.mp3
[2008/11/30 20:16:33 | 05,576,832 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\19_-_rage_of_lunacy.mp3
[2008/11/30 20:06:18 | 04,622,336 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\18_-_back_to_the_wall.mp3
[2008/11/30 20:05:09 | 07,229,568 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\17_-_whisper_of_the_apocalypse.mp3
[2008/11/30 20:01:19 | 05,021,824 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\15_-_the_calling.mp3
[2008/11/30 19:55:36 | 05,886,080 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\14_-_citadel_of_the_bount.mp3
[2008/11/30 19:55:12 | 06,670,464 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\13_-_compassion.mp3
[2008/11/30 19:48:34 | 07,223,424 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\11_-_here_to_stay.mp3
[2008/11/30 19:47:47 | 05,894,272 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\12_-_a_requiem.mp3
[2008/11/30 19:41:07 | 05,623,936 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\09_-_phenomena.mp3
[2008/11/30 19:40:00 | 04,776,064 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\10_-_demolition_drive.mp3
[2008/11/30 19:35:00 | 05,683,200 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\07_-_splaaash_boogie.mp3
[2008/11/30 19:33:31 | 05,105,792 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\08_-_ominous_premonition.mp3
[2008/11/30 19:27:34 | 04,249,728 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\05_-_diago_45_degrees_tango.mp3
[2008/11/30 19:27:28 | 04,378,752 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\06_-_dodo_dance.mp3
[2008/11/30 19:21:50 | 05,550,208 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\03_-_on_the_verge_of_insanity.mp3
[2008/11/30 19:21:04 | 04,518,016 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\04_-_confrontation.mp3
[2008/11/30 19:09:54 | 05,757,056 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\02_-_emergence_of_the_haunted.mp3
[2008/11/29 18:34:07 | 00,000,553 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Dark Crusade.lnk
[2008/11/29 18:32:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\InstallShield
[2008/11/28 17:58:28 | 34,785,5101 | ---- | C] (TODO: <Company>) -- C:\Documents and Settings\komtok\Mes documents\warhammer_40.000_dawn_of_war_patch_v1.41_multi-langues_17974.exe
[2008/11/28 16:38:07 | 00,002,303 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\Winter Assault.lnk
[2008/11/28 16:38:07 | 00,002,283 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\Dawn of War.lnk
[2008/11/28 10:58:10 | 00,028,160 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\Table Ronde.doc
[2008/11/28 10:58:04 | 00,034,816 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\Programme[1]...doc
[2008/11/26 16:51:22 | 00,000,790 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.msn
[2008/11/24 13:24:06 | 00,000,000 | -HSD | C] -- C:\RECYCLER
[2008/11/23 12:30:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\AdobeUM
[2008/11/21 19:42:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Media Player Classic
[2008/11/21 19:41:52 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008/11/21 19:41:52 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2008/11/21 19:41:51 | 00,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm
[2008/11/21 19:41:51 | 00,118,784 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm
[2008/11/21 19:41:51 | 00,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml
[2008/11/21 19:41:50 | 00,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008/11/21 19:41:50 | 00,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll
[2008/11/21 19:41:50 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008/11/21 19:41:49 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008/11/21 19:41:48 | 00,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2008/11/21 19:41:09 | 15,488,462 | ---- | C] ( ) -- C:\Documents and Settings\komtok\Mes documents\klcodec431f.exe
[2008/11/21 19:40:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\DivX
[2008/11/21 19:39:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Yahoo!
[2008/11/21 19:38:41 | 00,000,795 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DivX Player.lnk
[2008/11/21 19:38:32 | 00,000,806 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DivX Converter.lnk
[2008/11/21 19:38:13 | 00,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2008/11/21 19:38:08 | 00,001,480 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\DivX Movies.lnk
[2008/11/21 19:38:08 | 00,000,000 | ---D | C] -- C:\Program Files\DivX
[2008/11/21 19:38:07 | 00,000,000 | R--D | C] -- C:\Documents and Settings\komtok\Mes documents\Mes vidéos
[2008/11/21 19:37:41 | 20,724,432 | ---- | C] (DivX, Inc.) -- C:\Documents and Settings\komtok\Mes documents\DivXInstaller.exe
[2008/11/21 17:02:43 | 00,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2008/11/19 21:13:40 | 00,000,864 | ---- | C] () -- C:\Documents and Settings\komtok\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.0.lnk
[2008/11/19 21:13:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\OpenOffice.org
[2008/11/19 21:12:56 | 00,000,897 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\OpenOffice.org 3.0.lnk
[2008/11/19 21:12:13 | 00,000,000 | ---D | C] -- C:\Program Files\JRE
[2008/11/19 21:12:10 | 00,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2008/11/19 21:11:34 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2008/11/19 21:11:32 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Java
[2008/11/19 21:11:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Sun
[2008/11/19 21:10:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Bureau\OpenOffice.org 3.0 (fr) Installation Files
[2008/11/19 21:09:56 | 14,379,2816 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\OOo_3.0.0_Win32Intel_install_wJRE_fr.exe
[2008/11/19 20:47:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Local Settings\Application Data\Adobe
[2008/11/19 17:05:03 | 00,145,597 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\Holland travel.docx
[2008/11/19 00:37:38 | 00,001,757 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk
[2008/11/19 00:37:38 | 00,001,740 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 7.0.lnk
[2008/11/19 00:37:36 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Adobe
[2008/11/19 00:37:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2008/11/19 00:36:33 | 00,000,000 | ---D | C] -- C:\Program Files\Adobe
[2008/11/17 16:02:35 | 00,000,000 | R-SD | C] -- C:\Documents and Settings\komtok\Mes documents\My Stationery
[2008/11/16 22:11:45 | 02,138,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2008/11/16 22:11:42 | 02,182,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2008/11/16 22:11:40 | 02,059,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2008/11/16 22:11:32 | 02,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2008/11/16 16:24:03 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2008/11/16 16:21:31 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2008/11/16 16:21:28 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2008/11/15 15:28:26 | 00,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2008/11/15 14:51:22 | 00,208,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\muweb.dll
[2008/11/15 14:51:17 | 00,027,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2008/11/15 14:51:16 | 00,268,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2008/11/15 14:43:43 | 00,000,000 | -H-D | C] -- C:\$AVG8.VAULT$
[2008/11/15 00:43:29 | 00,278,728 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2008/11/15 00:43:29 | 00,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2008/11/15 00:43:19 | 00,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
[2008/11/15 00:43:18 | 02,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2008/11/15 00:43:18 | 00,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2008/11/15 00:43:17 | 02,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2008/11/15 00:43:17 | 00,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2008/11/15 00:43:17 | 00,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2008/11/15 00:43:16 | 02,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2008/11/15 00:43:16 | 02,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2008/11/15 00:43:16 | 00,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2008/11/15 00:43:15 | 02,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2008/11/15 00:43:14 | 02,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2008/11/15 00:43:14 | 02,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2008/11/15 00:23:17 | 03,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[2008/11/15 00:22:45 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2008/11/15 00:20:42 | 00,001,889 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Windows Live Mail.lnk
[2008/11/15 00:18:37 | 00,000,584 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\Mes dossiers de partage.lnk
[2008/11/15 00:17:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2008/11/15 00:17:20 | 00,001,741 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Windows Live Messenger .lnk
[2008/11/15 00:10:35 | 00,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs\WindowsLiveInstaller
[2008/11/15 00:10:05 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2008/11/15 00:09:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\WLInstaller
[2008/11/15 00:07:00 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2008/11/15 00:06:41 | 02,585,872 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\WindowsInstaller-KB893803-v2-x86.exe
[2008/11/15 00:04:48 | 02,402,832 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\WLinstaller.exe
[2008/11/14 23:33:12 | 00,000,000 | ---D | C] -- C:\PFiles
[2008/11/14 23:32:45 | 00,318,904 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\windows-media-player-firefox-plugin_windows_media_player_firefox_plugin_1.0.0.8_anglais_35439.exe
[2008/11/14 23:30:14 | 00,453,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2008/11/14 23:28:09 | 00,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2008/11/14 23:28:09 | 00,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2008/11/14 22:57:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2008/11/14 22:40:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2008/11/14 22:38:40 | 00,018,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2008/11/14 22:38:31 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2008/11/14 22:37:37 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2008/11/14 22:37:31 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2008/11/14 22:37:31 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2008/11/14 22:37:29 | 00,023,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2008/11/14 22:33:32 | 00,423,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WMAVDS32.ax
[2008/11/14 22:33:31 | 01,415,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmv9vcm.dll
[2008/11/14 22:33:31 | 00,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mp4sds32.ax
[2008/11/14 22:32:55 | 01,324,824 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\wmp6cdcs.exe
[2008/11/14 22:28:28 | 00,000,061 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2008/11/14 22:20:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2008/11/14 22:20:12 | 13,122,160 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\MPSetup.exe
[2008/11/14 22:11:27 | 00,000,000 | ---D | C] -- C:\programme
[2008/11/14 22:11:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\vlc
[2008/11/14 22:11:09 | 00,000,745 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\VLC media player.lnk
[2008/11/14 22:11:05 | 00,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2008/11/14 22:01:55 | 00,006,656 | ---- | C] () -- C:\Documents and Settings\komtok\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/11/14 19:35:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Adobe
[2008/11/14 19:35:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Macromedia
[2008/11/14 19:28:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\avg8
[2008/11/14 19:27:11 | 53,224,976 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\komtok\Mes documents\avg-antivirus-free-edition_avg_antivirus_free_edition_8.175_a_1382_francais_10997.exe
[2008/11/14 19:19:04 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2008/11/14 19:18:18 | 00,017,840 | ---- | C] () -- C:\Documents and Settings\komtok\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2008/11/14 19:15:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Mes documents\Mes fichiers reçus
[2008/11/14 19:12:46 | 10,832,224 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\Install_MSN_Messenger.EXE
[2008/11/14 19:02:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Local Settings\Application Data\Help
[2008/11/14 19:02:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Help
[2008/11/14 18:52:13 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2008/11/14 18:51:52 | 00,000,000 | ---D | C] -- C:\Program Files\SLD CODEC PACK 1.5
[2008/11/14 18:48:54 | 00,000,654 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\Winamp.lnk
[2008/11/14 18:48:49 | 00,000,192 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2008/11/14 18:48:49 | 00,000,000 | ---D | C] -- C:\Program Files\Winamp
[2008/11/14 18:46:52 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MSTEE.sys
[2008/11/14 18:46:52 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2008/11/14 18:46:48 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NdisIP.sys
[2008/11/14 18:46:48 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2008/11/14 18:46:46 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2008/11/14 18:46:46 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2008/11/14 18:46:46 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\StreamIP.sys
[2008/11/14 18:46:46 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2008/11/14 18:46:44 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\SLIP.sys
[2008/11/14 18:46:44 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2008/11/14 18:46:42 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WSTCODEC.SYS
[2008/11/14 18:46:42 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2008/11/14 18:46:39 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NABTSFEC.sys
[2008/11/14 18:46:39 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2008/11/14 18:46:26 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\CCDECODE.sys
[2008/11/14 18:46:26 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2008/11/14 18:46:17 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2008/11/14 18:46:17 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2008/11/14 18:46:17 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2008/11/14 18:46:17 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vidcap.ax
[2008/11/14 18:46:16 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2008/11/14 18:46:16 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2008/11/14 18:46:15 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2008/11/14 18:46:15 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2008/11/14 18:46:15 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2008/11/14 18:46:15 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2008/11/14 18:44:54 | 00,000,241 | ---- | C] () -- C:\WINDOWS\QSync.INI
[2008/11/14 18:44:53 | 00,001,695 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Logitech ImageStudio.lnk
[2008/11/14 18:44:53 | 00,001,639 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Galerie Logitech.lnk
[2008/11/14 18:44:52 | 00,000,000 | ---D | C] -- C:\Program Files\directx
[2008/11/14 18:43:48 | 00,371,766 | ---- | C] (Philips Semiconductors) -- C:\WINDOWS\System32\drivers\CamDrL21.sys
[2008/11/14 18:43:48 | 00,098,304 | ---- | C] (Logitech) -- C:\WINDOWS\System\CamExL20.dll
[2008/11/14 18:43:48 | 00,073,728 | ---- | C] (Logitech) -- C:\WINDOWS\System\CamExL20.ax
[2008/11/14 18:43:48 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\LVUI2RC.dll
[2008/11/14 18:43:48 | 00,005,187 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2008/11/14 18:43:48 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Logitech
[2008/11/14 18:43:46 | 00,000,528 | ---- | C] () -- C:\WINDOWS\_delis32.ini
[2008/11/14 18:43:10 | 00,000,739 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\Logitech Print Service.lnk
[2008/11/14 18:43:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\FotoWire
[2008/11/14 18:43:09 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\FotoWire
[2008/11/14 18:43:05 | 00,001,675 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Take5.lnk
[2008/11/14 18:43:05 | 00,000,707 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\RealPlayer 7 Basic.lnk
[2008/11/14 18:43:05 | 00,000,000 | ---D | C] -- C:\My Music
[2008/11/14 18:43:03 | 00,122,880 | ---- | C] (RealNetworks) -- C:\WINDOWS\System32\rmoc3260.dll
[2008/11/14 18:43:03 | 00,000,000 | ---D | C] -- C:\Program Files\Real
[2008/11/14 18:43:02 | 00,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2008/11/14 18:43:02 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Real
[2008/11/14 18:42:43 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Components
[2008/11/14 18:42:38 | 00,000,000 | -H-D | C] -- C:\WINDOWS\msdownld.tmp
[2008/11/14 18:42:11 | 00,000,000 | ---D | C] -- C:\Program Files\Logitech
[2008/11/14 18:41:23 | 00,059,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys
[2008/11/14 18:41:23 | 00,059,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2008/11/14 18:38:11 | 00,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccgp.sys
[2008/11/14 18:38:11 | 00,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2008/11/14 01:54:29 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\audstub.sys
[2008/11/14 01:54:08 | 00,058,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\redbook.sys
[2008/11/14 01:53:58 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2008/11/14 01:53:32 | 00,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2008/11/14 01:52:34 | 00,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2008/11/14 01:52:31 | 00,775,210 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2008/11/14 01:52:31 | 00,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2008/11/14 01:52:30 | 00,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008/11/14 01:52:30 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\ODBC
[2008/11/14 01:52:29 | 01,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2008/11/14 01:52:29 | 00,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2008/11/14 01:52:29 | 00,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2008/11/14 01:52:29 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2008/11/14 01:52:29 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2008/11/14 01:52:29 | 00,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2008/11/14 01:52:28 | 00,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll
[2008/11/14 01:52:28 | 00,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2008/11/14 01:52:28 | 00,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl
[2008/11/14 01:52:28 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2008/11/14 01:52:28 | 00,000,000 | R--D | C] -- C:\Program Files
[2008/11/14 01:52:28 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\SpeechEngines
[2008/11/14 01:52:28 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Microsoft Shared
[2008/11/14 01:52:28 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs
[2008/11/14 01:52:26 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll
[2008/11/14 01:52:25 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll
[2008/11/14 01:52:25 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2008/11/14 01:52:25 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2008/11/14 01:52:25 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2008/11/14 01:52:25 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2008/11/14 01:52:25 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2008/11/14 01:52:25 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2008/11/14 01:52:23 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll
[2008/11/14 01:52:23 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2008/11/14 01:52:23 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2008/11/14 01:52:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2008/11/14 01:52:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2008/11/14 01:52:22 | 00,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2008/11/14 01:52:22 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2008/11/14 01:52:22 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2008/11/14 01:52:22 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2008/11/14 01:52:22 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2008/11/14 01:52:22 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2008/11/14 01:52:22 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2008/11/14 01:52:22 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2008/11/14 01:52:22 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2008/11/14 01:52:22 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2008/11/14 01:52:22 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2008/11/14 01:52:22 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2008/11/14 01:52:22 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2008/11/14 01:52:22 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2008/11/14 01:52:21 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll
[2008/11/14 01:52:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll
[2008/11/14 01:52:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll
[2008/11/14 01:52:21 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2008/11/14 01:52:21 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2008/11/14 01:52:21 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2008/11/14 01:52:21 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2008/11/14 01:52:21 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2008/11/14 01:52:21 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2008/11/14 01:52:21 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2008/11/14 01:52:21 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2008/11/14 01:52:21 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2008/11/14 01:52:21 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2008/11/14 01:52:20 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2008/11/14 01:52:20 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2008/11/14 01:52:20 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2008/11/14 01:52:20 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2008/11/14 01:52:20 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2008/11/14 01:52:20 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2008/11/14 01:52:20 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2008/11/14 01:52:20 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2008/11/14 01:52:20 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2008/11/14 01:52:20 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2008/11/14 01:52:19 | 00,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2008/11/14 01:52:19 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2008/11/14 01:52:19 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2008/11/14 01:52:19 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2008/11/14 01:52:18 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2008/11/14 01:52:18 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2008/11/14 01:52:17 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2008/11/14 01:52:17 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2008/11/14 01:52:17 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2008/11/14 01:52:17 | 00,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2008/11/14 01:52:17 | 00,009,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2008/11/14 01:52:17 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2008/11/14 01:52:17 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2008/11/14 01:52:17 | 00,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2008/11/14 01:52:17 | 00,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2008/11/14 01:52:17 | 00,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2008/11/14 01:52:16 | 00,127,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2008/11/14 01:52:16 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2008/11/14 01:52:16 | 00,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2008/11/14 01:52:16 | 00,073,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2008/11/14 01:52:16 | 00,070,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2008/11/14 01:52:16 | 00,033,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2008/11/14 01:52:16 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2008/11/14 01:52:16 | 00,025,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2008/11/14 01:52:16 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2008/11/14 01:52:16 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2008/11/14 01:52:16 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2008/11/14 01:52:16 | 00,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2008/11/14 01:52:16 | 00,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2008/11/14 01:52:16 | 00,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2008/11/14 01:52:16 | 00,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2008/11/14 01:52:15 | 00,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV
[2008/11/14 01:52:15 | 00,070,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2008/11/14 01:52:15 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\NOTEPAD.EXE
[2008/11/14 01:52:15 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irenum.sys
[2008/11/14 01:52:15 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys
[2008/11/14 01:52:15 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll
[2008/11/14 01:52:15 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2008/11/14 01:52:15 | 00,001,896 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2008/11/14 01:52:12 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2008/11/14 01:52:05 | 00,000,084 | -HS- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\desktop.ini
[2008/11/14 01:52:05 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Documents\desktop.ini
[2008/11/14 01:52:05 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\desktop.ini
[2008/11/14 01:50:26 | 01,897,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2008/11/14 01:50:26 | 01,086,058 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NTPRINT.CAT
[2008/11/14 01:50:26 | 01,014,836 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2008/11/14 01:50:26 | 00,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2008/11/14 01:50:26 | 00,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2008/11/14 01:50:26 | 00,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2008/11/14 01:50:26 | 00,103,124 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2008/11/14 01:50:26 | 00,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2008/11/14 01:50:26 | 00,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2008/11/14 01:50:26 | 00,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2008/11/14 01:50:26 | 00,019,569 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2008/11/14 01:50:26 | 00,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2008/11/14 01:50:26 | 00,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2008/11/14 01:50:26 | 00,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2008/11/14 01:50:26 | 00,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2008/11/14 01:50:26 | 00,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2008/11/14 01:50:26 | 00,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2008/11/14 01:50:26 | 00,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2008/11/14 01:50:25 | 00,623,110 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2008/11/14 01:50:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2008/11/14 01:50:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2008/11/14 01:50:10 | 00,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2008/11/14 01:49:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings
[2008/11/14 01:49:51 | 00,112,584 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008/11/14 01:49:51 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[2008/11/14 01:49:01 | 00,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2008/11/14 01:45:49 | 00,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2008/11/14 01:45:49 | 00,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2008/11/14 01:45:49 | 00,000,000 | R--D | C] -- C:\WINDOWS\Web
[2008/11/14 01:45:49 | 00,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2008/11/14 01:45:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\Sys
mogan85
 
Messages: 28
Inscription: 11 Déc 2008, 21:34

Messagede mogan85 » 11 Déc 2008, 23:38

et voici le log Extras.txt merci bcp pour ton aide:

OTListIt Extras logfile created on: 11/12/2008 23:34:57 - Run 2
OTListIt by OldTimer - Version 1.0.12.1 Folder = C:\Documents and Settings\komtok\Mes documents
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,65 Gb Available Physical Memory | 82,54% Memory free
3,85 Gb Paging File | 3,56 Gb Available in Paging File | 92,57% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 11,04 Gb Total Space | 2,68 Gb Free Space | 24,26% Space Free | Partition Type: NTFS
Drive D: | 63,48 Gb Total Space | 0,62 Gb Free Space | 0,98% Space Free | Partition Type: NTFS
Drive E: | 3,50 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MORGAN
Current User Name: komtok
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Whitelist: On
File Age = 30 Days

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[2007/10/18 11:34:04 | 05,724,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
[2007/10/02 17:18:24 | 00,304,488 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[2004/08/04 01:07:10 | 01,667,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger
[2007/10/18 11:34:04 | 05,724,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
[2007/10/02 17:18:24 | 00,304,488 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)
[2006/08/15 23:35:05 | 03,151,360 | ---- | M] (THQ Canada Inc.) -- D:\Program Files\THQ\Dawn Of War\W40k.exe:*:Enabled:W40k
[2006/08/15 22:36:10 | 03,153,408 | ---- | M] (THQ Canada Inc.) -- D:\Program Files\THQ\Dawn Of War\W40kWA.exe:*:Enabled:W40kWA
[2006/09/17 04:15:16 | 03,110,488 | ---- | M] (THQ Canada Inc.) -- D:\Program Files\THQ\Dawn of War - Dark Crusade\DarkCrusade.exe:*:Enabled:DarkCrusade

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00E15D21-B68B-D7C4-574B-636E2D1ECEBE}" = Catalyst Control Center HydraVision Full
"{02EBDBB9-4600-41D3-B566-40CB861511D2}" = World of Warcraft FREE Trial
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{1170F665-2359-E439-5BC5-932B87423EF1}" = ccc-utility
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39D74E81-5DED-C7EE-8807-91A8800212FA}" = ccc-core-preinstall
"{41C01225-45FD-7BCE-1EDA-F7E50945ADD7}" = Catalyst Control Center Core Implementation
"{5A24DD7E-7B01-41AC-ADA8-F1776177A3BA}" = Logitech ImageStudio
"{5E8E1294-7951-6DA9-10F1-C877871346F3}" = Skins
"{6860B340-530D-46B3-91F8-1AE1F70F7C33}" = OpenOffice.org 3.0
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{826F3B4F-C597-AF1D-4CB1-2F441BE8E2BF}" = ccc-core-static
"{87B20692-9E9D-FAE0-76C7-E75E3CC7B0D1}" = Catalyst Control Center Graphics Full Existing
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{A70FA218-6598-4AC9-813D-63597C5DD068}" = Galerie de photos Windows Live
"{AC76BA86-7AD7-1036-7B44-A70000000000}" = Adobe Reader 7.0 - Français
"{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}" = Assistant de connexion Windows Live
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BADF6744-3787-48F6-B8C9-4C4995401D65}" = Windows Live Messenger
"{C29769BE-BEDF-DC9E-67A9-5E7AEFF039CF}" = CCC Help English
"{C514C594-23AA-4F13-A070-DB8BDB27594F}" = Windows Live Mail
"{C740289B-FC90-D938-8317-1FFEBF7C04DB}" = Catalyst Control Center Graphics Previews Common
"{D0B36BAF-3E9D-423E-8821-ED238C18DB0A}" = Warhammer 40,000: Dawn Of War - Gold Edition
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F30A8BF7-288C-57C0-357E-6D67BB694682}" = Catalyst Control Center Graphics Full New
"{F54543CF-EC73-D847-1780-84A6420EA229}" = Catalyst Control Center Graphics Light
"{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}" = Windows Live installer
"{FF39FC01-819B-42E4-AE49-1968AF12DDD4}" = Dawn of War - Dark Crusade
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"All ATI Software" = ATI - Software Uninstall Utility
"AntiVir PersonalEdition Classic" = Avira AntiVir Personal - Free Antivirus
"ATI Display Driver" = ATI Display Driver
"Envy24HF Setup Program" = UnInstall Envy24 Family Audio Device Driver
"HijackThis" = HijackThis 2.0.2
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.3.1 (Full)
"Logitech Print Service" = Logitech Print Service
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NVIDIA Drivers" = NVIDIA Drivers
"RealPlayer 6.0" = RealPlayer 7 Basic
"SLD CODEC PACK 1.5" = SLD CODEC PACK 1.5
"VLC media player" = VideoLAN VLC media player 0.8.0
"WIC" = Windows Imaging Component
"Winamp" = Winamp (remove only)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinRAR archiver" = Archiveur WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 24/11/2008 05:55:36 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 24/11/2008 06:24:05 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 24/11/2008 06:31:20 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 24/11/2008 08:21:46 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 24/11/2008 10:21:56 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 24/11/2008 10:44:21 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 25/11/2008 13:32:18 | Computer Name = MORGAN | Source = MsiInstaller | ID = 11601
Description = Produit : Warhammer 40,000: Dawn Of War - Gold Edition -- Disk full:
Espace disque insuffisant - Volume : 'D:' ; espace requis : 2 697 492 Ko ; espace
disponible : 1 103 380 Ko. Libérez de l'espace sur le disque et réessayez.

Error - 28/11/2008 12:44:07 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 29/11/2008 09:22:43 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 30/11/2008 09:59:45 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

[ System Events ]
Error - 10/12/2008 16:12:30 | Computer Name = MORGAN | Source = Service Control Manager | ID = 7001
Description = Le service Assistance TCP/IP NetBIOS dépend du service AFD qui n'a
pas pu démarrer en raison de l'erreur : %%31

Error - 10/12/2008 16:12:30 | Computer Name = MORGAN | Source = Service Control Manager | ID = 7001
Description = Le service Services IPSEC dépend du service Pilote IPSEC qui n'a pas
pu démarrer en raison de l'erreur : %%31

Error - 10/12/2008 16:12:30 | Computer Name = MORGAN | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
charger : AFD avgio avipbb Fips IPSec MRxSmb NetBIOS NetBT Processor RasAcd Rdbss ssmdrv Tcpip

Error - 10/12/2008 16:12:40 | Computer Name = MORGAN | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service StiSvc
avec les arguments "" pour démarrer le serveur : {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 10/12/2008 16:13:06 | Computer Name = MORGAN | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service wuauserv
avec les arguments "" pour démarrer le serveur : {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error - 10/12/2008 16:14:41 | Computer Name = MORGAN | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service MSIServer
avec les arguments "" pour démarrer le serveur : {000C101C-0000-0000-C000-000000000046}

Error - 10/12/2008 16:17:36 | Computer Name = MORGAN | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service StiSvc
avec les arguments "" pour démarrer le serveur : {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 10/12/2008 16:27:34 | Computer Name = MORGAN | Source = DCOM | ID = 10005
Description = DCOM a reçu l'erreur "%1084" lors de la mise en route du service EventSystem
avec les arguments "" pour démarrer le serveur : {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 11/12/2008 04:10:21 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.

Error - 11/12/2008 15:44:30 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.


<End>
mogan85
 
Messages: 28
Inscription: 11 Déc 2008, 21:34

Messagede nickW » 12 Déc 2008, 00:08

Re-

Nouveau MP.

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Messagede mogan85 » 12 Déc 2008, 12:32

Re-bonjour voici les logs demandés:

OTList:

OTListIt logfile created on: 12/12/2008 12:23:38 - Run 3
OTListIt by OldTimer - Version 1.0.12.1 Folder = C:\Documents and Settings\komtok\Bureau
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,67 Gb Available Physical Memory | 83,57% Memory free
3,85 Gb Paging File | 3,62 Gb Available in Paging File | 94,03% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 11,04 Gb Total Space | 2,55 Gb Free Space | 23,06% Space Free | Partition Type: NTFS
Drive D: | 63,48 Gb Total Space | 0,97 Gb Free Space | 1,53% Space Free | Partition Type: NTFS
Drive E: | 3,50 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MORGAN
Current User Name: komtok
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Whitelist: On
File Age = 30 Days

========== Processes ==========

[2008/10/29 03:09:10 | 00,585,728 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
[2008/10/29 03:09:10 | 00,585,728 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
[2008/10/15 13:31:25 | 00,068,865 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
[2008/11/14 18:43:03 | 00,020,480 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\realplay.exe
[2002/09/20 15:16:30 | 00,090,112 | ---- | M] (Logitech Inc.) -- C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVComS.exe
[2003/12/13 01:50:34 | 00,033,792 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
[2008/06/10 04:27:04 | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
[2008/06/12 13:28:40 | 00,266,497 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
[2008/10/15 13:29:28 | 00,151,297 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
[2007/10/18 11:31:54 | 00,098,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe
[2004/08/03 23:55:00 | 00,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe
[2008/10/16 14:09:44 | 00,051,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
[2008/12/11 22:46:56 | 00,418,816 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\komtok\Bureau\machin.exe
[2004/08/03 23:55:00 | 00,070,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe

========== (O23) Win32 Services ==========

[2008/10/15 13:31:25 | 00,068,865 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe -- (AntiVirScheduler [Auto | Running])
[2008/10/15 13:29:28 | 00,151,297 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe -- (AntiVirService [Auto | Running])
[2008/10/29 03:09:10 | 00,585,728 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller [Auto | Running])
[2008/10/28 21:05:00 | 00,593,920 | ---- | M] () -- C:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart [Auto | Stopped])
[2005/04/04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
[2007/10/18 11:31:54 | 00,098,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe -- (usnjsvc [On_Demand | Running])
[2007/10/25 15:27:54 | 00,266,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe -- (WLSetupSvc [On_Demand | Stopped])

========== Driver Services ==========

[2008/10/29 04:10:58 | 03,341,824 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag [On_Demand | Running])
[2008/11/15 00:43:29 | 00,278,728 | ---- | M] () -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt [Auto | Running])
[2007/02/27 14:24:55 | 00,011,840 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys -- (avgio [System | Running])
[2008/05/20 15:29:43 | 00,052,032 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys -- (avgntflt [On_Demand | Running])
[2008/12/10 18:11:54 | 00,075,072 | ---- | M] (Avira GmbH) -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb [System | Running])
[2005/02/23 07:47:50 | 00,584,512 | ---- | M] (VIA - IC Ensemble, Inc.) -- C:\WINDOWS\system32\drivers\Envy24HF.sys -- (Envy24HFS [On_Demand | Running])
[2008/11/15 00:43:29 | 00,025,416 | ---- | M] () -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt [Auto | Running])
[2008/08/01 11:36:00 | 00,054,784 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD [On_Demand | Running])
[2008/08/18 18:54:00 | 00,145,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts [Boot | Running])
[2008/08/01 11:36:00 | 00,022,016 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus [On_Demand | Running])
[2002/06/10 14:16:34 | 00,371,766 | ---- | M] (Philips Semiconductors) -- C:\WINDOWS\system32\drivers\CamDrL21.sys -- (PhilCam8116 [On_Demand | Running])
[2001/08/28 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink [On_Demand | Running])
[2008/09/19 22:57:32 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\drivers\pxhelp20.sys -- (PxHelp20 [Boot | Running])
[2004/07/17 10:36:38 | 00,027,440 | ---- | M] () -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv [On_Demand | Stopped])
[2007/11/08 18:03:26 | 00,021,248 | ---- | M] (AVIRA GmbH) -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv [System | Running])
[2004/08/03 23:07:56 | 00,059,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys -- (usbaudio [On_Demand | Running])

========== Internet Explorer ==========

HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions =
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ycomp/ ... .yahoo.com
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



HKU\S-1-5-21-583907252-1303643608-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
HKU\S-1-5-21-583907252-1303643608-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions =
HKU\S-1-5-21-583907252-1303643608-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://fr.rd.yahoo.com/customize/ycomp/ ... .yahoo.com
HKU\S-1-5-21-583907252-1303643608-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
HKU\S-1-5-21-583907252-1303643608-725345543-1003\S-1-5-21-583907252-1303643608-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

O1 HOSTS File: (790 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - Reg Error: Key does not exist or could not be opened. File not found
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - Reg Error: Key does not exist or could not be opened. File not found
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - Reg Error: Key does not exist or could not be opened. File not found
O3 - HKCU\..\Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key does not exist or could not be opened. File not found
O3 - HKU\S-1-5-21-583907252-1303643608-725345543-1003\..\Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - Reg Error: Key does not exist or could not be opened. File not found
O3 - HKU\S-1-5-21-583907252-1303643608-725345543-1003\..\Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key does not exist or could not be opened. File not found
O4 - HKLM..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min (Avira GmbH)
O4 - HKLM..\Run: [EnvyHFCPL] C:\Program Files\Audio Deck\EnMixCPL.exe 1 (VIA Technologies, Inc)
O4 - HKLM..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe (Logitech Inc.)
O4 - HKLM..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe (Logitech Inc.)
O4 - HKLM..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver2\LVCOMS.EXE (Logitech Inc.)
O4 - HKLM..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER (RealNetworks, Inc.)
O4 - HKLM..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKCU..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (Microsoft Corporation)
O4 - HKU\S-1-5-21-583907252-1303643608-725345543-1003..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\komtok\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-583907252-1303643608-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra 'Tools' menuitem : Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O15 - HKLM\..Trusted Sites: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} http://ax.emsisoft.com/asquared.cab (a-squared Scanner)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_07)
O18 - Protocol\Handler: - ipp - No CLSID value found
O18 - Protocol\Handler: - ipp\0x00000001 - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler: - livecall - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler: - msdaipp - No CLSID value found
O18 - Protocol\Handler: - msdaipp\0x00000001 - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler: - msdaipp\oledb - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler: - msnim - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler: - wlmailhtml - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - See sections below for AppInitDlls and Winlogon settings

========== Winlogon Notify Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\]
AtiExtEvent: "DllName" = Ati2evxx.dll -- C:\WINDOWS\system32\ati2evxx.dll (ATI Technologies Inc.)

========== Safeboot Options ==========

"AlternateShell" = cmd.exe

========== CDRom AutoRun Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1

========== Autorun Files on Drives ==========

AUTOEXEC.BAT []
[2008/11/14 01:13:17 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ NTFS ]

autoplay.exe [MZ | ]
[2006/09/15 19:31:42 | 00,983,040 | R--- | M] () -- E:\autoplay.exe -- [ UDF ]

Autoplay.ini [[general] | | ; loc id for the "Exit" link | exit = 1004 | | ; loc id for the "Browse CD" link | browse = 1006 | | ; loc id for title of the window | title = 1000 | | ; loc id for the "Play Game" link | play = 1002 | | ; loc id for the "Install Game" link | install = 1001 | | [display] | | ; background bitmap. it will be strecthed to cover the entire window | background = Autorun.bmp | | ; width of the window (in pixels) | width = 640 | | ; height of the window (in pixels) | height = 300 | | ; truetype font to use for the links | fontName = Tahoma | | ; font size (in points) for links displayed in large font | fontLarge = 17 | | ; font size (in points) for links displayed in small font | fontSmall = 15 | | ; text colour for the links | colourNormal = R235 G245 B251 | | ; text colour when the mouse is over a link | colourHover = R255 G230 B52 | | ; text colour when a link is clicked | colourClicked = R255 G0 B0 | | [app] | | ; name of the setup exe to install the game | appsetup = setup.exe | | ; name of the game exe to launch the game | appexec = DarkCrusade.exe | | ; name of the key to look for in the registry | registrykey = Software\THQ\Dawn of War - Dark Crusade | | ; name of the installation folder registry value | registryvalueinstall = InstallLocation | | ; name of the cd key registry value | registryvaluecdkey = CDKEY | | [blockprocesses] | | ; names of processes to block on - if any of these processes is active when the autorun starts, the autorun will abort | | 102 = DarkCrusade.exe | | [links] | | ; each link must follow this format: | ; alpha-sorted-name = loc id of the link, use large font (0/1), command to execute | | ; empty links are allowed, in this format: | ; alpha-sorted-name = 0, 0, | | l01 = 1003, 1, readme.html | l02 = 0, 0, | l04 = 1013, 0, http://www.thq.com | l05 = 1008, 0, http://www.thq.com/support | l06 = 1012, 0, http://www.dawnofwargame.com/register/ | l07 = 1011, 0, directx/dxsetup.exe | l08 = 1014, 0, xfire_installer.exe | l09 = 0, 0, | l10 = 0, 0, | l11 = 0, 0 | | ]
[2006/09/13 08:06:40 | 00,001,989 | R--- | M] () -- E:\Autoplay.ini -- [ UDF ]

Autoplay.ucs [1000 Programme de lancement de Dawn of War: Dark Crusade | 1001 Installer le jeu | 1002 Jouer au jeu | 1003 Readme (LisezMoi) | 1004 Fermer la fenêtre | 1005 Installer Adobe Acrobat Reader | 1006 Parcourir le DVD | 1007 Bonus | 1008 Site web d'assistance | 1009 Bande-annonce de Full Spectrum Warrior | 1010 Bande-annonce de Company of Heroes | 1011 Installer DirectX 9.0c | 1012 S'inscrire en ligne | 1013 Site web de THQ | 1014 Installer XFire | ]
[2006/09/15 04:50:54 | 00,000,870 | R--- | M] () -- E:\Autoplay.ucs -- [ UDF ]

autorun.bmp [BM8Ê | ]
[2006/08/31 23:39:37 | 00,576,056 | R--- | M] () -- E:\autorun.bmp -- [ UDF ]

autorun.inf [[autorun] | open=AutoPlay.exe | icon=AutoPlay.exe | ]
[2006/08/30 13:00:03 | 00,000,049 | R--- | M] () -- E:\autorun.inf -- [ UDF ]

========== MountPoints2 ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\Shell]
"" = AutoRun


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E\Shell\AutoRun\command]
"" = E:\AutoPlay.exe -- [2006/09/15 19:31:42 | 00,983,040 | R--- | M] ()

========== Files/Folders - Created Within 30 Days ==========

[4 C:\WINDOWS\System32\*.tmp files]
[4 C:\WINDOWS\*.tmp files]
[2008/12/12 12:12:03 | 00,199,680 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\DirLook.exe
[2008/12/12 12:11:43 | 00,711,549 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\mogan85-2.zip
[2008/12/11 23:25:20 | 02,539,400 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\komtok\Mes documents\bidule.exe
[2008/12/11 23:25:20 | 00,418,816 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\komtok\Bureau\machin.exe
[2008/12/11 23:25:04 | 02,927,475 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\mogan85.zip
[2008/12/11 23:18:25 | 00,000,000 | ---D | C] -- C:\Avenger
[2008/12/11 22:54:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Malwarebytes
[2008/12/11 22:52:26 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2008/12/11 22:52:26 | 00,000,720 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Malwarebytes' Anti-Malware.lnk
[2008/12/11 22:52:24 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2008/12/11 22:52:23 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2008/12/11 22:52:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2008/12/11 22:48:18 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\HijackThis.lnk
[2008/12/11 22:48:18 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2008/12/11 22:47:46 | 01,583,839 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\SmitfraudFix.exe
[2008/12/10 20:57:30 | 02,539,400 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\komtok\Mes documents\trucbidulembam-setup.exe
[2008/12/10 18:02:36 | 00,001,851 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\AntiVir PE Classic.lnk
[2008/12/10 18:02:29 | 00,045,376 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys
[2008/12/10 18:02:29 | 00,022,336 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys
[2008/12/10 18:02:29 | 00,021,248 | ---- | C] (AVIRA GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys
[2008/12/10 18:02:28 | 00,075,072 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2008/12/10 18:02:28 | 00,000,000 | ---D | C] -- C:\Program Files\Avira
[2008/12/10 18:02:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira
[2008/12/10 17:59:41 | 25,220,680 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\antivir_workstation_winu_fr_h.exe
[2008/12/10 17:40:29 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\komtok\Mes documents\HJTtrucbiduleInstall.exe
[2008/12/10 17:25:28 | 00,010,758 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\HiJackThis.zip
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\komtok\Mes documents\HiJackThis.zip:SummaryInformation
@Alternate Data Stream - 0 bytes -> C:\Documents and Settings\komtok\Mes documents\HiJackThis.zip:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
[2008/12/10 17:02:19 | 15,083,520 | ---- | C] (Safer Networking Limited ) -- C:\Documents and Settings\komtok\Mes documents\spybotsd160.exe
[2008/12/10 15:51:01 | 09,344,284 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\setupfre.exe
[2008/12/10 14:41:15 | 00,000,441 | ---- | C] () -- C:\WINDOWS\System32\TDSSosvd.dat
[2008/11/30 22:50:47 | 09,031,808 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\01_sekai_wa_sude_ni_azamuki_no_ue_ni.mp3
[2008/11/30 22:48:36 | 05,891,211 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\02_standing_to_defend_you.mp3
[2008/11/30 21:34:26 | 05,335,040 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\01_-_ichirin_no_hana.mp3
[2008/11/30 21:28:03 | 03,969,355 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\22_-_going_home.mp3
[2008/11/30 21:22:47 | 04,976,428 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\20_-_storm_center.mp3
[2008/11/30 21:19:36 | 02,725,136 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\16_-_heat_of_the_battle.mp3
[2008/11/30 21:16:35 | 04,185,784 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\15_-_catch-22.mp3
[2008/11/30 21:16:01 | 05,605,376 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\12_-_nothing_can_be_explained_(vocal_ver[1].).mp3
[2008/11/30 21:11:20 | 06,516,645 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\10_-_will_of_the_heart.mp3
[2008/11/30 21:09:32 | 03,796,728 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\11_-_requiem_for_the_lost_ones.mp3
[2008/11/30 21:05:08 | 04,482,959 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\08_-_raw_breath_of_danger.mp3
[2008/11/30 21:04:13 | 03,411,974 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\09_-_enemy_unseen.mp3
[2008/11/30 20:59:49 | 03,670,644 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\07_-_creeping_shadows.mp3
[2008/11/30 20:56:59 | 02,894,737 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\05_-_head_in_the_clouds.mp3
[2008/11/30 20:55:13 | 03,293,128 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\04_-_oh_so_tired.mp3
[2008/11/30 20:53:16 | 03,465,216 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\02_-_~asterisk~_(ost_ver[1].).mp3
[2008/11/30 20:49:55 | 08,237,243 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\21_-_swan_song.mp3
[2008/11/30 20:47:11 | 05,980,288 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\22_-_999.mp3
[2008/11/30 20:19:06 | 06,561,920 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\20_-_torn_apart.mp3
[2008/11/30 20:16:33 | 05,576,832 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\19_-_rage_of_lunacy.mp3
[2008/11/30 20:06:18 | 04,622,336 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\18_-_back_to_the_wall.mp3
[2008/11/30 20:05:09 | 07,229,568 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\17_-_whisper_of_the_apocalypse.mp3
[2008/11/30 20:01:19 | 05,021,824 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\15_-_the_calling.mp3
[2008/11/30 19:55:36 | 05,886,080 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\14_-_citadel_of_the_bount.mp3
[2008/11/30 19:55:12 | 06,670,464 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\13_-_compassion.mp3
[2008/11/30 19:48:34 | 07,223,424 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\11_-_here_to_stay.mp3
[2008/11/30 19:47:47 | 05,894,272 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\12_-_a_requiem.mp3
[2008/11/30 19:41:07 | 05,623,936 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\09_-_phenomena.mp3
[2008/11/30 19:40:00 | 04,776,064 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\10_-_demolition_drive.mp3
[2008/11/30 19:35:00 | 05,683,200 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\07_-_splaaash_boogie.mp3
[2008/11/30 19:33:31 | 05,105,792 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\08_-_ominous_premonition.mp3
[2008/11/30 19:27:34 | 04,249,728 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\05_-_diago_45_degrees_tango.mp3
[2008/11/30 19:27:28 | 04,378,752 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\06_-_dodo_dance.mp3
[2008/11/30 19:21:50 | 05,550,208 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\03_-_on_the_verge_of_insanity.mp3
[2008/11/30 19:21:04 | 04,518,016 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\04_-_confrontation.mp3
[2008/11/30 19:09:54 | 05,757,056 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\02_-_emergence_of_the_haunted.mp3
[2008/11/29 18:34:07 | 00,000,553 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Dark Crusade.lnk
[2008/11/29 18:32:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\InstallShield
[2008/11/28 17:58:28 | 34,785,5101 | ---- | C] (TODO: <Company>) -- C:\Documents and Settings\komtok\Mes documents\warhammer_40.000_dawn_of_war_patch_v1.41_multi-langues_17974.exe
[2008/11/28 16:38:07 | 00,002,303 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\Winter Assault.lnk
[2008/11/28 16:38:07 | 00,002,283 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\Dawn of War.lnk
[2008/11/28 10:58:10 | 00,028,160 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\Table Ronde.doc
[2008/11/28 10:58:04 | 00,034,816 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\Programme[1]...doc
[2008/11/26 16:51:22 | 00,000,790 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\hosts.msn
[2008/11/24 13:24:06 | 00,000,000 | -HSD | C] -- C:\RECYCLER
[2008/11/23 12:30:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\AdobeUM
[2008/11/21 19:42:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Media Player Classic
[2008/11/21 19:41:52 | 00,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008/11/21 19:41:52 | 00,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2008/11/21 19:41:51 | 00,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm
[2008/11/21 19:41:51 | 00,118,784 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm
[2008/11/21 19:41:51 | 00,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml
[2008/11/21 19:41:50 | 00,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008/11/21 19:41:50 | 00,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll
[2008/11/21 19:41:50 | 00,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008/11/21 19:41:49 | 00,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008/11/21 19:41:48 | 00,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2008/11/21 19:41:09 | 15,488,462 | ---- | C] ( ) -- C:\Documents and Settings\komtok\Mes documents\klcodec431f.exe
[2008/11/21 19:40:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\DivX
[2008/11/21 19:39:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Yahoo!
[2008/11/21 19:38:41 | 00,000,795 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DivX Player.lnk
[2008/11/21 19:38:32 | 00,000,806 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\DivX Converter.lnk
[2008/11/21 19:38:13 | 00,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2008/11/21 19:38:08 | 00,001,480 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\DivX Movies.lnk
[2008/11/21 19:38:08 | 00,000,000 | ---D | C] -- C:\Program Files\DivX
[2008/11/21 19:38:07 | 00,000,000 | R--D | C] -- C:\Documents and Settings\komtok\Mes documents\Mes vidéos
[2008/11/21 19:37:41 | 20,724,432 | ---- | C] (DivX, Inc.) -- C:\Documents and Settings\komtok\Mes documents\DivXInstaller.exe
[2008/11/21 17:02:43 | 00,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2008/11/19 21:13:40 | 00,000,864 | ---- | C] () -- C:\Documents and Settings\komtok\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 3.0.lnk
[2008/11/19 21:13:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\OpenOffice.org
[2008/11/19 21:12:56 | 00,000,897 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\OpenOffice.org 3.0.lnk
[2008/11/19 21:12:13 | 00,000,000 | ---D | C] -- C:\Program Files\JRE
[2008/11/19 21:12:10 | 00,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2008/11/19 21:11:34 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2008/11/19 21:11:32 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Java
[2008/11/19 21:11:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Sun
[2008/11/19 21:10:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Bureau\OpenOffice.org 3.0 (fr) Installation Files
[2008/11/19 21:09:56 | 14,379,2816 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\OOo_3.0.0_Win32Intel_install_wJRE_fr.exe
[2008/11/19 20:47:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Local Settings\Application Data\Adobe
[2008/11/19 17:05:03 | 00,145,597 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\Holland travel.docx
[2008/11/19 00:37:38 | 00,001,757 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk
[2008/11/19 00:37:38 | 00,001,740 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Adobe Reader 7.0.lnk
[2008/11/19 00:37:36 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Adobe
[2008/11/19 00:37:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2008/11/19 00:36:33 | 00,000,000 | ---D | C] -- C:\Program Files\Adobe
[2008/11/17 16:02:35 | 00,000,000 | R-SD | C] -- C:\Documents and Settings\komtok\Mes documents\My Stationery
[2008/11/16 22:11:45 | 02,138,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2008/11/16 22:11:42 | 02,182,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2008/11/16 22:11:40 | 02,059,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2008/11/16 22:11:32 | 02,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2008/11/16 16:24:03 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot_bak
[2008/11/16 16:21:31 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2008/11/16 16:21:28 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2008/11/15 15:28:26 | 00,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2008/11/15 14:51:22 | 00,208,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\muweb.dll
[2008/11/15 14:51:17 | 00,027,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2008/11/15 14:51:16 | 00,268,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2008/11/15 14:43:43 | 00,000,000 | -H-D | C] -- C:\$AVG8.VAULT$
[2008/11/15 00:43:29 | 00,278,728 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2008/11/15 00:43:29 | 00,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2008/11/15 00:43:19 | 00,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll
[2008/11/15 00:43:18 | 02,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll
[2008/11/15 00:43:18 | 00,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll
[2008/11/15 00:43:17 | 02,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll
[2008/11/15 00:43:17 | 00,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll
[2008/11/15 00:43:17 | 00,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll
[2008/11/15 00:43:16 | 02,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll
[2008/11/15 00:43:16 | 02,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll
[2008/11/15 00:43:16 | 00,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll
[2008/11/15 00:43:15 | 02,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll
[2008/11/15 00:43:14 | 02,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll
[2008/11/15 00:43:14 | 02,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll
[2008/11/15 00:23:17 | 03,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll
[2008/11/15 00:22:45 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2008/11/15 00:20:42 | 00,001,889 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Windows Live Mail.lnk
[2008/11/15 00:18:37 | 00,000,584 | ---- | C] () -- C:\Documents and Settings\komtok\Mes documents\Mes dossiers de partage.lnk
[2008/11/15 00:17:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2008/11/15 00:17:20 | 00,001,741 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Windows Live Messenger .lnk
[2008/11/15 00:10:35 | 00,000,000 | -HSD | C] -- C:\Program Files\Fichiers communs\WindowsLiveInstaller
[2008/11/15 00:10:05 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2008/11/15 00:09:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\WLInstaller
[2008/11/15 00:07:00 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2008/11/15 00:06:41 | 02,585,872 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\WindowsInstaller-KB893803-v2-x86.exe
[2008/11/15 00:04:48 | 02,402,832 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\WLinstaller.exe
[2008/11/14 23:33:12 | 00,000,000 | ---D | C] -- C:\PFiles
[2008/11/14 23:32:45 | 00,318,904 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\windows-media-player-firefox-plugin_windows_media_player_firefox_plugin_1.0.0.8_anglais_35439.exe
[2008/11/14 23:30:14 | 00,453,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2008/11/14 23:28:09 | 00,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2008/11/14 23:28:09 | 00,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2008/11/14 22:57:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2008/11/14 22:40:49 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2008/11/14 22:38:40 | 00,016,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2008/11/14 22:38:31 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2008/11/14 22:37:37 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2008/11/14 22:37:31 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2008/11/14 22:37:31 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2008/11/14 22:37:29 | 00,023,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2008/11/14 22:33:32 | 00,423,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WMAVDS32.ax
[2008/11/14 22:33:31 | 01,415,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmv9vcm.dll
[2008/11/14 22:33:31 | 00,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mp4sds32.ax
[2008/11/14 22:32:55 | 01,324,824 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\wmp6cdcs.exe
[2008/11/14 22:28:28 | 00,000,061 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2008/11/14 22:20:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2008/11/14 22:20:12 | 13,122,160 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\MPSetup.exe
[2008/11/14 22:11:27 | 00,000,000 | ---D | C] -- C:\programme
[2008/11/14 22:11:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\vlc
[2008/11/14 22:11:09 | 00,000,745 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\VLC media player.lnk
[2008/11/14 22:11:05 | 00,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2008/11/14 22:01:55 | 00,006,656 | ---- | C] () -- C:\Documents and Settings\komtok\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/11/14 19:35:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Adobe
[2008/11/14 19:35:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Macromedia
[2008/11/14 19:28:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\avg8
[2008/11/14 19:27:11 | 53,224,976 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\komtok\Mes documents\avg-antivirus-free-edition_avg_antivirus_free_edition_8.175_a_1382_francais_10997.exe
[2008/11/14 19:19:04 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2008/11/14 19:18:18 | 00,017,840 | ---- | C] () -- C:\Documents and Settings\komtok\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2008/11/14 19:15:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Mes documents\Mes fichiers reçus
[2008/11/14 19:12:46 | 10,832,224 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\komtok\Mes documents\Install_MSN_Messenger.EXE
[2008/11/14 19:02:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Local Settings\Application Data\Help
[2008/11/14 19:02:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\Help
[2008/11/14 18:52:13 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2008/11/14 18:51:52 | 00,000,000 | ---D | C] -- C:\Program Files\SLD CODEC PACK 1.5
[2008/11/14 18:48:54 | 00,000,654 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\Winamp.lnk
[2008/11/14 18:48:49 | 00,000,192 | ---- | C] () -- C:\WINDOWS\winamp.ini
[2008/11/14 18:48:49 | 00,000,000 | ---D | C] -- C:\Program Files\Winamp
[2008/11/14 18:46:52 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MSTEE.sys
[2008/11/14 18:46:52 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2008/11/14 18:46:48 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NdisIP.sys
[2008/11/14 18:46:48 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2008/11/14 18:46:46 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2008/11/14 18:46:46 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2008/11/14 18:46:46 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\StreamIP.sys
[2008/11/14 18:46:46 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2008/11/14 18:46:44 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\SLIP.sys
[2008/11/14 18:46:44 | 00,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2008/11/14 18:46:42 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WSTCODEC.SYS
[2008/11/14 18:46:42 | 00,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2008/11/14 18:46:39 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\NABTSFEC.sys
[2008/11/14 18:46:39 | 00,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2008/11/14 18:46:26 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\CCDECODE.sys
[2008/11/14 18:46:26 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2008/11/14 18:46:17 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2008/11/14 18:46:17 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2008/11/14 18:46:17 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2008/11/14 18:46:17 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vidcap.ax
[2008/11/14 18:46:16 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2008/11/14 18:46:16 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2008/11/14 18:46:15 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vfwwdm32.dll
[2008/11/14 18:46:15 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2008/11/14 18:46:15 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2008/11/14 18:46:15 | 00,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2008/11/14 18:44:54 | 00,000,241 | ---- | C] () -- C:\WINDOWS\QSync.INI
[2008/11/14 18:44:53 | 00,001,695 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Logitech ImageStudio.lnk
[2008/11/14 18:44:53 | 00,001,639 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Galerie Logitech.lnk
[2008/11/14 18:44:52 | 00,000,000 | ---D | C] -- C:\Program Files\directx
[2008/11/14 18:43:48 | 00,371,766 | ---- | C] (Philips Semiconductors) -- C:\WINDOWS\System32\drivers\CamDrL21.sys
[2008/11/14 18:43:48 | 00,098,304 | ---- | C] (Logitech) -- C:\WINDOWS\System\CamExL20.dll
[2008/11/14 18:43:48 | 00,073,728 | ---- | C] (Logitech) -- C:\WINDOWS\System\CamExL20.ax
[2008/11/14 18:43:48 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\LVUI2RC.dll
[2008/11/14 18:43:48 | 00,005,187 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2008/11/14 18:43:48 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Logitech
[2008/11/14 18:43:46 | 00,000,528 | ---- | C] () -- C:\WINDOWS\_delis32.ini
[2008/11/14 18:43:10 | 00,000,739 | ---- | C] () -- C:\Documents and Settings\komtok\Bureau\Logitech Print Service.lnk
[2008/11/14 18:43:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\komtok\Application Data\FotoWire
[2008/11/14 18:43:09 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\FotoWire
[2008/11/14 18:43:05 | 00,001,675 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Take5.lnk
[2008/11/14 18:43:05 | 00,000,707 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\RealPlayer 7 Basic.lnk
[2008/11/14 18:43:05 | 00,000,000 | ---D | C] -- C:\My Music
[2008/11/14 18:43:03 | 00,122,880 | ---- | C] (RealNetworks) -- C:\WINDOWS\System32\rmoc3260.dll
[2008/11/14 18:43:03 | 00,000,000 | ---D | C] -- C:\Program Files\Real
[2008/11/14 18:43:02 | 00,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2008/11/14 18:43:02 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Real
[2008/11/14 18:42:43 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Components
[2008/11/14 18:42:38 | 00,000,000 | -H-D | C] -- C:\WINDOWS\msdownld.tmp
[2008/11/14 18:42:11 | 00,000,000 | ---D | C] -- C:\Program Files\Logitech
[2008/11/14 18:41:23 | 00,059,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\USBAUDIO.sys
[2008/11/14 18:41:23 | 00,059,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2008/11/14 18:38:11 | 00,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccgp.sys
[2008/11/14 18:38:11 | 00,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2008/11/14 01:54:29 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\audstub.sys
[2008/11/14 01:54:08 | 00,058,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\redbook.sys
[2008/11/14 01:53:58 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2008/11/14 01:53:32 | 00,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2008/11/14 01:52:34 | 00,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2008/11/14 01:52:31 | 00,775,210 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2008/11/14 01:52:31 | 00,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2008/11/14 01:52:30 | 00,004,205 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008/11/14 01:52:30 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\ODBC
[2008/11/14 01:52:29 | 01,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2008/11/14 01:52:29 | 00,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2008/11/14 01:52:29 | 00,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2008/11/14 01:52:29 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2008/11/14 01:52:29 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2008/11/14 01:52:29 | 00,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2008/11/14 01:52:28 | 00,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll
[2008/11/14 01:52:28 | 00,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2008/11/14 01:52:28 | 00,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl
[2008/11/14 01:52:28 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2008/11/14 01:52:28 | 00,000,000 | R--D | C] -- C:\Program Files
[2008/11/14 01:52:28 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\SpeechEngines
[2008/11/14 01:52:28 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Microsoft Shared
[2008/11/14 01:52:28 | 00,000,000 | ---D | C] -- C:\Program Files\Fichiers communs
[2008/11/14 01:52:26 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll
[2008/11/14 01:52:25 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll
[2008/11/14 01:52:25 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2008/11/14 01:52:25 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2008/11/14 01:52:25 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2008/11/14 01:52:25 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2008/11/14 01:52:25 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2008/11/14 01:52:25 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2008/11/14 01:52:24 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2008/11/14 01:52:24 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2008/11/14 01:52:23 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll
[2008/11/14 01:52:23 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2008/11/14 01:52:23 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2008/11/14 01:52:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2008/11/14 01:52:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2008/11/14 01:52:22 | 00,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2008/11/14 01:52:22 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2008/11/14 01:52:22 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2008/11/14 01:52:22 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2008/11/14 01:52:22 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2008/11/14 01:52:22 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2008/11/14 01:52:22 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2008/11/14 01:52:22 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2008/11/14 01:52:22 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2008/11/14 01:52:22 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2008/11/14 01:52:22 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2008/11/14 01:52:22 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2008/11/14 01:52:22 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2008/11/14 01:52:22 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2008/11/14 01:52:21 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll
[2008/11/14 01:52:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll
[2008/11/14 01:52:21 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll
[2008/11/14 01:52:21 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2008/11/14 01:52:21 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2008/11/14 01:52:21 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2008/11/14 01:52:21 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2008/11/14 01:52:21 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2008/11/14 01:52:21 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2008/11/14 01:52:21 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2008/11/14 01:52:21 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2008/11/14 01:52:21 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2008/11/14 01:52:21 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2008/11/14 01:52:20 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2008/11/14 01:52:20 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2008/11/14 01:52:20 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2008/11/14 01:52:20 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2008/11/14 01:52:20 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2008/11/14 01:52:20 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2008/11/14 01:52:20 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2008/11/14 01:52:20 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2008/11/14 01:52:20 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2008/11/14 01:52:20 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2008/11/14 01:52:19 | 00,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2008/11/14 01:52:19 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2008/11/14 01:52:19 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2008/11/14 01:52:19 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2008/11/14 01:52:19 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2008/11/14 01:52:19 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2008/11/14 01:52:18 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2008/11/14 01:52:18 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2008/11/14 01:52:17 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2008/11/14 01:52:17 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2008/11/14 01:52:17 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2008/11/14 01:52:17 | 00,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2008/11/14 01:52:17 | 00,009,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2008/11/14 01:52:17 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2008/11/14 01:52:17 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2008/11/14 01:52:17 | 00,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2008/11/14 01:52:17 | 00,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2008/11/14 01:52:17 | 00,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2008/11/14 01:52:16 | 00,127,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2008/11/14 01:52:16 | 00,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2008/11/14 01:52:16 | 00,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2008/11/14 01:52:16 | 00,073,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2008/11/14 01:52:16 | 00,070,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2008/11/14 01:52:16 | 00,033,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2008/11/14 01:52:16 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2008/11/14 01:52:16 | 00,025,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2008/11/14 01:52:16 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2008/11/14 01:52:16 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2008/11/14 01:52:16 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2008/11/14 01:52:16 | 00,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2008/11/14 01:52:16 | 00,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2008/11/14 01:52:16 | 00,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2008/11/14 01:52:16 | 00,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2008/11/14 01:52:15 | 00,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV
[2008/11/14 01:52:15 | 00,070,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2008/11/14 01:52:15 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\NOTEPAD.EXE
[2008/11/14 01:52:15 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irenum.sys
[2008/11/14 01:52:15 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys
[2008/11/14 01:52:15 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll
[2008/11/14 01:52:15 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2008/11/14 01:52:15 | 00,001,896 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2008/11/14 01:52:12 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2008/11/14 01:52:05 | 00,000,084 | -HS- | C] () -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\desktop.ini
[2008/11/14 01:52:05 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Documents\desktop.ini
[2008/11/14 01:52:05 | 00,000,062 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\desktop.ini
[2008/11/14 01:50:26 | 01,897,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2008/11/14 01:50:26 | 01,086,058 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NTPRINT.CAT
[2008/11/14 01:50:26 | 01,014,836 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2008/11/14 01:50:26 | 00,809,394 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2008/11/14 01:50:26 | 00,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2008/11/14 01:50:26 | 00,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2008/11/14 01:50:26 | 00,103,124 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2008/11/14 01:50:26 | 00,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2008/11/14 01:50:26 | 00,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2008/11/14 01:50:26 | 00,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2008/11/14 01:50:26 | 00,019,569 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2008/11/14 01:50:26 | 00,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2008/11/14 01:50:26 | 00,011,651 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2008/11/14 01:50:26 | 00,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2008/11/14 01:50:26 | 00,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2008/11/14 01:50:26 | 00,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2008/11/14 01:50:26 | 00,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2008/11/14 01:50:26 | 00,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2008/11/14 01:50:25 | 00,623,110 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2008/11/14 01:50:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2008/11/14 01:50:16 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2008/11/14 01:50:10 | 00,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2008/11/14 01:49:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings
[2008/11/14 01:49:51 | 00,112,584 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2008/11/14 01:49:51 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[2008/11/14 01:49:01 | 00,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.
mogan85
 
Messages: 28
Inscription: 11 Déc 2008, 21:34

Messagede mogan85 » 12 Déc 2008, 12:33

et le log extras:

OTListIt Extras logfile created on: 12/12/2008 12:23:38 - Run 3
OTListIt by OldTimer - Version 1.0.12.1 Folder = C:\Documents and Settings\komtok\Bureau
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 1,67 Gb Available Physical Memory | 83,57% Memory free
3,85 Gb Paging File | 3,62 Gb Available in Paging File | 94,03% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 11,04 Gb Total Space | 2,55 Gb Free Space | 23,06% Space Free | Partition Type: NTFS
Drive D: | 63,48 Gb Total Space | 0,97 Gb Free Space | 1,53% Space Free | Partition Type: NTFS
Drive E: | 3,50 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MORGAN
Current User Name: komtok
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Whitelist: On
File Age = 30 Days

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[2007/10/18 11:34:04 | 05,724,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
[2007/10/02 17:18:24 | 00,304,488 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[2004/08/04 01:07:10 | 01,667,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger
[2007/10/18 11:34:04 | 05,724,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
[2007/10/02 17:18:24 | 00,304,488 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)
[2006/08/15 23:35:05 | 03,151,360 | ---- | M] (THQ Canada Inc.) -- D:\Program Files\THQ\Dawn Of War\W40k.exe:*:Enabled:W40k
[2006/08/15 22:36:10 | 03,153,408 | ---- | M] (THQ Canada Inc.) -- D:\Program Files\THQ\Dawn Of War\W40kWA.exe:*:Enabled:W40kWA
[2006/09/17 04:15:16 | 03,110,488 | ---- | M] (THQ Canada Inc.) -- D:\Program Files\THQ\Dawn of War - Dark Crusade\DarkCrusade.exe:*:Enabled:DarkCrusade

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00E15D21-B68B-D7C4-574B-636E2D1ECEBE}" = Catalyst Control Center HydraVision Full
"{02EBDBB9-4600-41D3-B566-40CB861511D2}" = World of Warcraft FREE Trial
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{1170F665-2359-E439-5BC5-932B87423EF1}" = ccc-utility
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{39D74E81-5DED-C7EE-8807-91A8800212FA}" = ccc-core-preinstall
"{41C01225-45FD-7BCE-1EDA-F7E50945ADD7}" = Catalyst Control Center Core Implementation
"{5A24DD7E-7B01-41AC-ADA8-F1776177A3BA}" = Logitech ImageStudio
"{5E8E1294-7951-6DA9-10F1-C877871346F3}" = Skins
"{6860B340-530D-46B3-91F8-1AE1F70F7C33}" = OpenOffice.org 3.0
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{826F3B4F-C597-AF1D-4CB1-2F441BE8E2BF}" = ccc-core-static
"{87B20692-9E9D-FAE0-76C7-E75E3CC7B0D1}" = Catalyst Control Center Graphics Full Existing
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{A70FA218-6598-4AC9-813D-63597C5DD068}" = Galerie de photos Windows Live
"{AC76BA86-7AD7-1036-7B44-A70000000000}" = Adobe Reader 7.0 - Français
"{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}" = Assistant de connexion Windows Live
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{BADF6744-3787-48F6-B8C9-4C4995401D65}" = Windows Live Messenger
"{C29769BE-BEDF-DC9E-67A9-5E7AEFF039CF}" = CCC Help English
"{C514C594-23AA-4F13-A070-DB8BDB27594F}" = Windows Live Mail
"{C740289B-FC90-D938-8317-1FFEBF7C04DB}" = Catalyst Control Center Graphics Previews Common
"{D0B36BAF-3E9D-423E-8821-ED238C18DB0A}" = Warhammer 40,000: Dawn Of War - Gold Edition
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F30A8BF7-288C-57C0-357E-6D67BB694682}" = Catalyst Control Center Graphics Full New
"{F54543CF-EC73-D847-1780-84A6420EA229}" = Catalyst Control Center Graphics Light
"{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}" = Windows Live installer
"{FF39FC01-819B-42E4-AE49-1968AF12DDD4}" = Dawn of War - Dark Crusade
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"All ATI Software" = ATI - Software Uninstall Utility
"AntiVir PersonalEdition Classic" = Avira AntiVir Personal - Free Antivirus
"ATI Display Driver" = ATI Display Driver
"Envy24HF Setup Program" = UnInstall Envy24 Family Audio Device Driver
"HijackThis" = HijackThis 2.0.2
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.3.1 (Full)
"Logitech Print Service" = Logitech Print Service
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NVIDIA Drivers" = NVIDIA Drivers
"RealPlayer 6.0" = RealPlayer 7 Basic
"SLD CODEC PACK 1.5" = SLD CODEC PACK 1.5
"VLC media player" = VideoLAN VLC media player 0.8.0
"WIC" = Windows Imaging Component
"Winamp" = Winamp (remove only)
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinRAR archiver" = Archiveur WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 24/11/2008 06:24:05 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 24/11/2008 06:31:20 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 24/11/2008 08:21:46 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 24/11/2008 10:21:56 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 24/11/2008 10:44:21 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 25/11/2008 13:32:18 | Computer Name = MORGAN | Source = MsiInstaller | ID = 11601
Description = Produit : Warhammer 40,000: Dawn Of War - Gold Edition -- Disk full:
Espace disque insuffisant - Volume : 'D:' ; espace requis : 2 697 492 Ko ; espace
disponible : 1 103 380 Ko. Libérez de l'espace sur le disque et réessayez.

Error - 28/11/2008 12:44:07 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 29/11/2008 09:22:43 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 30/11/2008 09:59:45 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

Error - 03/12/2008 12:43:04 | Computer Name = MORGAN | Source = Application Error | ID = 1000
Description = Application défaillante iexplore.exe, version 6.0.2900.2180, module
défaillant vgx.dll, version 6.0.2900.2180, adresse de défaillance 0x0005c4c7.

[ System Events ]
Error - 11/12/2008 15:44:30 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.

Error - 12/12/2008 04:39:21 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.

Error - 12/12/2008 04:39:24 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.

Error - 12/12/2008 04:39:45 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.

Error - 12/12/2008 04:39:48 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.

Error - 12/12/2008 04:39:50 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.

Error - 12/12/2008 04:39:50 | Computer Name = MORGAN | Source = atapi | ID = 262149
Description = Une erreur de parité a été détectée sur \Device\Ide\IdePort0.

Error - 12/12/2008 04:39:50 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.

Error - 12/12/2008 06:48:15 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.

Error - 12/12/2008 06:48:23 | Computer Name = MORGAN | Source = Disk | ID = 262155
Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk0\D.


<End>

merci pour ton aide!
mogan85
 
Messages: 28
Inscription: 11 Déc 2008, 21:34

Messagede nickW » 13 Déc 2008, 00:07

Bonsoir,

Arf, le log OTListIt.txt est incomplet (il est trop gros pour tenir dans un seul message).

Peux-tu envoyer la fin du fichier, à partir de la ligne

========== Custom Scans ==========


Je t'ai envoyé un nouveau MP.

A suivre,
nickW - Image
30/07/2012: Plus de désinfection de PC jusqu'à nouvel ordre.
Pas de demande d'analyse de log en MP (Message Privé)
Mes configs
Avatar de l’utilisateur
nickW
Modérateur
 
Messages: 21698
Inscription: 20 Mai 2004, 17:41
Localisation: Dordogne/Île de France

Suivante

Retourner vers Sécurité (Contamination - Décontamination)

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 16 invités